Cyber Security Informer

Insider Threat Personas: Who is Responsible for Insider Attacks?

Security Boulevard

SEPTEMBER 20, 2021

The post Insider Threat Personas: Who is Responsible for Insider Attacks? The post Insider Threat Personas: Who is Responsible for Insider Attacks? Hello week four of National Insider Threat Awareness month! This week we’re talking about insider. appeared first on Gurucul. appeared first on Security Boulevard.

Accountability

GUEST ESSAY: Threat hunters adapt personas, leverage AI to gather intel in the Dark Web

The Last Watchdog

JUNE 20, 2022

To gain access to message boards and chats on the Deep & Dark Web, cyber professionals carefully cultivate their own personas – a task that takes significant time and practice but is the only way to gain access to hacker communities. Hunting threats.

Ransomware

Ransomware Marketing Data collection VPN

Iranian cyberspies use multi-persona impersonation in phishing threads

CSO Magazine

SEPTEMBER 14, 2022

One of the most prolific state-sponsored Iranian cyber espionage groups is targeting researchers from different fields by setting up sophisticated spear-phishing lures in which they use multiple fake personas inside the same email thread for increased credibility.

Phishing

Phishing Social Engineering Engineering

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Selling Security: Understanding Buyer Personas

SiteLock

MAY 13, 2021

The post Selling Security: Understanding Buyer Personas appeared first on The SiteLock Blog. The wrong way involves writing a bunch of emails, making several cold calls, and producing content that may or may not end with a customer. You’ll spend a lot of time and possibly money, and you likely won’t see any returns on […].

Cybersecurity

Hacker Personas Explained: Know Your Enemy and Protect Your Business

Webroot

FEBRUARY 11, 2021

As we point out in a popular Hacker Personas podcast , other opportunist attacks like those exploiting U.S. To learn more about hacker personas and strategies to protect against their various attacks, check out our eBook, Hacker Personas: A Deeper Look Into Cybercrime. government stimulus payments are also on the rise.

Scams

Scams Phishing Firewall Social Engineering

The Mystery of ‘Jia Tan,’ the XZ Backdoor Mastermind

WIRED Threat Level

APRIL 3, 2024

Now, clues suggest nation-state hackers were behind the persona that inserted the malicious code. The thwarted XZ Utils supply chain attack was years in the making.

Hacking

Russian Sandworm hackers pose as hacktivists in water utility breaches

Bleeping Computer

APRIL 17, 2024

The Sandworm hacking group associated with Russian military intelligence has been hiding attacks and operations behind multiple online personas posing as hacktivist groups. [.]

Hacking

GUEST ESSAY: Threat hunters adapt personas, leverage AI to gather intel in the Dark Web

Security Boulevard

JUNE 20, 2022

The post GUEST ESSAY: Threat hunters adapt personas, leverage AI to gather intel in the Dark Web appeared first on Security Boulevard. The Deep & Dark Web is a mystery to most in the mainstream today: many have heard about it, but few understand just a fraction of what’s going on there. Related: ‘IABs’ spread ransomware.

Ransomware

Ransomware Security Awareness

NEW TECH: Human operatives maintain personas, prowl the Dark Net for intel to help companies

The Last Watchdog

OCTOBER 7, 2019

At its core, Vigilante is comprised of operative teams who’ve spent years deeply-embedded in the virtual threat space, nurturing their dark net personas and proactively gathering intelligence on behalf of specific clients. “We We operate exclusively outside of our clients’ networks,” Darrah told me. “We We don’t touch their networks.

Artificial Intelligence

Artificial Intelligence Cyber Risk Big data DDOS

Adversarial ML Attack that Secretly Gives a Language Model a Point of View

Schneier on Security

OCTOBER 21, 2022

This new attack dovetails with something I’ve been worried about for a while, something Latanya Sweeney has dubbed “persona bots.” Persona bots have histories, personalities, and communication styles. One persona bot can’t move public opinion, but what if there were thousands of them?

Media

Media Internet Internet Healthcare

How Hackers Create Fake Personas for Social Engineering

Dark Reading

JULY 15, 2022

And some ways to up your game for identifying fabricated online profiles of people who don't exist.

Social Engineering

Social Engineering Engineering

Authorities Claim LockBit Admin "LockBitSupp" Has Engaged with Law Enforcement

The Hacker News

FEBRUARY 25, 2024

LockBitSupp, the individual(s) behind the persona representing the LockBit ransomware service on cybercrime forums such as Exploit and XSS, "has engaged with law enforcement," authorities said.

Cybercrime

Cybercrime Ransomware

User personas and DaaS could solve some security challenges of remote work

Tech Republic Security

APRIL 12, 2021

Use cases can make life easier for IT departments managing connectivity and access for thousands of home offices.

Meta Expunges Multiple APT, Cybercrime Groups From Facebook, Instagram

Dark Reading

MAY 3, 2023

The company has removed three APTs and six potentially criminal networks from its platforms who leveraged elaborate campaigns of fake personas and profiles to lure and compromise users.

Cybercrime

Another AI Pitfall: Digital Mirroring Opens New Cyberattack Vector

Dark Reading

JULY 28, 2023

The more artificial intelligence builds out our digital personas, the easier it will become for bad actors to target us with more convincing attacks.

Artificial Intelligence

ChatGPT may be a bigger cybersecurity risk than an actual benefit

Bleeping Computer

MARCH 15, 2023

However, it can help threat actors create convincing personas to steal credentials in phishing attacks. [.] ChatGPT made a splash with its believable AI-generated responses.

Risk

Risk Phishing Cybersecurity

Iranian APT Targets Female Activists With Mahsa Amini Protest Lures

Dark Reading

MARCH 9, 2023

A top Iranian, state-sponsored threat is a spear-phishing campaign that uses a fake Twitter persona to target women interested in Iranian political affairs and human rights.

Phishing

Hackers now use ‘sock puppets’ for more realistic phishing attacks

Bleeping Computer

SEPTEMBER 13, 2022

An Iranian-aligned hacking group uses a new, elaborate phishing technique involving multiple personas and email accounts to lure targets into opening malicious documents. [.].

Phishing

Phishing Accountability Hacking

Meta Uncovers Massive Social Media Cyber Espionage Operations Across South Asia

The Hacker News

MAY 4, 2023

Three different threat actors leveraged hundreds of elaborate fictitious personas on Facebook and Instagram to target individuals located in South Asia as part of disparate attacks.

Social Engineering

Social Engineering Media Engineering Internet

Over-Sharer or Troublemaker? How to Identify Insider-Risk Personas

Dark Reading

JANUARY 12, 2021

It's past time to begin charting insider risk indicators that identify risky behavior and stop it in its tracks.

Risk

Experts Uncover the Identity of Mastermind Behind Golden Chickens Malware Service

The Hacker News

JANUARY 27, 2023

Cybersecurity researchers have discovered the real-world identity of the threat actor behind Golden Chickens malware-as-a-service, who goes by the online persona "badbullzvenom."

Malware

Malware Accountability Cybersecurity

RSAC Fireside Chat: Cybersixgill crawls the Dark Web to uncover earliest signs of companies at risk

The Last Watchdog

APRIL 21, 2023

Adopting personas and rubbing elbows with criminal hackers and fraudsters is a tried-and-true way to glean intel in the Dark Web.

Risk

Risk Engineering Encryption Internet

GUEST ESSAY: These advanced phishing tactics should put all businesses on high alert

Security Boulevard

SEPTEMBER 28, 2022

The Iranian hacker group TA453 has recently been using a technique that creates multiple personas to trick victims , deploying … (more…). Phishing attacks are nothing new, but scammers are getting savvier with their tactics. Related: The threat of ‘business logic’ hacks.

Phishing

Phishing Hacking Security Awareness

The astronomical costs of an asset disposal program gone wrong

CSO Magazine

OCTOBER 5, 2022

On September 20, 2022, the Securities and Exchange Commission (SEC) reached a settlement agreement in which MSSB paid a $35 million USD penalty for the improper disposal of devices containing MSSB customer persona identifying information (PII). To read this article in full, please click here

Technology

Technology Information Security

Retailers are Potentially Losing out on Profit Protecting Against Fraud…New Report Provides Insight

CyberSecurity Insiders

OCTOBER 20, 2021

For example, Forter has amassed a Persona Graph that includes more than 1 billion online personas. When retailers interact with a persona for the first time, Forter can help determine whether or not they have seen that persona elsewhere across its global network. Fraudsters aren’t going anywhere anytime soon.

Retail

Retail eCommerce Software Cybersecurity

Facebook Suspends Accounts Used by Iranian Hackers to Target US Military Personnel

The Hacker News

JULY 16, 2021

and Europe using fake online personas on its platform. Facebook on Thursday disclosed it dismantled a "sophisticated" online cyber espionage campaign conducted by Iranian hackers targeting about 200 military personnel and companies in the defense and aerospace sectors in the U.S.,

Accountability

Accountability Media

Meta blocks Russia-Ukraine disinformation campaigns on Facebook, Instagram

Malwarebytes

MARCH 2, 2022

This network used fake accounts and operated fictitious personas and brands across the internet — including on Facebook, Instagram, Twitter, YouTube, Telegram, Odnoklassniki and VK — to appear more authentic in an apparent attempt to withstand scrutiny by platforms and researchers.”

Government

Government Phishing Authentication Internet

Friday Five 1/29

Digital Guardian

JANUARY 29, 2021

Linux bugs, hacker personas, and the Emotet botnet disrupted - catch up on all of the week's infosec news with the Friday Five!

InfoSec

Attackers set up rogue GitHub repos with malware posing as zero-day exploits

CSO Magazine

JUNE 14, 2023

The attacker has made a lot of effort to create all these fake personas, only to deliver very obvious malware," researchers from security firm VulnCheck, who found the rogue repositories, said in a report.

Malware

Malware Accountability Cybersecurity

Are You A Vendor Or A Trusted Advisor?

SiteLock

AUGUST 10, 2021

Sales reps usually assume two personas in their dealings – that of a vendor or a trusted advisor. We all want the various interactions we have in life to have a positive and lasting impression. More so, if you are a sales rep. How do you know which role you are playing? The easiest way […]. appeared first on The SiteLock Blog.

¡De nuevo incluidos en el Cuadrante Mágico de Gartner para APM!

Security Boulevard

JUNE 9, 2021

Las limitadas interacciones intrapersonales han obligado a las personas a depender de las aplicaciones para sus necesidades cotidianas. Mejorar el rendimiento digital se ha convertido en una de las principales prioridades de las organizaciones. Por ello, una buena experiencia digital ….

Romance Ruses to Watch Out for on Valentine's Day

SecureWorld News

FEBRUARY 14, 2024

Patrick Harr, CEO at SlashNext, said that generative AI is already being used to modify video and voice content to support scammers' fake personas. "With more advanced AI capabilities in the hands of cybercriminals, the threat is that romance scams can be automated at scale," said Bud Broomhead, CEO at Viakoo.

Scams

Scams Social Engineering Cybercrime Engineering

Identity Verification & Digital Identity Recap 2022

Security Boulevard

JANUARY 5, 2023

It determines whether a person is actually hiding behind the persona he presents. A person’s most valuable and often utilised asset is their identity. Identity verification is used to demonstrate that the person’s identity matches what they say it is. There are several systems and approaches for confirming identity.

AI Impersonation and Vishing: An Overview and Preventative Measures

Security Boulevard

APRIL 10, 2023

Hackers can use this technology to create convincing fake personas that they can use to trick their targets into divulging sensitive information. AI impersonation technology is a new and concerning cyber threat that uses machine learning algorithms to impersonate people online.

Cyber threats

Cyber threats Phishing Technology Scams

Identidad descentralizada — devolviendo los datos a los propietarios

Security Boulevard

NOVEMBER 3, 2021

Desde abordar un avión hasta comprar una casa, compartimos nuestras credenciales de identidad, como números de seguro social, con varias personas y compañías. En una encuesta del año pasado se identificó que las compañías tienen en su poder el 83% ….

Risk

Risk Government

Why All Telemetry is Essential for XDR Performance

Security Boulevard

OCTOBER 20, 2021

Organizations need the ability to collect threat information from across their IT infrastructure so that they can see what’s going on in their environments and correlate the intelligence across devices, personas, application suites, and the cloud so that it’s actionable.

Threat Detection

Threat Detection InfoSec

Apple iPhone 7 is being hardened to handle military-grade secrets

Tech Republic Security

JANUARY 25, 2017

iPhone chosen over a Android handset to be turned into "dual-persona" device that can be used to discuss confidential matters.

Fallas en ciberseguridad, uno de los grandes riesgos de 2021

Security Boulevard

MARCH 17, 2021

Desde el 2020, con las personas trabajando desde casa y las aplicaciones de productividad y trabajo a tope, las ciberamenazas tomaron un rol protagónico. Fueron muchos los ataques de ransomware , phishing y otras modalidades que afectaron a millones de ….

Phishing

Phishing Ransomware

Business Email Compromise (BEC) Criminal Ring

Schneier on Security

JULY 10, 2020

This is where Cosmic Lynx adds a second persona to give the process an air of legitimacy, typically impersonating a real lawyer from a well-regarded law firm in the United Kingdom. The group will find a company that is about to complete an acquisition and contact one of its top executives posing as the CEO of the organization being bought.

Scams

Scams Accountability Authentication Phishing

Guccifer 2.0's Slip-Up Shows That Even Elite Hackers Make Mistakes

WIRED Threat Level

MARCH 25, 2018

No matter how much mystique a hacker persona has, the individual or group behind it inevitably makes operations security errors sometimes.

El impacto del trabajo remoto en la nueva TI: la encuesta global de ManageEngine

Security Boulevard

JULY 29, 2021

A medida que obligó a las personas a permanecer en sus hogares, las empresas se apresuraron a facilitar el trabajo remoto y mantener la continuidad del …. La pandemia de COVID-19 transformó por completo la forma en que funcionan las organizaciones.

Who’s Hacking You?

Webroot

MARCH 9, 2021

For even more tips from Webroot IT security experts Tyler Moffitt, Kelvin Murray, Grayson Milbourne, George Anderson and Jonathan Barnett, download the complete e-book on hacker personas. The Impersonator. Today’s cybercriminals are masters at exploiting basic human trust.

Hacking

Hacking DNS Surveillance Cybercrime

Iranian Cyber Ops Used Facebook to Spy on U.S. Targets

SecureWorld News

JULY 16, 2021

In running its highly targeted campaign, Tortoiseshell deployed sophisticated fake online personas to contact its targets, build trust and trick them into clicking on malicious links. These fictitious personas had profiles across multiple social media platforms to make them appear more credible.

Social Engineering

Social Engineering Malware Engineering Media

Elaborate Honeypot 'Factory' Network Hit with Ransomware, RAT, and Cryptojacking

Dark Reading

JANUARY 21, 2020

A fictitious industrial company with phony employees personas, website, and PLCs sitting on a simulated factory network fooled malicious hackers - and raised alarms for at least one white-hat researcher who stumbled upon it.

Ransomware

Insider Threat Personas: Who is Responsible for Insider Attacks?

GUEST ESSAY: Threat hunters adapt personas, leverage AI to gather intel in the Dark Web

Webinars

Trending Sources

Iranian cyberspies use multi-persona impersonation in phishing threads

Webinars

Selling Security: Understanding Buyer Personas

Hacker Personas Explained: Know Your Enemy and Protect Your Business

The Mystery of ‘Jia Tan,’ the XZ Backdoor Mastermind

Russian Sandworm hackers pose as hacktivists in water utility breaches

GUEST ESSAY: Threat hunters adapt personas, leverage AI to gather intel in the Dark Web

NEW TECH: Human operatives maintain personas, prowl the Dark Net for intel to help companies

Adversarial ML Attack that Secretly Gives a Language Model a Point of View

How Hackers Create Fake Personas for Social Engineering

Authorities Claim LockBit Admin "LockBitSupp" Has Engaged with Law Enforcement

User personas and DaaS could solve some security challenges of remote work

Meta Expunges Multiple APT, Cybercrime Groups From Facebook, Instagram

Another AI Pitfall: Digital Mirroring Opens New Cyberattack Vector

ChatGPT may be a bigger cybersecurity risk than an actual benefit

Iranian APT Targets Female Activists With Mahsa Amini Protest Lures

Hackers now use ‘sock puppets’ for more realistic phishing attacks

Meta Uncovers Massive Social Media Cyber Espionage Operations Across South Asia

Over-Sharer or Troublemaker? How to Identify Insider-Risk Personas

Experts Uncover the Identity of Mastermind Behind Golden Chickens Malware Service

RSAC Fireside Chat: Cybersixgill crawls the Dark Web to uncover earliest signs of companies at risk

GUEST ESSAY: These advanced phishing tactics should put all businesses on high alert

The astronomical costs of an asset disposal program gone wrong

Retailers are Potentially Losing out on Profit Protecting Against Fraud…New Report Provides Insight

Facebook Suspends Accounts Used by Iranian Hackers to Target US Military Personnel

Meta blocks Russia-Ukraine disinformation campaigns on Facebook, Instagram

Friday Five 1/29

Attackers set up rogue GitHub repos with malware posing as zero-day exploits

Are You A Vendor Or A Trusted Advisor?

¡De nuevo incluidos en el Cuadrante Mágico de Gartner para APM!

Romance Ruses to Watch Out for on Valentine's Day

Identity Verification & Digital Identity Recap 2022

AI Impersonation and Vishing: An Overview and Preventative Measures

Identidad descentralizada — devolviendo los datos a los propietarios

Why All Telemetry is Essential for XDR Performance

Apple iPhone 7 is being hardened to handle military-grade secrets

Fallas en ciberseguridad, uno de los grandes riesgos de 2021

Business Email Compromise (BEC) Criminal Ring

Guccifer 2.0's Slip-Up Shows That Even Elite Hackers Make Mistakes

El impacto del trabajo remoto en la nueva TI: la encuesta global de ManageEngine

Who’s Hacking You?

Iranian Cyber Ops Used Facebook to Spy on U.S. Targets

Elaborate Honeypot 'Factory' Network Hit with Ransomware, RAT, and Cryptojacking

Stay Connected