Monthly Archives: October 2022

Scammers are sending Discord messages with phony accusations to trick users into clicking on phishing links, according to Shan Abdul at MakeUseOf. The messages are sent from compromised accounts to the accounts’ friends lists, so they appear to be coming … Read More

Steven Rosenbush at the WSJ reported: “Chief information officers say cybersecurity once again will be their top investment priority in 2023, a sign of how companies are racing to manage the business risk posed by escalating threats.”

With the ongoing threat of data breaches and cyberattacks in our increasingly connected world, organizations everywhere need professionals to protect their operations, data and critical assets. Yet talent to fill these vital roles is scarce. Near limitless job opportunities in … Read More

I am reading and hearing about a ton of job scams these days. So many, I wondered how anyone could get a real job or employee, especially in these days of often full-time, work-from-home (WFH) environments. There are many different … Read More

A common theme that permeates (ISC)² Security Congress each year is the need to work collaboratively against cyber adversaries. This year was no different, as speaker after speaker during the event in Last Vegas stressed the importance of collaboration, information-sharing and … Read More

Conventional ransomware encrypts the victims’ files and holds them hostage, unavailable to their owners, promising to provide a decryptor once the victims’ pay the ransom. In some cases being tracked by security firm Cyble, however, they offer nothing in return. … Read More

Cyberattacks are the biggest risk to the UK financial system, according to new research from the Bank of England.

The recent arrest demonstrates how very small and unsophisticated a cybercriminal team can be to launch a very successful phishing campaign that takes victims for millions.

With ransomware gangs making so much money and then dropping off the face of the earth, what’s the motivation to come back to life and potentially risk getting caught?

Under the guise of determining applicant eligibility for a U.S. federal government job, this latest phishing attack plants the seed for a future attack on the victim organization.

A new world order is taking shape as private enterprise, in the form of technology companies, start playin a decisive role in geopolitical events, said Ian Bremmer, the president and founder of Eurasia Group. Speaking to an audience gathered in … Read More

INKY has published a report on the use of small business grants as phishing lures. Scammers are impersonating the US Small Business Administration (SBA) to distribute phony grant applications hosted on Google Forms.

With the current threats to cyber stability around the world, there’s never been a greater urgency for cybersecurity professionals than now. Organizations are investing more time, money and talent to detecting and mitigating cyberattacks. The result is a boom in … Read More

Scammers have been around as long as history has been recorded. Think about the famous ‘Trojan Horse’ for example. A perfect scam that allowed attackers to get behind the city walls. The same is still happening, although the technology has … Read More

The cybersecurity community grew by 11% over the past year to 4.7 million professionals around the globe, but so did the skills gap. In fact, the gap widened at the faster pace of 25%, leading to 3.4 million vacancies, according … Read More

New analysis of cyberattacks shows that organizations aren’t able to properly detect ransomware attacks, resulting in a majority of victims paying the ransom to retrieve data.

New insight from the SANS Institute surveying 300 ethical hackers sheds some light on how they perceive your security stance – and how easy it is for them to break in despite your efforts.

Security researchers at Akamai identify an average of 13 million newly observed domains (NOD) each month this year, representing about 20% of the NODs resolved in the same timeframe.

Researchers at Mandiant have published an analysis of a phishing-as-a-service kit called “Caffeine,” which further lowers the bar for inexperienced cybercriminals by offering a publicly available, easy-to-use phishing service.

The approach to cybersecurity historically has revolved around self-interest. It’s time to change that to think about the collective, according to Ciaran Martin, founder of the U.K.’s National Cyber Security Centre. “We’re all interested in cybersecurity because we’re professionals, but … Read More