phishing

Google brings phishing detection to Docs, Sheets and Slides, along with other privacy and security updates

Among the privacy and security-related updates announced today at Google’s I/O conference, the company says it’s bringing phishing protection to its suite of productivity apps, including D

HacWare lands $2.3M to expand cybersecurity awareness training

If you work at a company above a certain size, you’ll understand just how little patience we all feel for internal phishing awareness, even despite the fact that phishing remains one of the lead

Mailchimp says an internal tool was used to breach hundreds of accounts

Email marketing giant Mailchimp has confirmed a data breach after malicious hackers compromised an internal company tool to gain access to customer accounts. In a statement given to TechCrunch, Mailch

Google discovers threat actor working as an ‘initial access broker’ for Conti ransomware hackers

Google’s Threat Analysis Group has observed a financially motivated threat actor working as an intermediary for the Russian hackers, including the Conti ransomware gang. The group, which Google refe

Ukraine says Belarusian hackers are targeting its defense forces

Ukrainian cybersecurity officials have warned that Belarusian state-sponsored hackers are targeting the private email addresses of Ukrainian military personnel. Announcing the activity in a Facebook p

Twitter reinstates accounts sharing open source info on Russian military threat

Twitter disclosed that it mistakenly removed a number of accounts sharing details about Russian military activity Wednesday, as the nation’s aggressive posture toward neighboring Ukraine threate

Meta files federal lawsuit to uncover individuals running a phishing scam on its platforms

Meta, formerly known as Facebook, announced today that it has filed a federal lawsuit in California court to take action to uncover individuals running a phishing scam. The company says the legal acti

Microsoft seizes control of websites used by China-backed hackers

Microsoft has seized control of a number of websites that were being used by a Chinese government-backed hacking group to target organizations in 29 countries, including the U.S. Microsoft’s Digital

GoDaddy says data breach exposed over a million user accounts

Web hosting giant GoDaddy has reported a data breach, and warns that data on 1.2 million customers may have been accessed. In a filing with the Securities and Exchange Commission, GoDaddy’s chie

Robinhood says millions of customer names and email addresses taken in data breach

Online stock trading platform Robinhood has confirmed it was hacked last week with more than five million customer email addresses and two million customer names taken, as well as a much smaller set o

Google to give security keys to ‘high risk’ users targeted by government hackers

Google has said it will provide 10,000 “high-risk” users with free hardware security keys, days after the company warned thousands of Gmail users that they were targeted by state-sponsored

Ransomware recovery can be costly, and not just because of the ransom

Ransomware is rarely out of the headlines. Just last week, IT consulting giant Accenture was hit by the LockBit ransomware gang, days after Taiwan-based laptop maker Gigabyte also fell victim to an ap

Passwordstate customers complain of silence and secrecy after cyberattack

It has been over three months since Click Studios, the Australian software house behind the enterprise password manager Passwordstate, warned its customers to “commence resetting all passwords.&

RSA spins off fraud and risk intelligence unit as Outseer

RSA Security has spun out its fraud and risk intelligence business into a standalone company called Outseer that will double down on payment security tools amid an “unprecedented” rise in

Hackers are targeting employees returning to the post-COVID office

With COVID-19 restrictions lifting and employees starting to make their way back into offices, hackers are being forced to change tack. While remote workers have been scammers’ main target for the p

Click Studios asks customers to stop tweeting about its Passwordstate data breach

Australian security software house Click Studios has told customers not to post emails sent by the company about its data breach, which allowed malicious hackers to push a malicious update to its fla

Passwordstate users warned to ‘reset all passwords’ after attackers plant malicious update

Click Studios, the Australian software house that develops the enterprise password manager Passwordstate, has warned customers to reset passwords across their organizations after a cyberattack on the

Enterprise security attackers are one password away from your worst day

IT organizations must shift their enterprise security strategy to detect credential-based attacks before they become a problem.

Education nonprofit Edraak ignored a student data leak for two months

Edraak, an online education nonprofit, exposed the private information of thousands of students after uploading student data to an unprotected cloud storage server, apparently by mistake. The nonprofi

Notion’s hours-long outage was caused by phishing complaints

Last week’s hours-long outage at online workspace startup Notion was caused by phishing complaints, according to the startup’s domain registrar. Notion was offline for most of the morning
Load More