phishing

TriNet sent remote workers an email that some thought was a phishing attack

It was the one of the best phishing emails we’ve seen… that wasn’t. Phishing remains one of the most popular attack choices for scammers. Phishing emails are designed to impersonate

Facebook sues OnlineNIC for domain name fraud associated with malicious activity

Facebook today announced it has filed suit in California against domain registrar OnlineNIC and its proxy service ID Shield for registering domain names that pretend to be associated with Facebook, li

Google updates its Titan security keys with USB-C

Google has revealed its latest Titan security key — and it’s now compatible with USB-C devices. The latest Titan key arrives just weeks after its closest market rival Yubico — which also man

Microsoft says Iranian hackers targeted a 2020 presidential candidate

Microsoft said it has found evidence that hackers associated with Iran have targeted a 2020 presidential candidate. The tech giant’s security and trust chief confirmed the attack in a blog post,

Justice Department indicts 80 individuals in a massive business email scam bust

The Justice Department has indicted dozens of individuals accused of involvement in a massive business email scam and money laundering scheme. Thom Mrozek, a spokesperson for the U.S. Attorneys Office

StockX admits ‘suspicious activity’ led to resetting passwords without warning

StockX, a popular site for buying and selling sneakers and other apparel, has admitted it reset customer passwords after it was “alerted to suspicious activity” on its site, despite tellin

Google’s Titan security keys come to Japan, Canada, France and the UK

Google today announced that its Titan Security Key kits are now available in Canada, France, Japan and the U.K. Until now, these keys, which come in a kit with a Bluetooth key and a standard USB-A don

Bellingcat journalists targeted by failed phishing attempt

Investigative news site Bellingcat has confirmed several of its staff were targeted by an attempted phishing attack on their ProtonMail accounts, which the journalists and the email provider say faile

KKR leads $300M investment in phishing training company KnowBe4

You might not have known about KnowBe4 before, but you should now, because this morning the company announced a massive $300 million investment led by private equity firm KKR. The deal is based on a $

AI security startup Darktrace’s CEO defeats buzzword bingo with trust and transparency

It takes a lot of trust to allow a company to come in and install a mystery box on their network to monitor for threats. It’s like inviting in a security guard to sit in your living room to make

Google’s own data proves two-factor is the best defense against most account hacks

Every once in a while someone will ask me what is the best security advice. The long answer is “it depends on your threat model,” which is just a fancy way of saying what’s good secu

‘Crypto exchange’ Goxtrade caught using other people’s photos on its staff page

Alleged cryptocurrency exchange Goxtrade bills itself as a “trusted platform for trading bitcoins,” but its staff page is filled with photos of people pulled seemingly at random from the i

Google discloses security bug in its Bluetooth Titan Security Keys, offers free replacement

Google today disclosed a security bug in its Bluetooth Titan Security Key that could allow an attacker in close physical proximity to circumvent the security the key is supposed to provide. The compan

Binance pledges to ‘significantly’ increase security following $40M Bitcoin hack

Binance has vowed to raise the quality of its security in the aftermath of a hack that saw thieves make off with more than $40 million in Bitcoin from the exchange. The company — which is widely

Justice Department charges Chinese hacker for 2015 Anthem breach

U.S. prosecutors have brought charges against a Chinese national for his alleged involvement in the data breach at health insurance giant Anthem announced in 2015 that resulted in the theft of 78.8 mi

Nearly all 2020 presidential candidates aren’t using a basic email security feature

Three years after Russian hackers targeted and breached the email accounts of Hillary Clinton’s presidential campaign, nearly all of the upcoming 2020 presidential candidates are still lagging i

Russian hacked ‘at least one’ Florida county prior to 2016 election

Russian operatives successfully targeted and hacked “at least one” Florida county government in the run up to the 2016 U.S. presidential election, according to new findings by the Special

A new state-backed hacker group is hijacking government domains at a phenomenal pace

A few months ago, researchers at Cisco’s Talos cybersecurity unit sounded the alarm after discovering a previously undiscovered hacker group targeting a core part of the internet’s infrast

Microsoft: Hackers compromised support agent’s credentials to access customer email accounts

On the heels of a trove of 773 million emails, and tens of millions of passwords, from a variety of domains getting leaked in January, Microsoft has faced another breach affecting its web-based email

Google turns your Android phone into a security key

Your Android phone could soon replace your hardware security key to provide two-factor authentication access to your accounts. As the company announced at its Cloud Next conference today, it has devel
Load More