Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Following four years of self-funded fine-tuning in Europe, start-up security awareness firm CybeReady has expanded into the U.S. market with an initial funding round of $5 million led by Baseline Ventures. [Read More]
Security awareness training firm KnowBe4 has taken a $300 million investment led by private equity giant KKR. [Read More]
Malicious actors are abusing users’ trust in the HTTPS protocol to launch phishing campaigns, the Federal Bureau of Investigation (FBI) warns in a recent alert. [Read More]
Tampa Bay, FL-based security awareness and simulated phishing firm KnowBe4 has acquired Oslo, Norway-based security culture measurement company CLTRe for an undisclosed sum. [Read More]
New Citizens Lab report details Iran-linked multilingual campaign aimed at seeding anti-Saudi, anti-Israel and anti-American stories across the internet. [Read More]
A majority of the 2020 US presidential campaigns are vulnerable to sophisticated email attacks, according to a study conducted by email security firm Agari. [Read More]
Free code repositories on the Microsoft-owned GitHub have been abused since at least mid-2017 to host phishing websites, Proofpoint’s security researchers reveal. [Read More]
The FBI’s 2018 Internet Crime Report (ICR) shows that both the incidence and cost of internet crime continues to escalate. [Read More]
Google will soon block login attempts from embedded browser frameworks such as the Chromium Embedded Framework (CEF) to prevent MitM phishing attacks. [Read More]
Djevair Ametovski, the Macedonian operator of a cybercrime marketplace named Codeshop, has been sentenced to 90 months in prison by US authorities. [Read More]
- 1 of 24
- ››
FEATURES, INSIGHTS // Phishing
Cybercriminals rely on tried and trusted methods for phishing; as long as there is even a four percent chance that phishing techniques will be successful, they will continue to use them.
“Evasive phishing" is not a term much heard, but we all will—and need to—start talking a lot more about it than we have in the past.
BEC is becoming increasingly profitable for threat actors as organizations are making it easy for adversaries to gain access to the valuable information that sits within these inboxes.
We should be thinking about how users work, what they do and how it affects the security posture of the business, but does security really start with them?
If phishing attacks slip past the first line of defense, security teams need to be able to identify suspicious activity and stop it before hackers can learn enough about their enterprise to execute a full attack.
Even organizations with the most robust defense solutions and advanced automated technologies cannot effectively combat threats such as BEC without the adequate support and nuanced expertise of humans.
Even though I've been analyzing malware for the past 20 years, I do understand that internet security is not merely a technical problem, but also a business problem.
DMARC is an email authentication standard designed to eliminate phishing and other types of attack that use spoofing to misrepresent an email sender identity.
Is the appropriate response to blame the victim when increasingly sophisticated attacks and the rise in credential thefts are making any user’s goal of protecting themselves much more difficult?
It’s hard keeping criminals from infiltrating networks, much less worrying that users will simply open the door to bad guys by letting their guard down.
- 1 of 4
- ››
SecurityWeek Daily Briefing
- Payouts From Insurance Policies May Fuel Ransomware Attacks
- Iran Denies Successful Cyber Attacks on Oil Sector
- Facebook Suspends 'Tens of Thousands' of Apps in Privacy Review
- Eight U.S. Cities Impacted in New Series of Click2Gov Breaches
- 200,000 Sign Petition Against Equifax Data Breach Settlement
- Indonesia, Malaysia Probe Lion Air Customer Data Leak
- Twitter Closes Thousands of Fake News Accounts Worldwide
- Vulnerability Patched in Forcepoint VPN Client for Windows
- France Has 'Not Changed Mind' on Rejecting Snowden Asylum
- Two Indicted in $10 Million Tech Support Fraud Scheme
Copyright © 2019 Wired Business Media. All Rights Reserved. Privacy Policy