The IT Nerd

BforeAI has published a new threat advisory in which the U.S. Department of Education is being targeted through a credential phishing campaign via government impersonation. 

A phishing campaign is currently targeting the U.S. Department of Education’s G5 grant portal, which is used for managing grants and federal education funding. 

Multiple lookalike domains have been observed spoofing the G5 login page in an attempt to harvest login credentials from legitimate users.

These domains attempt to clone or imitate the official G5.gov interface and may be targeting education professionals, grant administrators, or vendors tied to the U.S. Department of Education. 

This activity is particularly alarming given the recent Trump Administration announcement of 1,400 layoffs at the Department of Education, which may create confusion and an opportunity for social engineering.

The advisory can be found here.

BforeAI has published its latest malicious infrastructure attack report on Bybit opportunists. In the three weeks following the Bybit breach announcement, the threat research team at BforeAI collected 596 suspicious domains originating from at least 13 countries. 

The domains reveal a range of methods employed to siphon cryptocurrency assets by targeting Bybit users. Of the almost 600 suspicious domains, 119 (20%) were confirmed by BforeAI as malicious actions. 

The threat research team documented various websites designed to resemble Bybit funds recovery. The websites highlighted the term “unauthorized activities”, creating a sense of urgency around the recent incident and the fear of financial loss to psychologically trigger a victim to take immediate action without considering the source. 

The research team also noted an automated strategy for rapid domain deployment. Ordered “-a,” “-b,” “-c,” “-d,” “-e,” and “-f” suffixes indicate variations of the main domain likely made for phishing attacks while maintaining a naming convention for legitimacy. 

While most Bybit-related domains were successfully detected and mitigated, researchers observed a new evasion tactic: truncated domains using ‘bb, ‘ which allowed phishing campaigns to remain undetected and active.

You can read the report here.

BforeAI, the world’s fastest and most accurate predictive attack intelligence and digital risk protection solution, announced today the launch of PreCrime Guarantee, the company’s new breach protection pledge that underlines confidence in their cybersecurity solutions platform. In partnership with the leading global provider of cyber insurance, PreCrime Guarantee reimburses customers up to ten times the value of their service contract if impacted by a cyberattack due to a failure by BforeAI’s predictive solution.

BforeAI’s PreCrime platform predicts, blocks, and preempts malicious campaigns before they can impact an organization. With a false positive rate of 0.05%, the company’s automated preemption can stop attacks within minutes,before the customer falls victim. PreCrime Guarantee provides customers with additional peace of mind as they assess the platform’s effectiveness in the field and further validates the powerful insights and resources that the PreCrime platform provides security teams.

BforeAI underwent a stringent, nine-month process in which the insurance partner validated the effectiveness of the artificial intelligence platform against BforeAI’s go-to-market claims.

Because AI systems are not deterministic but based on probability, it is critical that they are developed to deliver reliable, business process-friendly results. PreCrime delivers best-in-class false positive/false negative and recall performance with extreme reliability. As BforeAI’s AI models were evaluated for their performance, the insurance partner’s team of experts were impressed by the quality of the underlying technology and its controls to limit deviation from performance claims.

The PreCrime Guarantee launch comes on the heels of a recent $15 million Series A funding round led by SYN Ventures, with renewed participation from early investors Karma Ventures, Karista, Addendum Capital, and a new investment from the Partnership Fund for New York City. The program will be instrumental in new customer engagements as BforeAI looks to expand further in the U.S. market in 2024.