July 9, 2019 TA505 Delivers New Gelup Malware Tool, FlowerPippi Backdoor Via Spam Campaign 2 min read - Researchers observed the TA505 threat group using spam campaigns to deliver two new payloads: the Gelup malware tool and the FlowerPippi backdoor.
July 2, 2019 Phishing Attacks Incorporate QR Codes to Help Evade URL Analysis 2 min read - Security researchers noticed fraudsters incorporating QR codes into various phishing attack campaigns as a way to evade URL analysis.
June 27, 2019 Sodinokibi Ransomware Adds Malvertising and More Exploit Kits to Distribution Methods 2 min read - Sodinokibi ransomware affiliates have added malvertising campaigns to the growing list of attack vectors used to infect victims, according to reports.
Risk Management June 21, 2019 4 Social Engineering Threats to Keep an Eye on — and How to Stop Them 4 min read - Threat intelligence reveals that highly targeted social engineering attacks are growing. Here's what you need to know to defend your organization.
Endpoint June 19, 2019 IoT Security and the Enterprise: A Practical Primer 5 min read - IoT security is now a hot topic, but beyond the hype and hyperbole, how can enterprises effectively secure connected networks and safeguard IoT devices?
Intelligence & Analytics June 17, 2019 How to Take Advantage of Alarming Cybersecurity News 3 min read - The security industry does a thorough job of conveying the latest cybersecurity news, albeit sometimes to the detriment of the people whose job it is to set security priorities.
Risk Management June 13, 2019 Why Every Employee in Your Organization Should Learn Social Engineering Vocabulary 5 min read - When it comes to social engineering training, make sure every employee learns the names of specific attacks.
June 12, 2019 Fraudsters Abuse Smartphone Google Calendar Feature to Push Through Scam Offers 2 min read - Fraudsters are abusing a Google Calendar feature that's commonly enabled on smartphones to target unsuspecting users with scam offers.
June 11, 2019 Extortion Scam Threatens Website Owners With Reputational Damage 1 min read - A new extortion scam uses the threat of reputational damage to persuade website owners to pay a ransom fee.
June 4, 2019 Phishing Scam Leverages Fake List of Undelivered Emails to Trick Users Into Clicking < 1 min read - Researchers discovered a phishing scam that leverages a fake list of undelivered emails to trick users into clicking and offering up their login credentials.