Trend Micro

JUNE 26, 2025

To do this, you can run organizational surveys about security knowledge, conduct a baseline phishing simulation, and evaluate previous incidents. You can use a dedicated security awareness and training offering that combines modern phishing simulations with risk-based training modules. Competition Cyber Risk Assessments What Is?

Security Awareness

Thales Cloud Protection & Licensing

FEBRUARY 19, 2025

Security Holes Weak Initial Authentication : Relying on less secure methods such as username/password combinations or SMS one-time passwords (OTPs) for FIDO authenticator registration exposes the system to phishing attacks, account takeovers, and fraudulent activities. PIN Length : The FIDO 2.0 Want to know more?

Authentication

Duo's Security Blog

APRIL 23, 2025

New threat types such as push-bombing, social engineering, and spear phishing are forcing organizations to do more than rely on MFA alone. The Duo Mobile app allows users to easily download the app onto their devices, while a self-service portal also lets them manage their own accounts and devices, reducing help desk tickets and support time.

Authentication

Responsible Cyber

MARCH 2, 2025

Its cloud-based infrastructure ensures scalability, supporting everything from small meetings to large webinars. employees using free accounts for work) and Shadow AI (e.g., Admins can enforce 2FA for all users, reducing the risk of account compromise. using unapproved AI tools during meetings). Business Plan: Priced at $19.99

Education

Webroot

OCTOBER 31, 2024

Steam the Webinar on demand HERE As we look back on the cybersecurity landscape of 2024, it’s clear that the world of digital threats continues to evolve at an alarming pace in parallel with AI. RedLine’s distribution methods remained diverse, with phishing emails and malicious websites being the primary vectors.

Malware

Thales Cloud Protection & Licensing

MARCH 12, 2025

The newly introduced SafeNet eToken Fusion NFC PIV enables passwordless, phishing-resistant authentication across a wide range of devices. Comply with the most stringent requirements in your market Regulated markets often face stringent guidelines to ensure security, accountability, and transparency. Want to know more?

Passwords

Trend Micro

JUNE 10, 2025

Each team can independently sign off on an image, ensuring accountability and reducing deployment risk. Worldwide 2023 Email Phishing Statistics and Examples BERT Ransomware Group Targets Asia and Europe on Multiple Platforms See all articles Trend Vision One™ - Proactive Security Starts Here.

Cyber Risk

Thales Cloud Protection & Licensing

MAY 28, 2025

Before we dive in, we have an upcoming webinar where our VP of Workforce IAM, Guido Gerrits, goes even deeper on the topic with more insights and expert recommendations for traversing this complex set of circumstances. What is digital sovereignty?

Authentication

Trend Micro

JULY 2, 2025

More generally, organisations should consider updating security strategy to account for the elevated threat from AI-powered attacks. 6 Alerts Back Unread All Inside the criminal mind: Trend’s deep dive into cybercrime. close Read report > Cloud security that leads: Centralized, multi-layered protection now named a CNAPP Leader by IDC.

Cyber Risk

Duo's Security Blog

JANUARY 14, 2025

In recent webinar Preventing Helpdesk Phishing with Duo and Traceless , Duo PMM Katherine Yang sat down with Gene Reich, Co-founder of Traceless to discuss why stronger identity verification is critical for MSPs and helpdesk teamsespecially with the increased accessibility of AI technologies driving identity fraud.

Phishing

SecureList

MARCH 14, 2022

About the webinar. We advise organizations to: Take typical measures against DDoS attacks, ransomware and destructive malware, phishing, targeted attacks, supply-chain attacks and firmware attacks. A: We commonly take TOR and other anonymizing services into account when it comes to the origin of attacks.

DDOS

Duo's Security Blog

APRIL 20, 2023

Through the first two months of 2023 alone, the Australian Competition and Consumer Commission’s Scamwatch reported more than 19,000 phishing reports with estimated financial losses of more than $5.2 What is phishing? This is part of what makes phishing attacks so dangerous.

Phishing

Security Affairs

AUGUST 28, 2020

The Iran-linked Charming Kitten APT group leveraged on WhatsApp and LinkedIn to carry out phishing attacks, researchers warn. Clearsky security researchers revealed that Iran-linked Charming Kitten APT group is using WhatsApp and LinkedIn to conduct spear-phishing attacks. Israel, Iraq, and Saudi Arabia.

Phishing

The Hacker News

AUGUST 15, 2023

Is your organization constantly under threat from credential phishing? Even with comprehensive security awareness training, many employees still fall victim to credential phishing scams. Cybercriminals gaining immediate and unhindered access to sensitive data, email accounts, and other applications. The result?

Phishing

Duo's Security Blog

JULY 15, 2021

But on top of all of that, passwordless should also raise the bar by substantially reducing or even eliminating the risk of phishing attacks. That isn’t to say that every password-less solution needs to be phish-proof. Doing anything else would make push phishing attacks viable.

Phishing

Security Affairs

MAY 8, 2020

Group-IB, a Singapore-based cybersecurity company, observed the growth of the lifespan of phishing attacks in the second half of 2019. Figure 1 The distribution of web-phishing among target categories . CERT-GIB’s findings indicate that phishing attack perpetrators have revised their so-called target pool. Target reshuffle.

Phishing

Duo's Security Blog

NOVEMBER 20, 2023

Security professionals agree that passwords are low hanging fruit for cybercriminals and can even be the keys to the kingdom when the compromised passwords belong to privileged accounts. Add to this, the risks of weak authentication factors such as SMS one-time passcodes and dormant or inactive accounts.

Threat Detection

Malwarebytes

APRIL 2, 2023

Apple fixes actively exploited vulnerability and introduces new features Steer clear of this EE phish that wants your card details 3 tips to raise your backup game 3 tips for creating backups your organization can rely on when ransomware strikes Stay safe!

Backups

Security Affairs

FEBRUARY 7, 2020

. “ Certfa Lab has identified a new series of phishing attacks from the Charming Kitten 1 , the Iranian hacking group who has a close relationship with Iran’s state and Intelligence services. As a result, this method makes it harder for different pages and sections of phishing websites to be exposed to the public.”

Phishing

Duo's Security Blog

DECEMBER 19, 2024

Phishing is still one of the most common attack vectors, and the holidays provide an especially appealing time to launch an attack thats been supercharged by modern natural language processing models and novel QR codes. No industry is spared this phishing season, though some are targeted more often than others.

Phishing

SecureWorld News

SEPTEMBER 29, 2020

Office supply phishing cyberattack campaign. A federal judge just sentenced a Nigerian national to three years in prison for being part of a phishing ring that effectively stole office supplies so it could resell them. It turns out, cybercriminals would like that person's login credentials because they have value. government agencies.

Phishing

SecureWorld News

OCTOBER 19, 2021

TAG reported that Iranian-government-backed actors, known as APT35 and by the aliases Rocket Kitten and Charming Kitten, are quickly picking up speed, especially when it comes to implementing slick phishing attacks. Developing advanced phishing techniques to lure victims. Rocket Kitten successfully attacks university website.

Phishing

Duo's Security Blog

SEPTEMBER 1, 2023

Unlike passwords, passkeys are always strong and phishing resistant. Passkeys based on Webauthn are proven to be resistant to phishing, credential stuffing, adversary-in-the-middle (AITM), server breaches and may other cyberattacks. If you are new to passkeys, you can get up to speed with our primer: What Are Passkeys?

Passwords

SecureList

MAY 27, 2022

The attackers are mainly interested in collecting data on user accounts, IP addresses and session information; and they steal configuration files from programs that work directly with cryptocurrency and may contain account credentials. You can find the recording of the webinar here and a summary/Q&A here. zip”).

Phishing

Webroot

FEBRUARY 11, 2021

An impersonation attack recently made headlines with the 2020 Twitter/Bitcoin scam , in which 130 high-profile Twitter accounts were compromised by outside parties to steal bitcoin. This is why a multi-layered approach that can block phishing sites (including HTTPS) in real time, is key for staying safe. Who is the Impersonator?

Scams

Digital Shadows

AUGUST 17, 2021

What is Phish(ing)? But, never mind the dozens of other reports and white papers about phishing that come out every year from security industry leaders, let’s take a look at the 2021 Verizon DBIR. Why should I care about Phish? The reason why phishing is still reigning supreme?

Phishing

Duo's Security Blog

FEBRUARY 6, 2024

Reducing the risk of identity-based attacks Picture a scenario where an attacker acquires a list of dormant accounts, performs credential-stuffing, and gets the necessary credentials to log-in. Stay tuned!

Accountability

CyberSecurity Insiders

APRIL 10, 2023

“In the current digital landscape, identity security has gained paramount importance due to the growing cyber risks posed by phishing and social engineering attacks utilizing AI. These attacks have become more complex and challenging to detect, leading to increased instances of data breaches, account takeovers, and impersonation attacks.

Identity Theft

Security Boulevard

JULY 6, 2023

It's no secret that the bad guys are training their artificial intelligence (AI) engines to crack passwords, perform account takeovers (ATO), and automate their ransomware demands. Modern solutions need to take into account the new behavioral situation of the user and allow some flexibility – for a defined period of time.

Artificial Intelligence

Duo's Security Blog

OCTOBER 18, 2021

Recently, while co-hosting a webinar that kicked off Cybersecurity Awareness Month, a panelist commented that cybersecurity and privacy are team sports on a campus, much like our athletic teams. The use of phishing to take over user accounts as a first step to gain access to a campus for a ransomware attack has been making the headlines.

Insurance

Security Boulevard

SEPTEMBER 20, 2024

Specifically, CISA and USCG assessors had the most success gaining initial access, attaining network permanence, evading defenses and moving laterally by using valid accounts, phishing schemes and default credentials – all simple attack methods. Maintain a comprehensive asset inventory, and keep software updated and patched.

IoT

Duo's Security Blog

MAY 6, 2024

The security industry has diligently battled compromised credentials, evolving from passwords to multifactor authentication (MFA) to passwordless — our most secure and phishing-resistant method to date — and one that is fully supported in Duo. Despite these advancements, we still see many identity-based breaches year over year.

Authentication

Duo's Security Blog

JULY 6, 2023

Multiple account or credential compromise is the norm This result is surprising, but it’s not entirely new. Also, be sure to register for the state of Passwordless in the Enterprise webinar with Jack Poller and I on July 19th at 1:00pm EDT. Jack will discuss key result from the survey and share his extensive industry experience.

Authentication

Security Boulevard

FEBRUARY 14, 2022

ForgeRock's enterprise CIAM solution also offers a user-friendly privacy and consent dashboard that enables your customers to manage their data privacy settings, along with the ability to safely share their data with third-parties, such as family members, physicians, accountants, and so on. Learn More In Our Webinar.

Passwords

Duo's Security Blog

SEPTEMBER 6, 2023

Be sure to tune into our webinar, The State of Passkeys in the Enterprise , on September 7th at 9am PST | 12pm EST. Passkeys on Cloud Platforms Passkeys have growing support from significant vendors. And when users re-use passwords across different websites, they risk password spraying attacks and put all of their accounts at risk.

Passwords

Security Boulevard

JULY 21, 2023

It comprises technologies and best practices to protect against unauthorized access, account takeover, credential misuse, privilege escalation, and other malicious activities that target user accounts and credentials. These changes may include the creation of unusual accounts or registering new authentication devices.

Threat Detection

Duo's Security Blog

MARCH 9, 2022

As a foundation of a zero trust security model, MFA can assist with mitigating cyberattacks that target user passwords and accounts, such as phishing, credential theft, keyloggers and brute-force attacks. This insight allows you to observe access patterns, review risky logins, and investigate compromised accounts.

Cybersecurity