Something’s phishy: How to detect phishing attempts
Dear you, It appears you need to update your information. Click here to tell us all your secrets. No really, it’s totally safe. We’re not going to steal your identity, we swear. If only phishing attempts were that obvious. Instead, these days it’s hard to tell a phish apart from a foul, if you catch…
Four New Cyberthreats on the CISO’s Radar
Enterprises today face new cyberthreats from many different vectors, including some that didn’t exist just a few years ago. Chief information security officers (CISOs) need to keep their eyes on the evolving ways their companies can be breached and close any gaps to minimize the damage.
World of Warcraft phish campaign lures victims with free pet
A phishing campaign currently in circulation is attempting to bait World of Warcraft with the promise of free in-game pets. We’ve seen two variations on this so far, and it’s possible there’s more. Both of the below examples lead to the same phishing URL. As great as the promise of some free content is, this…
SMS phishing for the masses
Phishing remains one of the top threats that affects both consumers and businesses thanks to ever evolving tricks. While ‘classic’ phishing emails remain a problem, they can somewhat be thwarted via spam filters, whereas SMS phishing scams are much more difficult to protect against. Case in point, here’s a fraudulent text message purporting to be from RBC, a…
Fake FBI mail: “Send us $112 or we’ll lock your iCloud account”
Here’s a scam mail which claims your iCloud has been accessed without permission, and will be locked within 2 hours if you don’t verify the account by sending $112 to a Bitcoin address. The missive claims to be from [email protected] and is titled, “Virus Warning: E-Mail from ‘FBI Alert”.
Verified Twitter accounts compromised, get busy spamming
Verified Twitter accounts tend to be a little more secure than those belonging to non-verified users due to the amount of extra hoop jumping required to get one of those ticks in the first place. A number of security requirements, including providing a phone number and setting up 2FA, are all things a would-be verified…
The Four Leading Security Threats of 2017
The security landscape is constantly evolving and will continue to evolve in 2017. Long-standing security threats will take on new dimensions. Social engineering, for example, will become an output as well as an input. At the same time, the Internet of Things (IoT) continues to open new threat vectors. The new year will certainly bring…
Subtlety Is the Danger for Cybercrime Security Efforts
Celebrities who appear to be suddenly successful have long been called “overnight sensations.” In reality, most of these instant stars worked for years to perfect their skills before they got their big break. Cyberattacks often follow the same trajectory. They are not always immediately disruptive because they are executed stealthily over long periods of time….
65% of social engineering attacks compromised employee credentials
Social engineering is having a notable impact on organizations across a range of industrial sectors in the US. In fact, 60 percent of surveyed security leaders say their organizations were or may have been victim of at least one targeted social engineering attack in the past year, and 65 percent of those who were attacked…