Incident Response September 30, 2021

Using Vendor Management to Defend Against Supply Chain Attacks

2 min read - Supply chain attacks are growing more common. According to the Identity Theft Resource Center (ITRC), there were just 19 supply chain attacks in the final quarter of 2020. In the following quarter, that volume grew to 27 attacks — an…

News May 31, 2021

Telegram Messenger Ads for ‘Hacker’ Software Hide Cryptocurrency Theft

2 min read - Digital attackers are leveraging ads on the Telegram messenger app to target cryptocurrency owners with samples of HackBoss malware. One notable element of this campaign is that it’s targeting people who want to make a buck through sketchy means themselves.…

Banking & Finance May 11, 2021

Synthetic Identity Theft: When Everybody Knows Your Name

3 min read - You probably have a place where everyone knows your name — and maybe your address and your birthday and your favorite drink. That place could be your favorite restaurant, your office or your grandma’s house. It doesn’t matter where that…

News May 5, 2021

Personal Information Theft: Threat Actors Lurking in Car Insurance Quotes

2 min read - Threat actors are stealing information by taking advantage of the application design and code of websites that provide instant quotes for auto insurance rates, the New York Department of Financial Services (NYDFS) reported in March. This personal information theft was first…

Application Security February 3, 2021

Consider the Human Angle in Your Threat Modeling

3 min read - When it comes to threat modeling, many businesses plan as if there were only a few possible scenarios in which cybersecurity or privacy-related incidents could occur. We need to plan for more cybersecurity hazards than just basic social engineering, insider…

May 27, 2020

Discord Client Modified to Steal Users’ Plaintext Passwords

2 min read - Security researchers observed the "AnarchyGrabber3" malware modifying the Discord client to steal its victims' plaintext passwords.

Data Protection January 8, 2020

How Digital Natives Are Shaping the Future of Data Privacy

4 min read - Our collective attitude toward sharing is changing as we learn more about how maintaining data privacy is both desirable and difficult.

Software Vulnerabilities March 4, 2019

Stranger Danger: X-Force Red Finds 19 Vulnerabilities in Visitor Management Systems

4 min read - Two X-Force Red interns discovered 19 previously undisclosed vulnerabilities across five popular visitor management systems that could enable attackers to establish a foothold on corporate networks.

Banking & Finance September 28, 2018

How Shir Levin Uses Her Nose for News to Sniff Out Identity Fraud

4 min read - Shir Levin used to report on government and law, but her journalism career wasn't data-driven enough for her. She now uses her experience in news, psychology and statistics to fight identity fraud.

June 8, 2018

More Than One-Tenth of US Consumers Fell Victim to Identity Theft in the Past Year

2 min read - A recent survey revealed that many consumers fail to change their online security habits even after falling victim to identity theft.