Banking & Finance November 22, 2017 Canadian Business Banking Customers Hit With Targeted Phishing, Account Takeover Attacks 7 min read - A targeted phishing campaign aimed at Canadian businesses prompts users with high levels of access to divulge login credentials and authentication codes.
November 6, 2017 Study of More Than 3,200 Unique Phishing Kits Shows Fraudsters’ Inner Workings 2 min read - Malicious developers commonly distribute phishing kits with built-in back doors that enable them to hijack victims infected by other threat actors.
Energy & Utility October 30, 2017 Addressing the Clear and Present Danger of an Electrical Power Grid Breach 4 min read - Government agencies and companies in the energy and utilities sector must replace legacy equipment to avoid a potentially devastating power grid breach.
October 23, 2017 Banking Trojan Uses Malware Macros to Evade Sandbox Detection 2 min read - Security researchers observed a spam campaign that leverages PowerShell's AutoClose feature to deliver a banking Trojan while eluding sandbox detection.
October 19, 2017 Necurs Downloader Takes Screen Grabs to Improve Ransomware Attacks 2 min read - The cybercriminals behind the Necurs botnet are now taking screenshots of victims' machines to improve the performance of ransomware attacks.
Fraud Protection October 19, 2017 Pick a Card, Any Card: Deception, the Human Mind and the Social Engineering Challenge 3 min read - Social engineering schemes such as spear phishing rely on the human mind's inclination toward self-deception to motivate users to open malicious links.
October 18, 2017 Researcher Uncovers Shipping Industry Security Flaws 2 min read - Using a simple online search engine, a researcher exposed several shipping industry security gaps that could leave container ships vulnerable to threats.
October 16, 2017 No Macros? No Problem for New Malware Attack 2 min read - Security researchers discovered a new malware attack that exploits Dynamic Data Exchange, an outdated Office feature, to infect corporate devices.
October 12, 2017 Cybercrime Group FIN7 Takes Phishing Attacks to the Next Level 2 min read - A cybergang known as FIN7 has been using OLE command files to spread its malware and identify potential victims for additional phishing attacks.
Fraud Protection October 11, 2017 Login Lockdown: Six Account Protection Tips for National Cyber Security Awareness Month 2 min read - Enterprises and individual users should follow these six account protection tips not just during National Cyber Security Anwareness Month, but year-round.