eBook, Risk and Social Engineering - Cyber Security Informer

Phishing-Resistant MFA: Why FIDO is Essential

Thales Cloud Protection & Licensing

MAY 7, 2025

Todays threat actors use AI to craft compelling phishing campaigns and advanced social engineering tactics to slip past MFA, resulting in credential theft and account takeovers. Device-bound passkeys: For high-risk scenarios, guarantee that authentication occurs only on the specific device where the passkey was originally generated.

Phishing

Phishing Authentication Passwords Social Engineering

Who is Hero?

Security Boulevard

JUNE 26, 2025

Podcast Techstrong.tv - Twitch Devops Chat DevOps Dozen DevOps TV Media Kit About Sponsor Analytics AppSec CISO Cloud DevOps GRC Identity Incident Response IoT / ICS Threats / Breaches More Blockchain / Digital Currencies Careers Cyberlaw Mobile Social Engineering Humor --> Security Bloggers Network Home » Security Bloggers Network » Who is Hero?

Social Engineering

Social Engineering Data privacy Security Awareness Mobile

Intro to Phishing: How Dangerous Is Phishing in 2023?

Duo's Security Blog

APRIL 20, 2023

Totaling up to billions of Australian Dollars at risk each year from hackers and various online scams, it's crucial that organisations (and individuals!) Accounting for nearly a quarter of reported incidents in Australia, phishing is a broad category of social engineering with several variations. What is phishing?

Phishing

Phishing Social Engineering Authentication Engineering

Identity-Based Breaches: Navigating the Aftermath

Duo's Security Blog

OCTOBER 8, 2024

As organizations continue to rely on digital identities for access control and authentication, the risk of identity compromise grows. They can pose significant risks to its operations, reputation, and stakeholders. This precaution helps mitigate the risk of undetected compromised accounts and enhances overall security.

Accountability

Accountability Passwords Social Engineering Education

Watching the Watchmen: Securing Identity Administrators

Duo's Security Blog

SEPTEMBER 19, 2024

In this blog, we will explore the importance of securing identity admins, highlight the risks of poorly managed admin accounts and provide best practices to mitigate these risks. The risks of poorly managed administrator accounts Poorly managed identity administrator accounts can lead to significant security risks.

Accountability

Accountability Risk Authentication Social Engineering

Why Cybersecurity Strategy Must Start With Identity

Duo's Security Blog

NOVEMBER 15, 2024

However, attackers have become adept at finding the gaps where MFA is not required or subverting MFA altogether through technical mechanisms like adversary-in-the-middle or even just particularly nuanced social engineering. Addressing these posture gaps is crucial for strengthening defenses and reducing the risk of breaches.

Threat Detection

Threat Detection Cybersecurity Authentication Digital transformation

New Duo E-Book, Attack Vectors Decoded: Securing Organizations Against Identity-Based Threats

Duo's Security Blog

MARCH 4, 2024

They can take advantage of the less secure methods of authentication, like one-time passcodes, and socially engineer a user to hand over codes or intercept them before they reach the end user. Some of the solutions are easy policy changes that organizations can turn on immediately, like Duo’s Risk-Based Authentication (RBA).

Authentication

Authentication Social Engineering Passwords Phishing

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Webroot

JANUARY 7, 2022

Malicious actors will continue to improve their social engineering tactics, making it more difficult to recognize deception and make it increasingly easier to become a victim, predicts Milbourne. Earlier in 2021, we detailed the hidden costs of ransomware in our eBook. Consumers also remain at risk. Ransomware.

Cybercrime

Cybercrime Phishing Cryptocurrency Ransomware

Machine Identities, Human Identities, and the Risks They Pose

Security Boulevard

MAY 10, 2022

Machine Identities, Human Identities, and the Risks They Pose. Notwithstanding the risks discussed above, human identities still pose less of a concern than machine identities. They can do that by leveraging security awareness training to augment their familiarity with phishing attacks and other social engineering techniques.

Risk

Risk Phishing Security Awareness Digital transformation

Hacker Personas Explained: Know Your Enemy and Protect Your Business

Webroot

FEBRUARY 11, 2021

As we mentioned in a previous blog , hackers come in many forms, but their methods can generally be classified into three distinct types of cybercriminals: The Impersonator – Hackers that pretend to be others, often using social engineering and human psychology to trick users. How Do Infiltrators Breach Systems?

Scams

Scams Phishing Firewall Social Engineering

To Achieve Zero Trust Security, Trust The Human Element

Thales Cloud Protection & Licensing

MAY 6, 2021

With more employees working remotely than ever before due to COVID-19, businesses are at greater risk from a cyber-attack with workers accessing systems outside of the usual company network. Jenny Radcliffe, People Hacker & Social Engineer. You can’t scrimp on discovery, but no standard risk assessment scales. Encryption.

Social Engineering

Social Engineering Authentication Technology Passwords

Phishing-Resistant MFA: Why FIDO is Essential

Security Boulevard

MAY 7, 2025

Todays threat actors use AI to craft compelling phishing campaigns and advanced social engineering tactics to slip past MFA, resulting in credential theft and account takeovers. Device-bound passkeys: For high-risk scenarios, guarantee that authentication occurs only on the specific device where the passkey was originally generated.

Phishing

Phishing Authentication Passwords Social Engineering

Chinese fraudsters: evading detection and monetizing stolen credit card information

CyberSecurity Insiders

APRIL 4, 2023

They change their IP addresses while maintaining a clean state and use multiple domain names to spread their risk, ensuring that they can continue phishing even if one domain is blocked. Additionally, NFTs and eBooks are also suitable for money laundering. As a preliminary step to cashing out, fraudsters confirm the credit card limit.

Phishing

Phishing Social Engineering eCommerce Authentication

Lifting Each Other Up: A Celebration of Women in Cybersecurity and Their Advocates – Part 1

Cisco Security

MARCH 4, 2021

Without knowing much about me, she was very responsive and shared trust, insights, and tips in the right direction with me that contributed to my success and towards winning the social engineering capture-the-flag contest at DEF CON. Read Cisco’s eBook, Lifting Each Other Up: A Celebration of Women in Cybersecurity and Their Advocates.

Cybersecurity

Cybersecurity Engineering Technology Education

Zero Trust Is a Journey and Businesses Have Many Rivers to Cross

Thales Cloud Protection & Licensing

MARCH 31, 2021

Trust is now a risk. Jenny Radcliffe, People Hacker & Social Engineer. If you would like to discover what other professionals have said and what advice they give to overcome these challenges, read our How Can You Trust an Untrusted Environment eBook. However, Zero Trust is not another technology, rather it is a journey.

Digital transformation

Digital transformation VPN Technology Architecture

Randall Munroe’s XKCD ‘Good Science’

Security Boulevard

JUNE 18, 2025

Podcast TechstrongTV - Twitch Library Related Sites Techstrong Group Cloud Native Now DevOps.com Security Boulevard Techstrong Research Techstrong TV Techstrong.tv Korea IT Worker Scam Guardrails Breached: The New Reality of GenAI-Driven Attacks OAuth 2.0 Moves to Collect $7.74 Million Tied to N.

Social Engineering

Social Engineering Data privacy Security Awareness Mobile

Juneteenth National Independence Day 2025

Security Boulevard

JUNE 19, 2025

The Cybersecurity Risks of Smart Cities EU AI ACT MY TAKE: Microsoft takes ownership of AI risk — Google, Meta, Amazon, OpenAI look the other way Are Your Cloud Secrets Safe From Threats? Korea IT Worker Scam Guardrails Breached: The New Reality of GenAI-Driven Attacks Cities of the Future or Hacker’s Paradise? Moves to Collect $7.74

Social Engineering

Social Engineering Data privacy Security Awareness Mobile

Cyber Security Informer

Phishing-Resistant MFA: Why FIDO is Essential

Who is Hero?

Trending Sources

Intro to Phishing: How Dangerous Is Phishing in 2023?

Identity-Based Breaches: Navigating the Aftermath

Watching the Watchmen: Securing Identity Administrators

Why Cybersecurity Strategy Must Start With Identity

New Duo E-Book, Attack Vectors Decoded: Securing Organizations Against Identity-Based Threats

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Machine Identities, Human Identities, and the Risks They Pose

Hacker Personas Explained: Know Your Enemy and Protect Your Business

To Achieve Zero Trust Security, Trust The Human Element

Phishing-Resistant MFA: Why FIDO is Essential

Chinese fraudsters: evading detection and monetizing stolen credit card information

Lifting Each Other Up: A Celebration of Women in Cybersecurity and Their Advocates – Part 1

Zero Trust Is a Journey and Businesses Have Many Rivers to Cross

Randall Munroe’s XKCD ‘Good Science’

Juneteenth National Independence Day 2025

Stay Connected