Top

Category: Phishing


Cyber-crime, Email security, Phishing, Security

Energy Sector Phish Swims Past Microsoft Email Security via Google Drive

August 16, 2019

Via: Threat Post

A targeted spearphishing campaign has hit an organization in the energy sector – after using a savvy trick to get around the company’s Microsoft email security stack. According to Aaron Riley, a researcher from Cofense, the campaign impersonated the CEO […]


Cyber-crime, Phishing

How to Catch a Phish: Where Employee Awareness Falls Short

July 12, 2019

Via: Dark Reading

Advanced phishing techniques and poor user behaviors that exacerbate the threat of successful attacks. Teaching employees how to spot malicious emails is one of many steps toward keeping phishing attacks at bay. As attackers adopt more advanced techniques, it’s imperative […]


Cyber-crime, Mobile security, Phishing

How mobile use cases in financial services are affecting security

July 11, 2019

Via: Help Net Security

Financial services organizations are increasingly exposed to cyber threats, according to Wandera. The report “​Mobile Security in the Financial Services​,” includes analysis of six months of security data from 225 financial services customers with 50,000 devices collectively under management. Notable […]


Cyber-crime, Phishing

645,000 people warned their personal health data at risk after phishing attack

June 19, 2019

Via: Hot for Security

The Oregon Department of Human Services (DHS) has started notifying more than 600,000 people that their personal details have been put at risk after staff were tricked into granting hackers access millions of emails. According to the agency, the security […]


Phishing

A Spate of University Breaches Highlight Email Threats in Higher Ed

June 18, 2019

Via: Threat Post

Oregon State University announced Friday that hackers potentially made off with 636 student records and family records of students containing personally identifiable information (PII), after a successful email attack in early May. This comes on the heels of email-based breaches […]


Malware, Phishing

Criminals are selling hacking services targeting world’s biggest companies

June 7, 2019

Via: Help Net Security

A new study – undertaken by Dr. Mike McGuire, Senior Lecturer in Criminology at the University of Surrey, and underwritten by Bromium – provides details of first-hand intelligence gathered from covert discussions with dark net vendors, alongside analysis by a […]


Malware, Phishing

HawkEye Malware Operators Renew Attacks on Business Users

May 27, 2019

Via: Security Intelligence

IBM X-Force researchers report an increase in HawkEye v9 keylogger infection campaigns targeting businesses around the world. In campaigns observed by X-Force in April and May 2019, the HawkEye malware focused on targeting business users, aiming to infect them with […]


Cyber-crime, Email security, Phishing, Security

How effective are login challenges at preventing Google account takeovers?

May 21, 2019

Via: Help Net Security

Despite implementation bugs that might affect the security of physical security keys, they are the strongest protection against phishing currently available, Google maintains. On-device prompts and SMS codes are also extremely successful at blocking account hijacking attacks effected via automated […]


Email security, Malware, Phishing

The lurking danger of hacked email reply chains

May 14, 2019

Via: Help Net Security

Although phishing has been around in various forms since the 1990s, recent news has shown that it continues to evolve – and remains a major threat. These days, phishing tactics are so sophisticated it can be difficult to spot a […]


Email security, Phishing, Security

Cybercriminals are becoming more methodical and adaptive

April 26, 2019

Via: Help Net Security

Cybercriminals are deviating towards a more focused approach against targets by using better obfuscation techniques and improved social engineering skills as organizations improve in areas such as time to detection and response to threats, according to Trustwave. The 2019 Trustwave […]