FBI Warns of Criminals Using Social Engineering, Technical Attacks to Bypass Multi-Factor Authentication

Silviu STAHIE | October 15, 2019 | FBI, Industry News, MFA, Multi-Factor Authentication,

FBI’s Cyber Division issued a Private Industry Notification (PIN) warning businesses and other organizations that criminals are using a variety of hacking attacks and social engineering to bypass multi-factor authentication. “FBI reporting ...

HOTforSecurity

Stopping Sophisticated Social Engineering Scams – Looking Beyond the Basic Signs

Lisa O'Reilly | October 14, 2019 | phishing defense, phishing threat intelligence, real time phishing threat intelligence, , ,

We recently came across an article at CSO online – 10 signs you’re being […] ...

SlashNext

Is Business Email Compromise a “cyber attack?”

Al Berg | October 14, 2019 | Awareness, online security, , worst practices

Just what constitutes a cyber attack? That’s the question facing a court in a case brought against insurer AIG. One of the firm’s clients was ...

Al Berg's Paranoid Prose

Hong Kong Protests, Instagram’s Anti-Phishing Tool, Smart Device Fail

Tom Eston | October 14, 2019 | Cybersecurity, D-Link, facial recognition, fail, hong kong, Instagram, Phishing, Podcast, Podcast Episodes, Privacy, Protest, router, smart device, Smart Lock, , Weekly Blaze Podcast, wifi

You’re listening to the Shared Security Podcast, exploring the trust you put in people, apps, and technology…with your host, Tom Eston In episode 90 for October 14th 2019: How protesters in Hong ...

Shared Security Podcast

A Closer Look at the Emotet Banking Trojan

Tomas Meskauskas | October 10, 2019 | banking, Cybersecurity, Emotet, Malware, Phishing, Ryuk, TrickBot, trojan

Banking trojans can be one of the most financially damaging pieces of malware to infect computers. Banking trojans are typically seen as any piece of malicious software designed to gain access to ...

Security Boulevard

Threat Discovery: Attackers are Abusing Adobe Open Redirect Service to Serve Phishing

Lisa O'Reilly | October 4, 2019 | Phishing, phishing defense, phishing site, phishing threat, phishing URL, real time phishing threat intelligence, , targeted phishing defense

As we’ve blogged about before, cybercriminals are increasingly leveraging legitimate commercial infrastructure sites to […] ...

SlashNext

The Threat Detection Deficit – Microsoft Office 365 ATP Raises the Stakes

Lisa O'Reilly | October 2, 2019 | APT, Phishing, Phishing Attacks, phishing threat detection, phishing URL, phishing URL analysis, real time phishing threat intelligence, , threat detection

A recent Dark Reading article, based on IRONSCALES’ research, found that Microsoft Office 365 […] ...

SlashNext

How to Protect Your Employees When Threat Actors Leverage Legitimate Infrastructure

Lisa O'Reilly | October 1, 2019 | Phishing Attacks, phishing emails, real time phishing threat intelligence, , targeted phishing defense, Threat Intelligence, URL filtering, URL filtering tools

In a recent blog we discussed Why Organizations Need to Take Phishing Threats Against […] ...

SlashNext

Amazon Smart Glasses, Webkey Social Engineering, Erase Your Old Hard Drives!

Tom Eston | September 30, 2019 | Alexa, amazon, Amazon Echo, Amazon Echo Frames, Data Privacy, data storage, Hard Drives, Phishing, Podcast Episodes, , Webkey

In episode 92 of our monthly show Tom and Scott talk about Amazon’s new smart glasses that work with Alexa, what webkey’s are and how they could be used for social engineering, ...

Shared Security Podcast

USENIX Enigma 2019, Aaron Grattafiori’s ‘If Red Teaming Is Easy: You’re Doing It Wrong’

Marc Handelman | September 24, 2019 | Conferences, education, Information Security, Red Team, USENIX Enigma 2019

Thanks to USENIX for publishing the USENIX Enigma 2019 outstanding conference videos on their YouTube Channel Permalink ...

Infosecurity.US

Social Engineering

Social Engineering

A Closer Look at the Emotet Banking Trojan

Lock Him Up: Why Wyden Says Zuckerberg needs ‘Prison Term’

Tech Support Scams and What They Mean

FBI Warns of Criminals Using Social Engineering, Technical Attacks to Bypass Multi-Factor Authentication

Stopping Sophisticated Social Engineering Scams – Looking Beyond the Basic Signs

Is Business Email Compromise a “cyber attack?”

Hong Kong Protests, Instagram’s Anti-Phishing Tool, Smart Device Fail

A Closer Look at the Emotet Banking Trojan

Threat Discovery: Attackers are Abusing Adobe Open Redirect Service to Serve Phishing

The Threat Detection Deficit – Microsoft Office 365 ATP Raises the Stakes

How to Protect Your Employees When Threat Actors Leverage Legitimate Infrastructure

Amazon Smart Glasses, Webkey Social Engineering, Erase Your Old Hard Drives!

USENIX Enigma 2019, Aaron Grattafiori’s ‘If Red Teaming Is Easy: You’re Doing It Wrong’

NEW TECH: ‘Passwordless authentication’ takes us closer to eliminating passwords as the weak link

Facebookery: The Conflation

Kaspersky Reports More Than 100 Million Attacks Hit Smart Devices in H1 2019

Cyber security audits top due diligence checklists

Derbycon 2019, Dave Kennedy’s, Jess Walpole’s, Scott Angelo’s, Kevin Baker’s – (Panel) ‘Enabling The Future’