Old Dog, New Trick: Hackers Use Logons in URLs to Bypass Email Scanners
A new phishing method uses a decades-old special URL format to take advantage of how security solutions and email clients interpret URLs, tricking victims into...
Tag : Phishing
Phishing Attacks Reach an All-Time High, More Than Tripling Attacks in Early 2022
Reaching more than 1 million attacks in a single quarter for the first time, new data on phishing attacks in Q1 of 2022 show an...
FTC Warns that Scammers are Turning to Cryptocurrencies
The US Federal Trade Commission (FTC) has warned that people have reported losing over $1 billion in crypto to scams since the beginning of 2021....
[Live Demo] Ridiculously Easy Security Awareness Training and Phishing
Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your...
Homographic Domain Name Phishing Tactics
Bitdefender warns that Microsoft Office applications are vulnerable to phishing tactics that exploit international domain names (IDNs). Affected applications include Outlook, Word, Excel, OneNote, and...
Why We Recommend Your Passwords Be Over 20-Characters Long
KnowBe4 just released its official guidance and recommendations regarding password policy. It has been a project in the works for many months now, but we...
Smishing and Home Delivery
A smishing campaign is impersonating the UK-based delivery company Evri with text messages informing recipients that their package couldn’t be delivered, according to Paul Ducklin...
SideWinder Targets Pakistani Entities With Phishing Attacks
The India-aligned APT SideWinder is using a variety of social engineering techniques to target Pakistani government and military entities, according to researchers at Group-IB. The...
U.K.’s National Health Service Becomes the Latest Victim of a Credential Harvesting Phishing Operation
Part of a six-month attack, email accounts on the NHS’ Microsoft 365 instance were compromised, resulting in over 1,100 targeted email attacks used to obtain...
Phishing Attacks Rise 54% as the Initial Attack Vector Across All Threat Incidents
As cybercriminal groups hone their craft, one analysis shows them shying away from zero-day exploits, use of valid accounts, and third-party vulnerabilities to gain initial...