Top

Category: Phishing


Malware, Phishing

Should you block newly registered domains? Researchers say yes

August 23, 2019

Via: Help Net Security

7 out of 10 newly registered domains (NDRs) are either malicious, suspicious or not safe for work, say Palo Alto Networks researchers, and advise organizations to block access to them with URL filtering. “While this may be deemed a bit […]


Phishing

Facebook phishing surges, Microsoft still most impersonated brand

August 23, 2019

Via: Help Net Security

Vade Secure published the results of its Phishers’ Favorites report for Q2 2019. According to the report, which ranks the 25 most impersonated brands in phishing attacks, Microsoft was by far the top target for the fifth straight quarter. There […]


Cyber-crime, Email security, Phishing, Security

Energy Sector Phish Swims Past Microsoft Email Security via Google Drive

August 16, 2019

Via: Threat Post

A targeted spearphishing campaign has hit an organization in the energy sector – after using a savvy trick to get around the company’s Microsoft email security stack. According to Aaron Riley, a researcher from Cofense, the campaign impersonated the CEO […]


Cyber-crime, Phishing

How to Catch a Phish: Where Employee Awareness Falls Short

July 12, 2019

Via: Dark Reading

Advanced phishing techniques and poor user behaviors that exacerbate the threat of successful attacks. Teaching employees how to spot malicious emails is one of many steps toward keeping phishing attacks at bay. As attackers adopt more advanced techniques, it’s imperative […]


Cyber-crime, Mobile security, Phishing

How mobile use cases in financial services are affecting security

July 11, 2019

Via: Help Net Security

Financial services organizations are increasingly exposed to cyber threats, according to Wandera. The report “​Mobile Security in the Financial Services​,” includes analysis of six months of security data from 225 financial services customers with 50,000 devices collectively under management. Notable […]


Cyber-crime, Phishing

645,000 people warned their personal health data at risk after phishing attack

June 19, 2019

Via: Hot for Security

The Oregon Department of Human Services (DHS) has started notifying more than 600,000 people that their personal details have been put at risk after staff were tricked into granting hackers access millions of emails. According to the agency, the security […]


Phishing

A Spate of University Breaches Highlight Email Threats in Higher Ed

June 18, 2019

Via: Threat Post

Oregon State University announced Friday that hackers potentially made off with 636 student records and family records of students containing personally identifiable information (PII), after a successful email attack in early May. This comes on the heels of email-based breaches […]


Malware, Phishing

Criminals are selling hacking services targeting world’s biggest companies

June 7, 2019

Via: Help Net Security

A new study – undertaken by Dr. Mike McGuire, Senior Lecturer in Criminology at the University of Surrey, and underwritten by Bromium – provides details of first-hand intelligence gathered from covert discussions with dark net vendors, alongside analysis by a […]


Malware, Phishing

HawkEye Malware Operators Renew Attacks on Business Users

May 27, 2019

Via: Security Intelligence

IBM X-Force researchers report an increase in HawkEye v9 keylogger infection campaigns targeting businesses around the world. In campaigns observed by X-Force in April and May 2019, the HawkEye malware focused on targeting business users, aiming to infect them with […]


Cyber-crime, Email security, Phishing, Security

How effective are login challenges at preventing Google account takeovers?

May 21, 2019

Via: Help Net Security

Despite implementation bugs that might affect the security of physical security keys, they are the strongest protection against phishing currently available, Google maintains. On-device prompts and SMS codes are also extremely successful at blocking account hijacking attacks effected via automated […]