Phishing Campaign Uses Fake Google reCAPTCHA to Distribute Malware
A recent phishing campaign used a fake Google reCAPTCHA as part of its efforts to target Polish bank employees with malware.
Workplace Expectations and Personal Exceptions: The Social Flaws of Email Security
While current email security solutions can help mitigate phishing impacts, companies must recognize the role of corporate email as a social network to address the human components of this risk.
Social Engineering Testing: Why Getting Hacked Is a Security Advantage
Social engineering and security awareness training exercises can help business leaders uncover gaps in their incident response plans and identify poor security hygiene among employees.
Government Cybersecurity Processes Must Change Drastically to Keep Up With Complex Attack Vectors
Since governments have so many potential attack vectors to manage, government cybersecurity professionals need clear processes, procedures and authority to harden vulnerable environments.
How to Stay One Step Ahead of Phishing Websites — Literally
Ahead-of-threat detection enables security professionals and consumers to identify potential phishing websites faster than traditional browser protection apps can blacklist active cyberthreats.
Fraudsters Abuse Trusted Web Services to Conduct Phishing Attacks
Researchers reported that threat actors are using web services such as Google Drive, SharePoint and Dropbox to host files containing malicious links as part of phishing campaigns.
New Phishing Scheme Exploits Public Interest Around Hurricane Michael to Steal Email Credentials
Security researchers discovered a recent phishing scheme that took advantage of Hurricane Michael's impact to steal victims' email credentials across multiple services.
Why You Should Practice and Drill to Prepare for a Cyber Emergency
The U.S. Fire Administration's five key components of a fire safety education program serve as a useful framework for CISOs looking to boost their company's ability to respond to a cyber emergency.
Signing Up for Benefits? Beware of Phishing Attacks
Over the next two months, companies should educate and test their employees to prepare for the rise in phishing attacks related to benefits enrollment and holiday party and charity campaign planning.
Supporting the Shift to Passwordless Authentication With FIDO
IBM is embracing FIDO authentication across its offerings as part of its effort to shift the industry toward a standardized approach to authentication and the eventual end of passwords.