Top

LATEST PUBLICATIONS



AI is taking phishing attacks to a whole new level of sophistication

March 8, 2023

92% of organizations have fallen victim to successful phishing attacks in the last 12 months, while 91% of organizations have admitted to experiencing email data loss, according to Egress. Not surprisingly, 99% of cybersecurity leaders confess to being stressed about […]


Know Your Enemy: Following a Seasoned Phisher’s Train of Thought

March 1, 2023

When it comes to cybersecurity, the use of automatic protection tools is half the battle. The human element plays an increasingly important role, as well, and for good reason. Scammers like to take shortcuts and know that it’s easier to […]


The top security threats to GraphQL APIs and how to address them

February 22, 2023

Enterprises looking to modernize their APIs are increasingly switching from the REST architecture to the open-source data query and manipulation language GraphQL. While the transition makes sense – GraphQL is more flexible, scalable, and easier for developers to use – […]


Network security, Security

Spotlight on Cybersecurity Leaders: David Lingenfelter

March 14, 2023

Via: SecureWorld

In the SecureWorld Spotlight Series, we learn about the speakers and Advisory Council members that make our events a success. In Q&A format, they share about their professional journeys, unique experiences, and hopes for the future of cybersecurity—along with some […]


Threats & Malware, Virus & Malware

Warning: AI-generated YouTube Video Tutorials Spreading Infostealer Malware

March 13, 2023

Via: The Hacker News

Threat actors have been increasingly observed using AI-generated YouTube Videos to spread a variety of stealer malware such as Raccoon, RedLine, and Vidar. “The videos lure users by pretending to be tutorials on how to download cracked versions of software […]


Threats & Malware, Virus & Malware

Fake ChatGPT Chrome Extension Hijacking Facebook Accounts for Malicious Advertising

March 13, 2023

Via: The Hacker News

A fake ChatGPT-branded Chrome browser extension has been found to come with capabilities to hijack Facebook accounts and create rogue admin accounts, highlighting one of the different methods cyber criminals are using to distribute malware. “By hijacking high-profile Facebook business […]


Data loss, Threats & Malware

Zoll Medical Data Breach Impacts 1 Million Individuals

March 13, 2023

Via: Security Week

Zoll develops and markets medical equipment and software for advanced emergency care, including cardiac monitoring, oxygen therapy, ventilation, data management, and more. The data breach, the company says, was identified at the end of January, when it discovered unusual activity […]


Threats & Malware, Vulnerabilities

CISA Warns of Plex Vulnerability Linked to LastPass Hack

March 13, 2023

Via: Security Week

Tracked as CVE-2020-5741, the first is a high-severity flaw in Plex Media Server that is described as a deserialization issue that can be exploited to execute arbitrary Python code, remotely. “This issue allowed an attacker with access to the server […]


Data loss, Threats & Malware

AT&T informs 9M customers about data breach

March 10, 2023

Via: CSO Online

AT&T is informing customers about a data breach at a vendor’s system that allowed threat actors to gain access to AT&T’s Customer Proprietary Network Information (CPNI). The incident came to light after customers posted the email communication from AT&T on […]


Access control, Security

1Password Unlock with SSO helps enterprises secure their employees

March 10, 2023

Via: Help Net Security

1Password has launched Unlock with Single Sign-On (SSO) which enables enterprise customers to use Okta for unlocking their 1Password accounts, with Azure AD and Duo integration to follow in the coming months. Unlock with SSO helps IT teams improve their […]


Data loss, Threats & Malware

Proposed FCC Rule Redefines Data Breaches for Communications Carriers

March 10, 2023

Via: Dark Reading

A proposed rule change at the Federal Communications Commission would expand the definition of a data breach for communications carriers. If approved by the agency, the rule would cover any incident that affects the confidentiality of customer information, even if […]