Monthly Archives: November 2023

Researchers at Sophos have found that the criminal market for malicious generative AI tools is still disorganized and contentious.

Using something as simple as an attachment with an Israel/Palestine-related filename seems to be all it takes for new social engineering attacks disguised as donation confirmations.

Check out the 49 new pieces of training content added in November, alongside the always fresh content update highlights, events and new features.

To celebrate National Computer Security Day, which is recognized on November 30 every year, KnowBe4 encourages all IT and security professionals to train their workforce how to stay safe from cybersecurity threats as the organization’s last line of defense.

There’s been a “precipitous rise” in QR code phishing  campaigns in 2023, according to Matthew Tyson at CSO.

This is a cautionary tale of both how your data can legally end up in the hands of an organization you never intended and how victims can be largely left in the dark post-breach.

Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.

Researchers at ESET describe various types of scams launched by users of Telekopye, a telegram bot that assists in crafting social engineering attacks.

With organizations heavily focusing on protecting the corporate endpoint, cybercriminals are switching focus onto mobile devices where users are more prone to fall for their social engineering tactics.

The digital landscape is evolving at an exponential rate, and with it, the cybersecurity challenges we face.

Huntress has released a report finding that business email compromise (BEC) attacks have risen in the third quarter of 2023.

New data sheds light on just how active the Initial Access Broker (IAB) business is, and the growth uncovered doesn’t bode well for potential victim organizations.

Security researchers identify growth in the use of an ongoing cyberskimming campaign that involves compromising legitimate website checkout code.

A new analysis of the retail market’s threat landscape discusses the challenges faced by this industry and what threat tactics are being used to take advantage of retail’s cyber weaknesses.

Visa Payment Fraud Disruption (PFD) expects phishing attacks to increase between November 2023 and January 2024. Findings in its Holiday Edition Threats Report outline the popular fraud tactics predicted this holiday season.

Another day, another warning about holiday scams! Lookout Inc., a data-centric cloud security company, is warning employees and businesses that phishing attacks are expected to more than double this week, based on historical data. With more corporate data residing in … Read More

I recently wrote about how 1 in 34 organizations globally has experienced an attempted ransomware attack.  But that statistic doesn’t provide enough context around the impact felt by the organizations that do business in one form or another with those … Read More

Scammers are using a compromised X (formerly Twitter) account belonging to Bloomberg Crypto to send users to a phishing site designed to steal Discord credentials, BleepingComputer reports.