Why Do You Still Need Security Awareness Training If You Use Phishing-Resistant MFA?
For years, KnowBe4 has been a long-time proponent of everyone using PHISHING-RESISTANT multi-factor authentication (MFA) whenever possible.
social engineering
North Korean Phishing Campaign Targeting Think Tanks, Academics and Media
The U.S. and South Korean governments have issued a joint advisory outlining a North Korean phishing campaign, The Register reports. The threat actor, known as “Kimsuky,” is targeting “individuals employed by research centers and think tanks, …
Verizon 2023 DBIR: DDoS attacks dominate and pretexting lead to BEC growth
In Verizon’s just-released 2023 Data Breach Investigations Report, money is king, and denial of service and social engineering still hold sway.
The post Verizon 2023 DBIR: DDoS attacks dominate and pretexting lead to BEC growth appeared first on TechRe…
Verizon 2023 Data Breach Investigations Report: 74% of breaches involve human element
Verizon Business today released the results of its 16th annual Data Breach Investigations Report (2023 DBIR), which analyzed 16,312 security incidents and 5,199 breaches. Chief among its findings is the soaring cost of ransomware – malicious software (…
[FBI ALERT] Skin Deep: The Scary Reality of New Deepfake-Enabled Sextortion
Today, the FBI alerted warned against a new even more disgusting type of sextortion. Previously, these schemes involved coerced or stolen digital material, but now some criminals are using technology to create explicit content from innocent im…
Verification and Deepfake Fraud Trends in North America
Forced verification fraud and deepfake fraud are on the rise in the US and Canada, according to researchers at Sumsub. Pavel Goldman-Kalaydin, Sumsub’s Head of AI & ML, explains that forced verification involves bypassing biometric data ch…
Cybercriminals use legitimate websites to obfuscate malicious payloads
According to Egress, the evolving attack methodologies currently used by cybercriminals are designed to get through traditional perimeter security. “The evolution of phishing emails continues to pose a major threat to organizations, emphasizing the nee…
Spear Phishing Trends in 2023
50% of organizations surveyed were victims of spear phishing attacks in the last twelve months, according to a new report from Barracuda. The report also found that, on average, organizations receive five “highly personalized spear phishing em…
“Magic Link” Phishing Attacks Scamming Users With Fake McAfee Renewals
Threat actors are using encoded phishing links to evade security filters, according to Jeremy Fuchs at Avanan. The phishing emails purport to be notifications from McAfee informing the user that they need to renew their subscription.
[Mastering Minds] China’s Cognitive Warfare Ambitions Are Social Engineering At Scale
As the world continues to evolve, so does the nature of warfare. China’s People’s Liberation Army (PLA) is increasingly focused on “Cognitive Warfare,” a term referring to artificial intelligence (AI)-enabled military systems and operational c…