SecureList

SEPTEMBER 13, 2021

The Incident response analyst report provides insights into incident investigation services conducted by Kaspersky in 2020. In 2020, the pandemic forced companies to restructure their information security practices, accommodating a work-from-home (WFH) approach. Geography of incident responses by region, 2020.

Social Engineering 109

Social Engineering Healthcare Ransomware Government 109

Krebs on Security

FEBRUARY 26, 2023

But we do know the March 2020 attack was precipitated by a spear-phishing attack against a GoDaddy employee. GoDaddy described the incident at the time in general terms as a social engineering attack, but one of its customers affected by that March 2020 breach actually spoke to one of the hackers involved.

Hacking 268

Hacking Social Engineering Phishing Scams 268

Security Boulevard

OCTOBER 15, 2021

In the Human Hacking report recently published by SlashNext Threat Labs, data shows phishing attacks rose 51% over 2020 (a record-breaking year), and 59% were credential stealing.

Social Engineering 52

Social Engineering Engineering Phishing Hacking 52

Security Boulevard

FEBRUARY 23, 2021

Such lures are used as social engineering schemes by threat actors; in this case, the malware was targeted at security researchers. We have recently observed other instances of threat actors targeting security researchers with social engineering techniques. Threat attribution. ShellExecuteExW. GetAdaptersInfo.

Social Engineering 64

Social Engineering Engineering Passwords Malware 64

SecureList

MARCH 1, 2021

In 2020, Kaspersky mobile products and technologies detected: 5,683,694 malicious installation packages, 156,710 new mobile banking Trojans, 20,708 new mobile ransomware Trojans. It just so happened that the year 2020 gave hackers a large number of powerful news topics, with the COVID-19 pandemic as the biggest of these.

Mobile 132

Mobile Malware Adware Banking 132

SecureList

JULY 21, 2021

This article contains some analytical findings from Managed Detection and Response (MDR) operations during Q4 2020. In Q4 2020, the average number of collected raw events from one host was around 15 000. Social engineering. What is Kaspersky MDR. Data processing pipeline and security operations. DDOS/DOS with impact.

Social Engineering 96

Social Engineering Engineering Adware Technology 96

Malwarebytes

MARCH 17, 2021

The so-called “mastermind” behind the 2020 Twitter hack that compromised the accounts of several celebrities and public figures—including President Barack Obama, Bill Gates, and Elon Musk—pleaded guilty to several charges on Tuesday in a Florida court. He will also earn credit for the 229 days that he has already spent in jail.

Hacking 82

Hacking Social Engineering Scams Accountability 82

Trend Micro

SEPTEMBER 14, 2020

Malicious actors have always taken advantage of big news to use as lures for socially engineered threats, but these events tend to be fairly short news cycles. When Covid-19 started making headlines in early 2020, we started seeing new threats using this in the attacks.

Social Engineering 52

Social Engineering Engineering Ransomware Malware 52

Security Affairs

MARCH 3, 2021

The Perl.com domain was hijacked in January, but a senior editor at the site revealed that the hackers took control of the domain in September 2020. The Perl.com domain was hijacked in January 2021, but according to Brian Foy , senior editor of Perl.com, the attack took place months before, in September 2020. ” added Foy.

Social Engineering 105

Social Engineering Malware Hacking Engineering 105

SecureWorld News

MAY 11, 2023

RELATED: Famous Twitter Accounts Hacked: Insider Threat or Social Engineering Attack? ] Lastly, the DOJ says that O'Connor stalked and threatened a minor victim in June and July 2020, orchestrating a series of swatting attacks on this third victim. Now, the U.S.

Accountability 77

Accountability Social Engineering Media Hacking 77

SecureList

AUGUST 23, 2021

billion USD in 2021, which is slightly less than the total revenue in 2020 but still significantly above the pre-pandemic figures. This rapid growth owes a lot to the surge in mobile gaming and focus on social interaction during the pandemic. Pandemic-related statistics cover the period of January 2020 through June 2021.

Adware 112

Adware Mobile Phishing Malware 112

Hot for Security

JUNE 29, 2021

GitHub revealed that its Security Bug Bounty Program registered the most submissions in 2020 since its launch in 2014, and 204 vulnerabilities qualified for bounties. 2020 was our busiest year yet,” said GitHub. All software and hardware has vulnerabilities.

Social Engineering 52

Social Engineering Software Engineering Risk 52

Hot for Security

JUNE 29, 2021

GitHub revealed that its Security Bug Bounty Program registered the most submissions in 2020 since its launch in 2014, and 204 vulnerabilities qualified for bounties. 2020 was our busiest year yet,” said GitHub. All software and hardware has vulnerabilities.

Social Engineering 52

Social Engineering Software Engineering Risk 52

The Hacker News

AUGUST 16, 2022

Slovak cybersecurity firm ESET linked it to a campaign dubbed "Operation In(ter)ception" that was first disclosed in June 2020 and involved using social engineering tactics to trick employees working in the aerospace and military sectors into

Social Engineering 86

Social Engineering Malware Engineering Cybersecurity 86

Hot for Security

MARCH 24, 2021

Fraud losses climbed to $56 billion in 2020 and identity fraud scams accounted for a staggering $43 billion of that cost, according to a new report. As consumers relied increasingly on digital payment products during 2020, identity fraud scams kept pace with this shift in behavior, the report reveals.

Scams 122

Scams Accountability Authentication Internet 122

The Hacker News

JANUARY 26, 2021

An evolving phishing campaign observed at least since May 2020 has been found to target high-ranking company executives across manufacturing, real estate, finance, government, and technological sectors with the goal of obtaining sensitive information.

Phishing 114

Phishing Social Engineering Manufacturing Engineering 114

Krebs on Security

DECEMBER 29, 2020

With the ongoing disruption to life and livelihood wrought by the Covid-19 pandemic, 2020 has been a fairly horrid year by most accounts. In almost every category — from epic breaches and ransomware to cybercrime justice and increasingly aggressive phishing and social engineering scams — 2020 was a year that truly went to eleven.

Scams 269

Scams Social Engineering Cybercrime Advertising 269

SecureWorld News

MARCH 22, 2021

Here is the report's opening paragraph: "In 2020, while the American public was focused on protecting our families from a global pandemic and helping others in need, cyber criminals took advantage of an opportunity to profit from our dependence on technology to go on an Internet crime spree. Business Email Compromise 2020.

Cybercrime 55

Cybercrime Scams Banking Accountability 55

Krebs on Security

AUGUST 21, 2020

“In mid-July 2020, cybercriminals started a vishing campaign—gaining access to employee tools at multiple companies with indiscriminate targeting — with the end goal of monetizing the access.” Restrict VPN access hours, where applicable, to mitigate access outside of allowed times.

VPN 359

VPN Social Engineering Authentication Engineering 359

Security Through Education

NOVEMBER 8, 2020

In Episode 135, Chris Hadnagy and Maxie Reynolds are joined by social engineering and insider threats expert : Lisa Forte. Learn how Lisa went f rom fighting terrorists and real-life sea pirates to be ing an expert on cybercrime and social engine ering. – Nov 09, 2020. . Enjoy the Outtro Music? The post Ep.

Social Engineering 76

Social Engineering Engineering Education Cybercrime 76

Spinone

SEPTEMBER 8, 2020

PhishingBox PhishingBox specializes in security and phishing awareness training, phishing simulation, and social engineering prevention. Still, even an aware employee can make a mistake―because of tiredness, the sophistication of a hacker’s social engineering tactics, or other factors.

Phishing 52

Phishing InfoSec Social Engineering Backups 52

Security Through Education

OCTOBER 27, 2021

Social-Engineer, LLC saw an almost 350% increase in recognition of phishing emails when using a similar training platform in 2020. It is to these carefully crafted campaigns that Social-Engineer, LLC can attribute their success. The answer is simple; with simulated attacks and subsequent training.

Cybersecurity 137

Cybersecurity Social Engineering Firewall Engineering 137

Krebs on Security

AUGUST 19, 2021

billion in 2020. “For decades, West African scammers, primarily located in Nigeria, have perfected the use of social engineering in cybercrime activity.” Image: FBI. DON’T QUIT YOUR DAY JOB.

Ransomware 359

Ransomware Social Engineering Cybercrime Scams 359

Daniel Miessler

MAY 19, 2021

Top three patterns in breaches were: social engineering, basic web application attacks, and system intrusion. Top three patterns in incidents were: denial of service, basic web application attacks, and social engineering. Ransomware doubled from 5% of breaches to 10% in 2020. 61% of breaches involved credentials.

Data breaches 192

Data breaches Social Engineering Ransomware Phishing 192

CyberSecurity Insiders

FEBRUARY 22, 2022

And security experts from Check Point believe that the malicious software has so far targeted over 140,000 victims since November 2020, hitting high profile victims including those on PayPal, Microsoft, Amazon, Bank of America and Wells Fargo.

Malware 122

Malware Social Engineering Banking Phishing 122

McAfee

JANUARY 23, 2020

Join McAfee at RSA 2020. This seminar will provide a full day of focus on emerging threats such as ransomware, targeted attacks, emerging IoT threats, and new aspects of social engineering and deep fake human manipulation. The post RSA 2020 – See You There! Monday, February 24 | 1:00pm – 1:20pm| Moscone Center.

Social Engineering 52

Social Engineering Engineering CISO Architecture 52

Security Affairs

FEBRUARY 19, 2024

The nation-state actors are known to carry out cyber-espionage against targeting government, military, and national infrastructure entities in Europe and Central Asia since at least December 2020. “TAG70 has demonstrated a high level of sophistication in its attack methods.

Government 112

Government Social Engineering Engineering Hacking 112

SecureWorld News

MAY 20, 2020

The 2020 Verizon Data Breach Investigations Report (DBIR) has the answers. 2020 DBIR cybercrime report and key statistics. For more on nation-state cyberattacks in 2020 and beyond, listen to this podcast episode on geopolitics and the cyber threat landscape: What are the motivations for criminal hackers according to DBIR 2020?

Data breaches 57

Data breaches Social Engineering Malware Cybercrime 57

Duo's Security Blog

FEBRUARY 25, 2021

In this report, we walk through a real-world case study of how a socially engineered phishing attack worked on a popular company, and show you some steps on how it could have been prevented. This report guides you through some big questions and answers about phishing, including: What is social engineering?

Phishing 86

Phishing Social Engineering Engineering Authentication 86

Mitnick Security

FEBRUARY 1, 2021

If you thought 2020 was a big year for social engineering schemes — watch out! Twenty twenty one is coming in hot.

Social Engineering 52

Social Engineering Hacking Engineering 52

Krebs on Security

NOVEMBER 21, 2020

2019 that wasn’t discovered until April 2020. In response to questions from KrebsOnSecurity, GoDaddy acknowledged that “a small number” of customer domain names had been modified after a “limited” number of GoDaddy employees fell for a social engineering scam. and 11:00 p.m. PST on Nov.

Cryptocurrency 363

Cryptocurrency VPN Scams Social Engineering 363

Hot for Security

MARCH 19, 2021

According to the report , in 2020 the IC3 received 19,369 business email compromise (BEC) / email account compromise (EAC) complaints “with adjusted losses of over $1.8 million in 2020. Losses registered in 2020 totaled $4.2 On the ransomware front, the IC3 received 2,474 complaints with adjusted losses of over $29.1

Ransomware 87

Ransomware Identity Theft Scams Social Engineering 87

Krebs on Security

JANUARY 30, 2024

2022 that an intrusion had exposed a “limited number” of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials. The vulnerability exploited by the intruders was patched back in 2020, but the employee never updated his Plex software. Twilio disclosed in Aug.

Social Engineering 318

Social Engineering Mobile Cybercrime Passwords 318

CyberSecurity Insiders

FEBRUARY 7, 2022

A Greece-based company that owns Cosmote and OTE was slapped with a €9 million penalty for failing to inform its customers that their data was stolen in a sophisticated cyber attack that occurred in 2020. Security analysts claim that often such info is reused in identity theft attacks that have risen at an enormous rate since March 2020.

Cyber Attacks 88

Cyber Attacks Identity Theft Social Engineering Engineering 88

Malwarebytes

APRIL 19, 2022

A new advisory issued by the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the US Treasury Department (Treasury), highlights the cyberthreats associated with cryptocurrency thefts and tactics used by a North Korean state-sponsored advanced persistent threat (APT) group since at least 2020.

Social Engineering 115

Social Engineering Cryptocurrency Computers and Electronics Engineering 115

Security Affairs

FEBRUARY 9, 2021

The two CSRF vulnerabilities, tracked as CVE-2020-35942, were discovered by researchers at security firm Wordfence. An attacker could trigger the flaws with social engineering techniques by tricking WordPress admins into clicking specially crafted links or attachments to perform malicious actions.

Social Engineering 110

Social Engineering Firewall Engineering Phishing 110

Security Affairs

AUGUST 2, 2021

According to the 2020 Insider Threat Report , contractors, service providers, and temporary workers pose the greatest risk to 50% of organizations. The cleaner’s insider access takes care of the physical access challenge, while detachment to the organization makes the individual more susceptible to social engineering.

Social Engineering 129

Social Engineering Healthcare Engineering Hacking 129