Authentication, Scams, Security Awareness and Social Engineering

Choose Your Own Adventure game animates security awareness training

SC Magazine

MAY 4, 2021

Infosec’s Choose Your Own Adventure training game “Deep Space Danger” tests employees on their knowledge of social engineering. The employees at your organization are badly in need of security awareness training. Two of them are fraudsters trying to socially engineer their way onto the station.

Security Awareness

Security Awareness InfoSec Social Engineering Engineering

Social Engineering: Definition, Types, Detection & Prevention

Spinone

NOVEMBER 12, 2020

What is social engineering? Social engineering is a manipulative technique used by criminals to elicit specific actions in their victims. Social engineering is seldom a stand-alone operation. money from a bank account) or use it for other social engineering types. Check recipient.

Social Engineering

Social Engineering Engineering Phishing Banking

Hackers Intercept USPS Workers' Paychecks in Direct Deposit Scam

SecureWorld News

MAY 22, 2023

More than 450 workers at the United States Postal Service (USPS) lost more than $1 million in a direct deposit scam that left postal workers without pay, angry at the USPS for not heeding warnings of the scheme, and the agency scrambling to figure out exactly what happened. This was a not an incredibly technical attack.

Scams

Scams Password Management Passwords Authentication

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Cybersecurity Tips to Avoid Fouls During March Madness

SecureWorld News

MARCH 21, 2024

March Madness is a prime opportunity for cybercriminals to deploy phishing lures, malicious apps, and social engineering tactics," warns Krishna Vishnubhotla, VP of Product Strategy at mobile security firm Zimperium.

Cybersecurity

Cybersecurity Social Engineering Phishing Mobile

Financial cyberthreats in 2023

SecureList

MAY 6, 2024

A significant share of scam, phishing and malware attacks is about money. Amid the current threat landscape, Kaspersky has conducted a comprehensive analysis of the financial risks, pinpointing key trends and providing recommendations to effectively mitigate risks and enhance security posture.

Phishing

Phishing Banking Mobile Scams

Voice Phishers Targeting Corporate VPNs

Krebs on Security

AUGUST 19, 2020

Allen said a typical voice phishing or “vishing” attack by this group involves at least two perpetrators: One who is social engineering the target over the phone, and another co-conspirator who takes any credentials entered at the phishing page and quickly uses them to log in to the target company’s VPN platform in real-time.

Phishing

Phishing VPN Social Engineering Media

SIM Swappers Try Bribing T-Mobile and Verizon Staff $300

Security Boulevard

APRIL 16, 2024

Not OK: SMS 2FA — Widespread spam targets carrier employees, as scrotes try harder to evade two-factor authentication. The post SIM Swappers Try Bribing T-Mobile and Verizon Staff $300 appeared first on Security Boulevard.

Mobile

Mobile Authentication Social Engineering Wireless

Is the Future of Digital Identity Safe?

Thales Cloud Protection & Licensing

MARCH 29, 2022

Although businesses in all sectors are actively adopting security controls like identity and access management to protect their data and resources, technology is evolving at such a fast pace that humans cannot keep up. Security analytics and customer experience are essential. It is not only technology that is evolving.

Scams

Scams Artificial Intelligence Digital transformation Mobile

Hopeful employees targeted as phishers identify new windows of opportunity

CyberSecurity Insiders

APRIL 16, 2021

The emails pose as company updates and are often socially engineered to look like they have been personally tailored to the recipient. The kind that could throw off even your most security-aware employees. Carefully crafted emails like these containing a malicious link can fool even the most security-aware of employees.

Phishing

Phishing Security Awareness Social Engineering Scams

Top 7 MFA Bypass Techniques and How to Defend Against Them

SecureWorld News

AUGUST 5, 2023

Multi-factor authentication (MFA) is a fundamental component of best practices for account security. Traditionally, this approach to authentication delivers a unique code to a user's email or phone, which is then inputted following the account password. SMS-based MFA MFA via SMS (i.e.,

Social Engineering

Social Engineering Authentication Passwords Accountability

IDENTITY MANAGEMENT DAY 2023: Advice from Cyber Pros

CyberSecurity Insiders

APRIL 10, 2023

Why is identity management and security important in 2023? “In In the current digital landscape, identity security has gained paramount importance due to the growing cyber risks posed by phishing and social engineering attacks utilizing AI. Security awareness programs for all employees.

Identity Theft

Identity Theft Education Authentication Data breaches

Spear Phishing Prevention: 10 Ways to Protect Your Organization

eSecurity Planet

AUGUST 23, 2023

This method involves using emails, social media, instant messaging, and other platforms to manipulate users into revealing personal information or performing actions that can lead to network compromise, data loss, or financial harm. The likelihood that the target will respond to a message is increased by this personalization.

Phishing

Phishing Social Engineering Authentication Security Awareness

Hybrid phishing and vishing attacks hunt for credit card info

SC Magazine

JUNE 24, 2021

A new blog post report has shone a light on the malicious practice known as voice phishing or vishing – a social engineering tactic that some cyber experts say has only grown in prominence since COVID-19 forced employees to work from home. According to Iyer, it’s relatively easy and cheap for cybercriminals set up this kind of scam. “

Phishing

Phishing Social Engineering Scams Engineering

The Human Factor in Cybersecurity Breaches

CyberSecurity Insiders

JUNE 25, 2022

We repeatedly say that companies need to invest significantly in advanced protection tools and security awareness, including a Zero Trust approach. Social engineering. Social engineering is a method of attack in which a malicious person uses psychological manipulation to induce specific actions.

Cybersecurity

Cybersecurity Social Engineering Phishing Engineering

Scammers imitate Windows logo with HTML tables to slip through email gateways

SC Magazine

APRIL 28, 2021

A recently discovered phishing scam that convincingly impersonates the Microsoft Windows logo with an HTML table serves as a new reminder of how social engineers can abuse various elements in emails to fool both human recipients and certain security solutions. A Microsoft building in Europe.

Phishing

Phishing Scams Social Engineering Engineering

How not to overshare when crafting social media posts, out-of-office messages

SC Magazine

FEBRUARY 4, 2021

When openly available to the public, such information can be gathered and exploited in phishing, BEC and impersonation campaigns to craft more convincing scams. By no means does your social media presence have to be anonymous or vanilla. Meanwhile, 93% of survey participants said that they set an OOO message while on vacation.

Media

Media Social Engineering Passwords Accountability

Stop deepfakes with employee awareness training and better personal data management

SC Magazine

JULY 9, 2021

While voice fraud isn’t new, this is the first reported example of an audio deepfake scam, and although some doubt the veracity of this story , it highlights the potentially massive threat that deepfakes pose to businesses. Faced with more advanced scams, employees will find it even more difficult to tell what’s real from what’s fake.

Social Engineering

Social Engineering Scams Technology Phishing

Five takeaways from the FBI 2020 Internet Crime Report

SC Magazine

MAY 5, 2021

The FBI Internet Crime Complaint Center (IC3) in March released its 2020 Internet Crime Report with updated statistics on Business Email Compromise (BEC), Email Account Compromise (EAC), and COVID-19 scams. Security pros know better. Tips for security leaders. There’s no single security solution that will stop all email attacks.

Internet

Internet Internet Scams Cybercrime

Be Wary of Scammers in the Holiday Season

Security Through Education

DECEMBER 21, 2022

In October, Cybersecurity Awareness Month taught us the importance of safe practices such as the use of multifactor authentication, strong passwords, and VPNs. This time of year also brings a surge of promotional scams. Beware of Delivery Scams! Deals and Promotions.

Scams

Scams Phishing Social Engineering Risk

MY TAKE: Account hijackers follow small banks, credit unions over to mobile banking apps

The Last Watchdog

APRIL 10, 2019

In the not-so-distant past, banks dealt with online and account takeover fraud, where hackers stole passwords and used phishing scams to target specific individuals. A solution will recognize that the user is always using the same device and allows for a more seamless authentication path.

Banking

Banking Mobile Accountability Artificial Intelligence

Websites repeatedly stalked by fraudulent copycats, say researchers

SC Magazine

JULY 13, 2021

Since it’s a consumer-facing industry, we can surmise that some fraud is involved, especially if domains are serving up malware or being used for social engineering…”. In addition, investing in advanced web security technology can prevent employees from being able to access fake domains and malicious websites.”.

Phishing

Phishing Identity Theft Social Engineering Technology

FCC’s Got New Rules for SIM-Swap and Port-Out Fraud

Security Boulevard

NOVEMBER 20, 2023

The post FCC’s Got New Rules for SIM-Swap and Port-Out Fraud appeared first on Security Boulevard. Too many times: Federal Communications Commission shuts stable door after horse bolted. But chairwoman Jessica Rosenworcel (pictured) was hoping it would save us.

Social Engineering

Social Engineering Authentication Scams Data privacy

The Most Common Types of Malware in 2021

CyberSecurity Insiders

JANUARY 31, 2021

Cybercriminals often leverage social engineering tactics like phishing and spear-phishing to propagate sophisticated malware. Scareware is basically a scam used by attackers to trick victims into thinking that their computers or mobile devices have been compromised.

Malware

Malware Computers and Electronics Adware Spyware

Cyber Security Informer

Choose Your Own Adventure game animates security awareness training

Social Engineering: Definition, Types, Detection & Prevention

Webinars

Trending Sources

Hackers Intercept USPS Workers' Paychecks in Direct Deposit Scam

Webinars

Cybersecurity Tips to Avoid Fouls During March Madness

Financial cyberthreats in 2023

Voice Phishers Targeting Corporate VPNs

SIM Swappers Try Bribing T-Mobile and Verizon Staff $300

Is the Future of Digital Identity Safe?

Hopeful employees targeted as phishers identify new windows of opportunity

Top 7 MFA Bypass Techniques and How to Defend Against Them

IDENTITY MANAGEMENT DAY 2023: Advice from Cyber Pros

Spear Phishing Prevention: 10 Ways to Protect Your Organization

Hybrid phishing and vishing attacks hunt for credit card info

The Human Factor in Cybersecurity Breaches

Scammers imitate Windows logo with HTML tables to slip through email gateways

How not to overshare when crafting social media posts, out-of-office messages

Stop deepfakes with employee awareness training and better personal data management

Five takeaways from the FBI 2020 Internet Crime Report

Be Wary of Scammers in the Holiday Season

MY TAKE: Account hijackers follow small banks, credit unions over to mobile banking apps

Websites repeatedly stalked by fraudulent copycats, say researchers

FCC’s Got New Rules for SIM-Swap and Port-Out Fraud

The Most Common Types of Malware in 2021

Stay Connected