Spear Phishing - Security Intelligence

Malicious actors often leverage social engineering to trick victims into handing over key business or personal information, which can in turn be used to gain access to corporate networks and private data. User awareness is key to preventing this.

article

Social Engineering Attackers Deploy Fake Social Media Profiles

Cybercriminals are using social engineering tactics on social media networks such as LinkedIn to gain access to corporate networks.

November 6, 2015 | By Rick M Robinson

article

Threats of economic espionage are not reserved for international conglomerates. Organizations of any size or geographical location may be subject to attacks that aim to steal private information. Protect yourself with best practices and defense systems.

article

Economic Espionage: The Myth That ‘We Have Nothing of Interest’

The threat of economic espionage against the enterprise is more than just a myth — it's a reality that organizations must prepare for and defend.

October 9, 2015 | By Christopher Burgess

article

Malicious attachments are becoming increasingly popular among cybercriminals. These attackers use targeted spear phishing campaigns and social engineering to trick users into downloading malware or clicking links that lead to compromised sites.

article

Malicious Attachments Make a Comeback as Top Attack Vector

Users need to be on the lookout for malicious attachments, which are growing in popularity thanks to spear phishing and social engineering.

September 3, 2015 | By Rick M Robinson

article

People want to help in the aftermath of tragedy, but Nepal earthquake email scams are putting some well-intentioned individuals at risk.

news

Nepal Earthquake Email Scams Could Lead Would-Be Donors to Malware

Authorities say Nepal earthquake email scams could be directing users to phishing sites that contain malware under the guise of giving to charity.

May 4, 2015 | By Shane Schick

news

A recently released report from Verizon suggests the cost of a data breach is actually much lower than some experts have estimated in the past. Verizon came to this conclusion by using an unconventional method of calculating these costs.

news

Verizon Report Suggests Data Breach Costs and Mobile Threat Perceptions Inaccurate

Security experts may be overestimating the cost of a data breach and the extent of mobile device threats, according to a report from Verizon.

April 17, 2015 | By Shane Schick

news

Phishing attacks are meant to target victims by gaining access to pieces of their personal information and convincing them a link is safe to click on. Cybercriminals are getting craftier with the methods they use to trick their victims.

article

Gone Phishing: How to Prevent Sophisticated Attacks

Phishing attacks have become much more targeted and alarmingly personalized, exploiting our personal information and the products we use.

April 9, 2015 | By Rohan Ramesh

article

"The Dyre Wolf," a new Dyre campign, has stolen more than $1 million from targeted organizations. To keep safe from these types of attacks, organizations must remind their employees of security best practices since human error is a great factor here.

article

The Dyre Wolf Campaign: Stealing Millions and Hungry for More

A new Dyre malware campaign, branded "The Dyre Wolf" by IBM Security researchers, has successfully stolen more than $1 million from targeted organizations.

April 2, 2015 | By John Kuhn

article

The Carbanak financial malware, recently reported by Kaspersky Lab, has already affected over 100 financial institutions around the world. While the malware itself is highly advanced, its method of delivery is quite familiar: spear phishing emails.

article

Carbanak: It’s All About the Phish

The Carbanak banking malware, which was recently reported by Kaspersky Lab, is potentially the most advanced malware design to date.

March 2, 2015 | By Steven D'Alfonso

article

The U.S. Internal Revenue Service (IRS) reports that a large number of taxpayers have been targeted by spear phishing emails. These emails appear as though they've been sent by the IRS and instruct taxpayers to give up personal financial information.

news

IRS Warns Taxpayers of Spear Phishing Scam

The IRS has warned that cybercriminals are using bogus emails and voicemail messages in a spear phishing scam to steal personal information at tax time.

February 20, 2015 | By Shane Schick

news

Organizations should be on the lookout for the Dyre Trojan, a type of massively distributed malware cybercriminals are using to attack unsuspecting victims using Microsoft Outlook. Compromised machines are at risk of credentials theft and other threats.

article

Cybercriminals Leverage Massively Distributed Malware in APT-Style Attacks

A new variant of the Dyre Trojan, a type of massively distributed malware, is being used to attack victims using Microsoft Outlook in APT-style attacks.

February 17, 2015 | By Dana Tamir

article

Many of Baltimore’s City Services Still Offline Two Weeks After Ransomware Attack

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

Phishing Campaign Delivers Multi-Feature, Open-Source Babylon RAT

More Than 100 US Businesses Affected by Ryuk Ransomware Since August 2018, Finds FBI

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

GozNym Closure Comes in the Shape of a Europol and DOJ Arrest Operation

The Decline of Hacktivism: Attacks Drop 95 Percent Since 2015

Published Exploits for Accessing SAP Systems Put Security Teams on Alert

Penetration Testing Versus Red Teaming: Clearing the Confusion

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Podcast: ‘You Can Never Have Too Much Encryption’

Podcast: Automating Cyber Resilience Best Practices With Dr. Larry Ponemon

Webinar: Guardium Tech Talk: An Integrated Approach to Data Risk Management

Webinar: The Debrief: Using Tools and Methods From the Intelligence Community to Stop Threats to Your Organization

Webinar: Operational Technology Security in the Age of Digital Transformation

Webinar: Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on the Cyber Resilient Organization

Tag: Spear Phishing

Social Engineering Attackers Deploy Fake Social Media Profiles

Economic Espionage: The Myth That ‘We Have Nothing of Interest’

Malicious Attachments Make a Comeback as Top Attack Vector

Nepal Earthquake Email Scams Could Lead Would-Be Donors to Malware

Verizon Report Suggests Data Breach Costs and Mobile Threat Perceptions Inaccurate

Gone Phishing: How to Prevent Sophisticated Attacks

The Dyre Wolf Campaign: Stealing Millions and Hungry for More

Carbanak: It’s All About the Phish

IRS Warns Taxpayers of Spear Phishing Scam

Cybercriminals Leverage Massively Distributed Malware in APT-Style Attacks