Security vulnerabilities stemming from improper handling of non-ASCII characters in email headers could enable fraudsters to launch spoofing attacks.
A targeted phishing campaign aimed at Canadian businesses prompts users with high levels of access to divulge login credentials and authentication codes.
Malicious developers commonly distribute phishing kits with built-in back doors that enable them to hijack victims infected by other threat actors.
Security researchers observed a spam campaign that leverages PowerShell's AutoClose feature to deliver a banking Trojan while eluding sandbox detection.
Social engineering schemes such as spear phishing rely on the human mind's inclination toward self-deception to motivate users to open malicious links.
Security researchers discovered a new malware attack that exploits Dynamic Data Exchange, an outdated Office feature, to infect corporate devices.
According to a recent survey, trusted employees, not cybercriminals, are responsible for the majority of cybersecurity threats affecting SMBs.
Financial institutions need intelligence-driven fraud detection and prevention solutions to protect customers' sensitive data from phishing attacks.
A malware researcher uncovered a spamming operation that compromised more than 711 million email addresses, the largest known data breach of its kind.
A new Defray ransomware variant attacks specific verticals in two separate campaigns: health care and education, and manufacturing and technology.