A new exploit allows hackers to spoof two-factor authentication requests by sending a user to a fake login page and then stealing the username, password, and session cookie. KnowBe4 Chief Hacking Offi
In the latest episode of how badly some branches of government are at cybersecurity, a new study by the cybersecurity outfit Global Cyber Alliance indicates that 95 percent of the email domains manage
PhishMe, a seven year old startup that helps companies train employees to avoid phishing scams, announced today that it has been purchased by a consortium of private equity firms at a valuation of $40
Menlo Security, a startup with a unique approach to protecting your company from malware and phishing attacks, announced a $40 million Series C round today. Menlo protects customers by never letting e
Google has today launched a free, opt-in program aimed at users who believe their Google accounts -- such as Gmail, Drive, YouTube etc -- to be at particularly high risk of targeted online attacks.
There are lots of reasons scammers send a phishing email. They may want to get access to the company network or perhaps a quick payout with ransomware. Maybe it’s just a good old-fashioned con
DocuSign, the owner of eSignature, one of the most popular digital signature services, said today that a database of customer emails was breached and used in a phishing campaign that began last week.
Following the widespread phishing scam that affected Google Docs and Gmail users this week, Google says it’s now rolling out a new security feature in its Gmail application on Android that will
Early this afternoon, a new type of phishing attack popped up, targeting Google Docs/Gmail users and spreading like crazy. Well-disguised and infuriatingly subtle, just a click or two (on what was an
There's no shortage of ways adversaries will employ to get you to click through to a malicious website, some technical, some psychological. This one is interesting because it leverages a useful featur
Photos apparently stolen from Emma Watson, Amanda Seyfried and other female celebrities have been posted on 4Chan and Reddit, drawing comparisons to a 2014 hack, grossly dubbed "The Fappening" that ex
Researchers at the Georgia Institute of Technology have created a form of ransomware that can hit us where it really counts: the water supply. Their program installed itself in a model water plant and
In another interesting example of what happens when you don’t manage your backups correctly, the Licking County government offices, including the police force, have been shut down by ransomware.
According to Internet security team Volexity has detected an active spear-phishing effort by Russian hacker groups including Cozy Bear and the Dukes. The targeted phishing emails feature subject lines
More than 90 percent of all phishing emails are now ransomware. The average amount paid via ransomware has grown from $40 in 2009 to $1,000 in 2016. This amount will grow even faster as ransomware mov
Researchers at Ben-Gurion University of the Negev (BGU), the University of South Alabama, and Singapore University of Technology and Design have successfully injected malicious code into a computer wh
I’ve recently seen a few examples of services that ask customers to type in their online banking usernames and passwords so the service can access their bank accounts on their behalf. The applicatio
Say what you will about the thieves who ply their trade in the digital realm, you can’t deny they put in a hard day’s work. After all, according to Verizon’s just-released 2016 Data Breach Inves
The reality is that merely checking a March Madness bracket puts not only the employee at risk, but also the entire enterprise.
GreatHorn, a cloud security platform focused on stopping phishing attacks, has raised $2.25 million in seed funding led by ff Venture Capital and SoftTech VC, with participation from Techstars Ventur