May 20, 2020

New Microsoft Azure AD Sign-In Page Spoofed in Numerous Phishing Campaigns

2 min read - Microsoft discovered numerous phishing campaigns in which malicious actors attempted to spoof its new Azure AD sign-in page.

April 27, 2020

Weekly Security News Roundup: Vulnerability Lets Attackers Compromise Apple Devices via Email

3 min read - Researchers revealed their discovery of a vulnerability that enables bad actors to infect iPads and iPhones by sending a specially crafted email. Learn what else happened last week in security news.

Endpoint April 9, 2020

Phishers and iPhone Thieves Rolling Out Multimillion-Dollar Operations

9 min read - Going down the rabbit hole of a physical iPhone theft followed by a SMiShing campaign, IBM X-Force IRIS researchers found a large-scale operation of phishers with over 600 phishing domains.

Fraud Protection March 9, 2020

From Nigerian Princes to Bitcoin Trading: Online Scams Have Come a Long Way

5 min read - Online scams originating from Nigeria have come a long way, and while some stick with the old rich prince ploy, others have devised more elaborate schemes to secure money.

January 20, 2020

Weekly Security News Roundup: Nemty Ransomware Plans to Begin Leaking Victims’ Data

3 min read - Security researchers discovered Nemty ransomware's plans to create a website for the purpose of publishing its non-paying victims' data. Learn what else happened last week in security news.

January 14, 2020

Microsoft Sway Domains Used in Phishing Campaigns to Create Bogus Landing Pages

2 min read - A phishing technique that makes use of Microsoft Sway could attack organizations even if they don't use the tool, security researchers warn.

Risk Management November 26, 2019

Layer Up With a Layered Approach to Email Security This Winter

5 min read - Email security remains a top priority in 2019 and into the new year. Your best bet to fend off phishing attacks is to layer up with dynamic, data-driven protection.

August 20, 2019

Attackers Spread Bolik Banking Trojan Disguised as a Reputable VPN App

2 min read - Threat actors are spreading around samples of the Bolik banking Trojan family disguised as a reputable virtual private network (VPN) app.

August 19, 2019

Phishing Attacks Use Custom 404 Pages to Steal Users’ Microsoft Credentials

2 min read - Fraudsters are launching phishing attacks that use custom 404 pages in an attempt to steal users' Microsoft login credentials.

July 17, 2019

SWEED Threat Actor Uses Typosquatting, UAC Bypasses to Distribute Agent Tesla

< 1 min read - Researchers observed a threat actor known as SWEED using typosquatting and UAC bypassing techniques to distribute Agent Tesla and other malware.