Phishing - Security Intelligence

Professor working in a classroom targeted by a spear phishing attack

news

Spear Phishing Report Card: Perfect Scores in School Security Pen Testing

According to a new U.K.-based study, 100 percent of test spear phishing attacks gained access to sensitive university data in less than two hours.

April 17, 2019 | By Douglas Bonderud

news

Woman using her Android smartphone for Google 2FA process on laptop

news

Google 2FA Approach Turns Android Smartphones Into Security Keys

Smartphones running Android 7.0 and higher can now serve as two-factor authentication (2FA) tools as part of a Google 2FA strategy to boost security across its online services.

April 17, 2019 | By Shane Schick

news

Woman doing her taxes on a laptop: tax scam

news

April Scams May Ruin Plans: Threat Actors Ramp Up for Tax Scam Season

Tax scam season has arrived. Here's what enterprises need to know to keep their corporate assets safe from tax-time scammers.

April 16, 2019 | By Douglas Bonderud

news

Two programmers working on security controls to detect black market tls/ssl certificates

article

Dark Web TLS/SSL Certificates Highlight Need for Shift to Zero Trust Security

Some of the latest website security threats originate from thriving dark web marketplaces for TLS/SSL certificates, which often come packaged with other cybercrime services.

April 11, 2019 | By Koen Van Impe

article

Professionals working on a computer targeted by phishing campaign

news

Phishing Campaign Makes Use of SingleFile Browser Extension Tool to Obfuscate Malicious Activity

In a recent phishing campaign, fraudsters used a legitimate browser extension tool called SingleFile to obfuscate their attacks and remain undetected.

April 9, 2019 | By David Bisson

news

Security professional reading about the latest malware threats: malware

news

Web Servers Used to Host 10 Malware Families Distributed via Phishing Emails

Digital attackers used more than a dozen web servers to host 10 malware families and distributed those threats using phishing emails.

April 9, 2019 | By David Bisson

news

Two security professionals discussing a Shade ransomware infection

news

Shade Ransomware Campaign Compromises at Least 500 WordPress and Joomla Websites

Security researchers discovered a hidden HTTP directory that is allowing threat actors to install Shade ransomware on WordPress and Joomla websites.

April 3, 2019 | By Shane Schick

news

New XLoader Variant Masquerades as Android Security Apps, iOS Configuration Profile

Security researchers observed a new variant of XLoader masquerading as Android security apps and an iOS configuration profile to target mobile users.

April 3, 2019 | By David Bisson

news

Security researchers analyzing a TrickBot attack campaign

news

TrickBot Creators Collaborate With BokBot to Conduct Man-in-the-Middle Attacks

Security researchers warn that the cybercriminals behind the TrickBot and BokBot banking Trojans are now collaborating to perform man-in-the-middle (MitM) attacks.

March 25, 2019 | By Shane Schick

news

Businesswoman checking her email: brute-force attack

news

Brute-Force Attack Wave Uses Legacy Protocols, Credential Dumps to Compromise Cloud Accounts

A massive brute-force attack campaign used both legacy protocols and credential dumps to compromise cloud user accounts, according to security researchers.

March 20, 2019 | By David Bisson

news

Attackers Compromise Admin Account to Infect Manufacturing Company With BitPaymer Ransomware

Spear Phishing Report Card: Perfect Scores in School Security Pen Testing

Google 2FA Approach Turns Android Smartphones Into Security Keys

April Scams May Ruin Plans: Threat Actors Ramp Up for Tax Scam Season

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

How a Cunning Remote Overlay Malware Met Its Match

The US Is Slow to Adopt EHRs, But That Might Actually Be a Good Thing for Healthcare Security

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

Credential Dumping Campaign Hits Multinational Corporations

Cybercriminals Spoof Major Accounting and Payroll Firms in Tax Season Malware Campaigns

Buffer Overflow Vulnerability in TP-Link Routers Can Allow Remote Attackers to Take Control

Podcast: Muscle Memory and Cyber Fitness Training

Podcast: Zero Trust and the Evolving Role of Identity and Access Management

Podcast: Digital Identity Trust, Part 3 — Powering Digital Growth With Digital Identity Trust

Podcast: Monitoring National Cybersecurity Trends With Former NSA Deputy Director Bill Crowell

Webinar: MacOS Management Made Easy with MaaS360

Webinar: Encryption is the Fastest Way to Protect Data

Webinar: Under the Radar: Live Webinar and Demo

Webinar: Facilitating Secure Hybrid Cloud Adoption with Guardium

Tag: Phishing

Spear Phishing Report Card: Perfect Scores in School Security Pen Testing

Google 2FA Approach Turns Android Smartphones Into Security Keys

April Scams May Ruin Plans: Threat Actors Ramp Up for Tax Scam Season

Dark Web TLS/SSL Certificates Highlight Need for Shift to Zero Trust Security

Phishing Campaign Makes Use of SingleFile Browser Extension Tool to Obfuscate Malicious Activity

Web Servers Used to Host 10 Malware Families Distributed via Phishing Emails

Shade Ransomware Campaign Compromises at Least 500 WordPress and Joomla Websites

New XLoader Variant Masquerades as Android Security Apps, iOS Configuration Profile

TrickBot Creators Collaborate With BokBot to Conduct Man-in-the-Middle Attacks

Brute-Force Attack Wave Uses Legacy Protocols, Credential Dumps to Compromise Cloud Accounts