Global Group ransomware is delivered through phishing emails and can encrypt files offline without any internet connection.
Category: phishing
AI, Forcepoint, GLOBAL GROUP, Global Security News, phishing, Phishing Scam, Security
Hackers Deliver Global Group Ransomware Offline via Phishing Emails
Global Group ransomware is delivered through phishing emails and can encrypt files offline without any internet connection.
AI, Forcepoint, GLOBAL GROUP, Global Security News, phishing, Phishing Scam, Security
Hackers Deliver Global Group Ransomware Offline via Phishing Emails
Global Group ransomware is delivered through phishing emails and can encrypt files offline without any internet connection.
Cybersecurity, Global Security News, mobile devices, phishing
Mobile fraud on the rise in South Africa
As South Africans take advantage of the ease and convenience of the digital financial world, it has become increasingly more simple for threat actors to take advantage. Deceiving the average individual has become rather simple for cybercriminals as the internet brings them a wealth of information. All it takes is one or two rather official…
Exploits, Global Security News, phishing, whaling
What Is CEO Fraud? Definition, Examples and Prevention
CEO fraud, also known as whaling, is a sophisticated form of phishing in that targets an organisation’s senior employees. More than 400 businesses are targeted by CEO fraud each day, with losses totalling over $3 billion (£2.24 billion) since October 2013. Although the name suggests that it’s exclusively CEOs who are targeted, this is an oversimplification.…
AI, Data loss, Global Security News, Guest blog, phishing, Security threats
Gartner tells businesses to block AI browsers now
Analyst firm Gartner has issued a blunt warning to organizations: Agentic AI browsers introduce serious new security risks and should be blocked “for the foreseeable future.” Read more in my article on the Fortra blog.
Global Security News, phishing
The 5 Biggest Phishing Scams of All Time
Phishing is one of the greatest cyber security threats that organisations face. Attacks are increasingly popular because they’re easy to conduct and can potentially net the crooks a huge payout. All that’s required is a well-crafted email, the contact details of someone in your organisation and the very high likelihood that someone will take the…
Cybersecurity, Global Security News, hacking, mobile devices, phishing, Ransomware
SIM Pharm Cyber crime Escalates in South Africa
Just when you thought there couldn’t be another type of cyber thief, they develop new and devious methods to steal valuable information and finances. Over the last few yearsthere has been an uptick in “SIM pharm” crimes. This form of crime has encompassed avariety of scams including theft of banking credentials, impersonation, investment fraud,and online…
Global Security News, Guest blog, Law & order, malware, phishing
FBI warns of surge in account takeover (ATO) fraud schemes – what you need to know
The FBI has recently issued a public service announcement that warns that since January 2025 there have been more than 5,100 complaints of account takeover fraud, and total reported losses in excess of US $262 million. Read more in my article on the Fortra blog.
Asia Pacific, Cyber Threats, Global Security News, IoT, malware, News, phishing
唉! New Kaiji Malware Attacks IoT devices using SSH Brute Force
The Kaiji malware was designed by a developer based in China to launch DDoS attacks according to researchers. The Internet of Things (IoT) has revolutionized the way we interact with the digital world. From smart refrigerators to connected thermostats, these devices offer convenience and automation. However, with this growing network of interconnected devices comes a…
Exploits, Global Security News, phishing
Phishing Season 2025: How AI is Supercharging Cyber Crime
Phishing attacks tend to peak at the end of each year as criminals exploit seasonal pressure and distracted staff to increase the intensity of their campaigns. In 2025, the threat is increasing once again – only this time, AI-generated phishing has moved from a niche tactic to an everyday tool for cyber criminals. This article…
Global Security News, phishing, Threat Intelligence
New ClickFix attacks reuse ancient ‘finger’ command
BleepingComputer reports that threat actors have revived the abuse of the decades-old “finger” command to facilitate remote command execution as part of new ClickFix malware attacks.
Global Security News, Law & order, malware, phishing, Podcast, privacy
Smashing Security podcast #435: Lights! Camera! Hacktion!
When “bad actors” stop being hackers and start being… actual actors. This week, Graham and special guest Jenny Radcliffe play “Hacker or Ham?” (yes, Steven Seagal, we’re looking at you), before diving into a campaign which saw an Iranian gang luring Israeli performers with fake casting calls for a serious film. We unpack why positive…
AI, Global Security News, openai, phishing, Podcast
The AI Fix #67: Will Smith’s AI crowd scandal, and gullible agents fall for scams
In episode 67 of The AI Fix, Graham talks to an AI with a fax machine, Bill Gates says there’s one job AI will never replace, criminals use Claude Code for cyberattacks, Mark reveals why GPT-5 was better than you think, and a bird brings new meaning to the words “cloud storage”. Also, Graham reveals…
Cybersecurity, EES, Global Security News, malware, phishing, Security
The Role of Enterprise Email Security in Modern Cybersecurity Strategies
Email has always been a double-edged sword in the world of business. On one hand, it’s the fastest,…
Cybersecurity, EES, Global Security News, malware, phishing, Security
The Role of Enterprise Email Security in Modern Cybersecurity Strategies
Email has always been a double-edged sword in the world of business. On one hand, it’s the fastest,…
Cybersecurity, EES, Global Security News, malware, phishing, Security
The Role of Enterprise Email Security in Modern Cybersecurity Strategies
Email has always been a double-edged sword in the world of business. On one hand, it’s the fastest,…
Data loss, encryption, Global Security News, Microsoft, phishing, Podcast
Smashing Security podcast #432: Oops! I auto-filled my password into a cookie banner
We unpack how some password managers can be tricked into coughing up your secrets, with a clickjacking sleight-of-hand, what website owners can do to prevent it, and how to lock down your personal password vault. Then we time-hope to the post-quantum scramble: “harvest-now, decrypt later”, Microsoft’s 2033 quantum-safe pledge, and whether your printer will survive…
Android, Exploits, Global Security News, iOS, Law & order, Mobile, phishing
Smashing Security podcast #427: When 2G attacks, and a romantic road trip goes wrong
Graham warns why it is high time we said goodbye to 2G – the outdated mobile network being exploited by cybercriminals with suitcase-sized SMS blasters. From New Zealand to London, scammers are driving around cities like dodgy Uber drivers, spewing phishing texts to thousands at once. Meanwhile, Carole unpacks a painfully awkward tale of amour…
Cybersecurity, Global Security News, Ontinue, phishing, Phishing Scam, Security
Attackers Hide JavaScript in SVG Images to Lure Users to Malicious Sites
Beware! SVG images are now being used with obfuscated JavaScript for stealthy redirect attacks via spoofed emails. Get insights from Ontinue’s latest research on detection and defence.
cyber security, Global Security News, hacking, phishing, social media, south africa
What is up with so many trying to hack TikTok?
TikTok has become one of the most popular social media platforms on the net. As we have learned, the more the user base, the more that hackers will try to break in to steal sensitive information. While there might be many more mature users, the user base including younger people is increasing. These are generations…
aiml, Global Security News, phishing
Accelerated phishing site creation facilitated by Vercel’s AI tool
Attackers have also used Vercel’s infrastructure for hosting logos of the spoofed companies and other resources, according to a report from Okta Threat Intelligence researchers.
Global Security News, phishing
Popular retail sites spoofed to pilfer payment details
Attacks part of the campaign, which was initially discovered by Mexican journalist Ignacio Gomez Villaseñor in May, involved malicious websites with fraudulent checkout pages and scraped product listings that facilitate the exfiltration of card data, a report from Silent Push showed.
aiml, DevOps, Global Security News, phishing, supply chain
Incorrect links output by LLMs could lead to phishing, researchers say
AI models may fail to recognize social engineering content in training data and searches.
aiml, Global Security News, phishing, Vulnerability Management
Sony, Scattered Spider, Hikvision, Cybercrime, Iran, BSODs, Cloudflare, Josh Marpet.. – SWN #490
Global Security News, phishing, Threat Intelligence
New Blind Eagle attacks involve Proton66 hosting
Advanced persistent threat operation Blind Eagle, also known as APT-C-36, APT-Q-98, and AguilaCiega, has been leveraging Proton66, a Russian bulletproof hosting service, as part of its infrastructure in recent phishing attacks against banks and other financial entities across Colombia, including BBVA, Davivienda, Banco Caja Social, and Bancolombia, reports The Hacker News.
email security, Global Security News, phishing, Threat Intelligence
DOGE spoofed in new phishing campaign
More than 350 organizations and nearly 1,800 email addresses were discovered by Proofpoint researchers to have been targeted by a new phishing fraud scheme involving the spoofing of the Department of Government Efficiency initially flagged by the Scoop News Group, according to FedScoop.
email security, Exploits, Global Security News, phishing
Apple ID, credit card details targeted by CapCut phishing
GBHackers News reports that widely used short-form video editing app CapCut has been exploited in a two-stage phishing campaign aimed at exfiltrating Apple ID credentials and credit card details.
email security, Global Security News, phishing, Threat Intelligence
Remcos RAT spread via hijacked school, small business accounts
Schools and small businesses have had their email accounts breached to spread phishing emails delivering the Remcos RAT malware in attack campaigns since last year, Hackread reports.
Global Security News, Guest blog, malware, phishing, Ransomware
Cybercrime is surging across Africa
A new INTERPOL report has sounded the alarm over a dramatic increase in cybercrime across Africa, with digital crime now accounting for a significant proportional of all criminal activity across the continent. Read more in my article on the Hot for Security blog.
AI, cyber resilience, Cybersecurity, Data Breaches, Data Security, Europe, Global Security News, malware, Network Security, phishing, privacy, Risk Management, Venture, Webroot Blog
Tips to make your summer travels cyber safe
Ready, set, pack! Summer travel season is here and that means family road trips, beach vacations, international adventures and more. While summertime is prime time for getaways, did you know it’s also prime time for online fraud? Scammers are targeting the travel industry, putting millions of travelers at increased risk. Research shows that the travel…
AI, cyber resilience, Cybersecurity, Data Breaches, Data Security, Europe, Global Security News, malware, Network Security, phishing, privacy, Risk Management, Venture, Webroot Blog
Tips to make your summer travels cyber safe
Ready, set, pack! Summer travel season is here and that means family road trips, beach vacations, international adventures and more. While summertime is prime time for getaways, did you know it’s also prime time for online fraud? Scammers are targeting the travel industry, putting millions of travelers at increased risk. Research shows that the travel…
AI, cyber resilience, Cybersecurity, Data Breaches, Data Security, Europe, Global Security News, malware, Network Security, phishing, privacy, Risk Management, Venture, Webroot Blog
Tips to make your summer travels cyber safe
Ready, set, pack! Summer travel season is here and that means family road trips, beach vacations, international adventures and more. While summertime is prime time for getaways, did you know it’s also prime time for online fraud? Scammers are targeting the travel industry, putting millions of travelers at increased risk. Research shows that the travel…
AI, cyber resilience, Cybersecurity, Data Breaches, Data Security, Europe, Global Security News, malware, Network Security, phishing, privacy, Risk Management, Venture, Webroot Blog
Tips to make your summer travels cyber safe
Ready, set, pack! Summer travel season is here and that means family road trips, beach vacations, international adventures and more. While summertime is prime time for getaways, did you know it’s also prime time for online fraud? Scammers are targeting the travel industry, putting millions of travelers at increased risk. Research shows that the travel…
AI, cyber resilience, Cybersecurity, Data Breaches, Data Security, Europe, Global Security News, malware, Network Security, phishing, privacy, Risk Management, Venture, Webroot Blog
Tips to make your summer travels cyber safe
Ready, set, pack! Summer travel season is here and that means family road trips, beach vacations, international adventures and more. While summertime is prime time for getaways, did you know it’s also prime time for online fraud? Scammers are targeting the travel industry, putting millions of travelers at increased risk. Research shows that the travel…
AI, cyber resilience, Cybersecurity, Data Breaches, Data Security, Europe, Global Security News, malware, Network Security, phishing, privacy, Risk Management, Venture, Webroot Blog
Tips to make your summer travels cyber safe
Ready, set, pack! Summer travel season is here and that means family road trips, beach vacations, international adventures and more. While summertime is prime time for getaways, did you know it’s also prime time for online fraud? Scammers are targeting the travel industry, putting millions of travelers at increased risk. Research shows that the travel…
AI, cyber resilience, Cybersecurity, Data Breaches, Data Security, Europe, Global Security News, malware, Network Security, phishing, privacy, Risk Management, Venture, Webroot Blog
Tips to make your summer travels cyber safe
Ready, set, pack! Summer travel season is here and that means family road trips, beach vacations, international adventures and more. While summertime is prime time for getaways, did you know it’s also prime time for online fraud? Scammers are targeting the travel industry, putting millions of travelers at increased risk. Research shows that the travel…
AI, cyber resilience, Cybersecurity, Data Breaches, Data Security, Europe, Global Security News, malware, Network Security, phishing, privacy, Risk Management, Venture, Webroot Blog
Tips to make your summer travels cyber safe
Ready, set, pack! Summer travel season is here and that means family road trips, beach vacations, international adventures and more. While summertime is prime time for getaways, did you know it’s also prime time for online fraud? Scammers are targeting the travel industry, putting millions of travelers at increased risk. Research shows that the travel…
AI, cyber resilience, Cybersecurity, Data Breaches, Data Security, Europe, Global Security News, malware, Network Security, phishing, privacy, Risk Management, Venture, Webroot Blog
Tips to make your summer travels cyber safe
Ready, set, pack! Summer travel season is here and that means family road trips, beach vacations, international adventures and more. While summertime is prime time for getaways, did you know it’s also prime time for online fraud? Scammers are targeting the travel industry, putting millions of travelers at increased risk. Research shows that the travel…
Global Security News, Guest blog, Law & order, malware, phishing, Security threats
Dutch police identify users as young as 11-year-old on Cracked.io hacking forum
Dutch police have announced that they have identified 126 individuals linked to the now dismantled Cracked.io cybercrime forum. Read more in my article on the Hot for Security blog.
Global Security News, phishing
Bogus Cloudflare Turnstile leveraged in new ClickFix-style intrusion
Threat actors have leveraged counterfeit Cloudflare Turnstile challenges used to check ‘humanness’ to facilitate clandestine malware compromise as part of a new ClickFix-style campaign, SecurityWeek reports.
Cybercrime, Cybersecurity, extortion, Global Security News, Google, Google Threat Intelligence Group, Microsoft 365, OAuth, phishing, Salesforce, Social Engineering, Technology, Threats
Salesforce customers duped by series of social-engineering attacks
A financially motivated threat group posing as IT support has intruded the systems of about 20 organizations by duping employees into installing a malicious, illegitimate version of Salesforce’s Data Loader and granting broader access to cloud-based environments, Google Threat Intelligence Group said in a threat report released Wednesday. The attacks, which Google attributes to UNC6040,…
Cybercrime, Cybersecurity, extortion, Global Security News, Google, Google Threat Intelligence Group, Microsoft 365, OAuth, phishing, Salesforce, Social Engineering, Technology, Threats
Salesforce customers duped by series of social-engineering attacks
A financially motivated threat group posing as IT support has intruded the systems of about 20 organizations by duping employees into installing a malicious, illegitimate version of Salesforce’s Data Loader and granting broader access to cloud-based environments, Google Threat Intelligence Group said in a threat report released Wednesday. The attacks, which Google attributes to UNC6040,…
Cybercrime, Cybersecurity, extortion, Global Security News, Google, Google Threat Intelligence Group, Microsoft 365, OAuth, phishing, Salesforce, Social Engineering, Technology, Threats
Salesforce customers duped by series of social-engineering attacks
A financially motivated threat group posing as IT support has intruded the systems of about 20 organizations by duping employees into installing a malicious, illegitimate version of Salesforce’s Data Loader and granting broader access to cloud-based environments, Google Threat Intelligence Group said in a threat report released Wednesday. The attacks, which Google attributes to UNC6040,…
AI, Apps, cyber resilience, Cybersecurity, data breach, Data Breaches, Exploits, Global Security News, malware, Network Security, phishing, privacy, Webroot Blog
Build strong digital defenses for your entire family
The month of June is a time for fun in the sun and a break from the school year, but did you know it’s also the perfect time to step up your family’s online security? June is Internet Safety Month, a yearly reminder to strengthen your defenses against online threats. In today’s hyper-connected world, we…
AI, Apps, cyber resilience, Cybersecurity, data breach, Data Breaches, Exploits, Global Security News, malware, Network Security, phishing, privacy, Webroot Blog
Build strong digital defenses for your entire family
The month of June is a time for fun in the sun and a break from the school year, but did you know it’s also the perfect time to step up your family’s online security? June is Internet Safety Month, a yearly reminder to strengthen your defenses against online threats. In today’s hyper-connected world, we…
AI, Apps, cyber resilience, Cybersecurity, data breach, Data Breaches, Exploits, Global Security News, malware, Network Security, phishing, privacy, Webroot Blog
Build strong digital defenses for your entire family
The month of June is a time for fun in the sun and a break from the school year, but did you know it’s also the perfect time to step up your family’s online security? June is Internet Safety Month, a yearly reminder to strengthen your defenses against online threats. In today’s hyper-connected world, we…
AI, Apps, cyber resilience, Cybersecurity, data breach, Data Breaches, Exploits, Global Security News, malware, Network Security, phishing, privacy, Webroot Blog
Build strong digital defenses for your entire family
The month of June is a time for fun in the sun and a break from the school year, but did you know it’s also the perfect time to step up your family’s online security? June is Internet Safety Month, a yearly reminder to strengthen your defenses against online threats. In today’s hyper-connected world, we…
AI, Apps, cyber resilience, Cybersecurity, data breach, Data Breaches, Exploits, Global Security News, malware, Network Security, phishing, privacy, Webroot Blog
Build strong digital defenses for your entire family
The month of June is a time for fun in the sun and a break from the school year, but did you know it’s also the perfect time to step up your family’s online security? June is Internet Safety Month, a yearly reminder to strengthen your defenses against online threats. In today’s hyper-connected world, we…
AI, Apps, cyber resilience, Cybersecurity, data breach, Data Breaches, Exploits, Global Security News, malware, Network Security, phishing, privacy, Webroot Blog
Build strong digital defenses for your entire family
The month of June is a time for fun in the sun and a break from the school year, but did you know it’s also the perfect time to step up your family’s online security? June is Internet Safety Month, a yearly reminder to strengthen your defenses against online threats. In today’s hyper-connected world, we…
AI, Apps, cyber resilience, Cybersecurity, data breach, Data Breaches, Exploits, Global Security News, malware, Network Security, phishing, privacy, Webroot Blog
Build strong digital defenses for your entire family
The month of June is a time for fun in the sun and a break from the school year, but did you know it’s also the perfect time to step up your family’s online security? June is Internet Safety Month, a yearly reminder to strengthen your defenses against online threats. In today’s hyper-connected world, we…
AI, Apps, cyber resilience, Cybersecurity, data breach, Data Breaches, Exploits, Global Security News, malware, Network Security, phishing, privacy, Webroot Blog
Build strong digital defenses for your entire family
The month of June is a time for fun in the sun and a break from the school year, but did you know it’s also the perfect time to step up your family’s online security? June is Internet Safety Month, a yearly reminder to strengthen your defenses against online threats. In today’s hyper-connected world, we…
AI, Apps, cyber resilience, Cybersecurity, data breach, Data Breaches, Exploits, Global Security News, malware, Network Security, phishing, privacy, Webroot Blog
Build strong digital defenses for your entire family
The month of June is a time for fun in the sun and a break from the school year, but did you know it’s also the perfect time to step up your family’s online security? June is Internet Safety Month, a yearly reminder to strengthen your defenses against online threats. In today’s hyper-connected world, we…
Cybersecurity, eset, Fancy Bear, Global Security News, Government, GRU, nato, North America, phishing, powershell, PsExec, Russia, Threats, Transportation, Ukraine
Multi-national warning issued over Russia’s targeting of logistics, tech firms
A joint advisory from intelligence and cybersecurity agencies in the United States, United Kingdom, Canada, Australia and multiple European countries has detailed an ongoing Russian state-sponsored campaign targeting Western logistics organizations and technology companies, especially those supporting aid to Ukraine. The campaign, orchestrated by the group known as APT28 or Fancy Bear, has relied heavily…
cyber security, Exploits, Global Security News, phishing, phishing attack, phishing awareness
How to Spot a Phishing Email in 2025 –with Real Examples and Red Flags
Despite growing awareness and increasingly sophisticated security tools, phishing is still one of the most persistent and pernicious threats of the modern age: according to Proofpoint’s 2024 State of the Phish report, 86% of organisations experienced a phishing attempt last year and over 70% suffered a successful compromise due to human error. Phishing is also…
cyber security, Exploits, Global Security News, phishing, phishing attack, phishing awareness
How to Spot a Phishing Email in 2025 –with Real Examples and Red Flags
Despite growing awareness and increasingly sophisticated security tools, phishing is still one of the most persistent and pernicious threats of the modern age: according to Proofpoint’s 2024 State of the Phish report, 86% of organisations experienced a phishing attempt last year and over 70% suffered a successful compromise due to human error. Phishing is also…
cyber security, Exploits, Global Security News, phishing, phishing attack, phishing awareness
How to Spot a Phishing Email in 2025 –with Real Examples and Red Flags
Despite growing awareness and increasingly sophisticated security tools, phishing is still one of the most persistent and pernicious threats of the modern age: according to Proofpoint’s 2024 State of the Phish report, 86% of organisations experienced a phishing attempt last year and over 70% suffered a successful compromise due to human error. Phishing is also…
cyber security, Exploits, Global Security News, phishing, phishing attack, phishing awareness
How to Spot a Phishing Email in 2025 –with Real Examples and Red Flags
Despite growing awareness and increasingly sophisticated security tools, phishing is still one of the most persistent and pernicious threats of the modern age: according to Proofpoint’s 2024 State of the Phish report, 86% of organisations experienced a phishing attempt last year and over 70% suffered a successful compromise due to human error. Phishing is also…
CryptoCurrency, discord, Global Security News, Ledger, phishing, Podcast, Scam, Sextortion, Smashing Security, spam, Wallet
Smashing Security podcast #417: Hello, Pervert! – Sextortion scams and Discord disasters
Don’t get duped, doxxed, or drained! In this episode of “Smashing Security” we dive into the creepy world of sextortion scams, and investigate how crypto wallet firm Ledger’s Discord server was hijacked in an attempt to phish for cryptocurrency recovery phrases. All this and more is discussed in the latest edition of the award-winning “Smashing…
Global Security News, phishing, Security Bloggers Network, Service Providers
Abuse takes its “toll” on .top: But who is paying the price?
Despite ICANN issuing a formal notice to .top citing a breach of contract for failing to address DNS abuse, the situation has not improved. Over the last six months, abuse of .top hasn’t just persisted, it’s gotten 50% worse! So, why is this happening, and what can be done to stop it? The post Abuse…
AI and ML in Security, Cybersecurity, deepfakes, email, Global Security News, ML, News, phishing, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threats & Breaches, Video, vulnerabilities
IRONSCALES Extends Email Security Platform to Combat Deepfakes
IRONSCALES has extended the reach of the machine learning algorithms it uses to identify email anomalies to now include the video and audio files used to create deepfakes. The post IRONSCALES Extends Email Security Platform to Combat Deepfakes appeared first on Security Boulevard.
business, Cybersecurity, Global Security News, malware, phishing
Phishing, Deep Fake and Malware Attacks Now Using AI
As new technologies are developed and honed, threat actors quickly learn that they can be used to infiltrate and steal valuable personal and business information and data. While the benefits of AI (artificial intelligence) does cover many industries, there are just as many that are using AI for nefarious purposes. This can be a double-edged…
business, Cybersecurity, Global Security News, malware, phishing
Phishing, Deep Fake and Malware Attacks Now Using AI
As new technologies are developed and honed, threat actors quickly learn that they can be used to infiltrate and steal valuable personal and business information and data. While the benefits of AI (artificial intelligence) does cover many industries, there are just as many that are using AI for nefarious purposes. This can be a double-edged…
Awareness, Global Security News, interview, multi-factor authentication, PCI DSS, phishing
Coffee with the Council Podcast: Passwords Versus Passkeys: A Discussion with the FIDO Alliance
This episode of Coffee with the Council is brought to you by our podcast sponsor, Feroot. Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. If you’re like most citizens of the modern world, you’ve probably struggled to remember…
Awareness, Global Security News, interview, multi-factor authentication, PCI DSS, phishing
Coffee with the Council Podcast: Passwords Versus Passkeys: A Discussion with the FIDO Alliance
This episode of Coffee with the Council is brought to you by our podcast sponsor, Feroot. Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. If you’re like most citizens of the modern world, you’ve probably struggled to remember…
Awareness, Global Security News, interview, multi-factor authentication, PCI DSS, phishing
Coffee with the Council Podcast: Passwords Versus Passkeys: A Discussion with the FIDO Alliance
This episode of Coffee with the Council is brought to you by our podcast sponsor, Feroot. Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. If you’re like most citizens of the modern world, you’ve probably struggled to remember…
Awareness, Global Security News, interview, multi-factor authentication, PCI DSS, phishing
Coffee with the Council Podcast: Passwords Versus Passkeys: A Discussion with the FIDO Alliance
This episode of Coffee with the Council is brought to you by our podcast sponsor, Feroot. Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. If you’re like most citizens of the modern world, you’ve probably struggled to remember…
deepfake, Global Security News, MSP/MSSP, phishing, Security Bloggers Network
Phishing 3.0: Trust, Deepfakes, and Why Your Inbox Might Betray You
In his recent post, our CEO, Eyal Benishti, sounded the phishing alarm for all to hear. The message? The traditional foundation of digital business communication, trust, is collapsing under the weight of AI-driven attacks. The post Phishing 3.0: Trust, Deepfakes, and Why Your Inbox Might Betray You appeared first on Security Boulevard.
Cybersecurity, education, Global Security News, kids, parents, phishing, responsibility, Schools, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Training
It’s Time to Prioritize Cybersecurity Education
From ransomware attacks disrupting school systems to phishing scams targeting student credentials, educational institutions are prime targets for cybercriminals. Cybersecurity education is critical to protecting individual students and the vast, complex systems that support their learning. The post It’s Time to Prioritize Cybersecurity Education appeared first on Security Boulevard.
AI, Cybersecurity, data breach, Data Breaches, Exploits, Global Security News, Government & Policy, malware, Network Security, phishing, privacy, Ransomware, Risk Management, Threat Lab
The danger of data breaches — what you really need to know
In today’s digital world, your personal data is like cold hard cash, and that’s why cyberthieves are always looking for ways to steal it. Whether it’s an email address, a credit card number, or even medical records, your personal information is incredibly valuable in the wrong hands. For hackers, breaking into a company database is…
AI, Cybersecurity, data breach, Data Breaches, Exploits, Global Security News, Government & Policy, malware, Network Security, phishing, privacy, Ransomware, Risk Management, Threat Lab
The danger of data breaches — what you really need to know
In today’s digital world, your personal data is like cold hard cash, and that’s why cyberthieves are always looking for ways to steal it. Whether it’s an email address, a credit card number, or even medical records, your personal information is incredibly valuable in the wrong hands. For hackers, breaking into a company database is…
AI, Cybersecurity, Emails, Global Security News, phishing, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Threats & Breaches
Beyond Firewalls: Why Phishing Demands a People-First, Trust-Centric Response
Phishing attacks are not only more frequent but also more sophisticated, leveraging AI to craft highly convincing messages that bypass traditional security measures. The post Beyond Firewalls: Why Phishing Demands a People-First, Trust-Centric Response appeared first on Security Boulevard.
cyber security, Data Breaches, Global Security News, Government, International, News, phishing, Ransomware, Security, small businesses, uk, United Kingdom
UK’s Cyber Crime Down in 2024: Better ‘Cyber Hygiene Among Small Businesses
A UK government survey of 2024 data shows phishing remains the top cyber threat, ransomware cases doubled, and fewer boards include cyber experts despite steady attack rates.
bec, Global Security News, phishing, Security Bloggers Network
Seeing the Big Picture in Phishing Defense: IRONSCALES & CrowdStrike
At the start of this year, IRONSCALES launched an integration with CrowdStrike Falcon® Next-Gen SIEM, delivering enhanced threat visibility, detection, and correlation to help organizations combat phishing and account takeover (ATO) threats. This integration reflects our shared commitment to simplifying and strengthening cross-domain security—including email security—as a critical part of modern cyber defense. The post…
encryption, Global Security News, iOS, military, phishing, Podcast, privacy, QR code, signal, Smashing Security, White House
Smashing Security podcast #412: Signalgate sucks, and the quandary of quishing
QR codes are being weaponised by scammers — so maybe think twice before scanning that parking meter. And in a blunder so dumb it makes autocorrect look smart, the White House explains how it leaked war plans on Signal because an iPhone mistook a journalist for a government insider. Plus! Don’t miss our featured interview…
CryptoCurrency, data breach, Data loss, Global Security News, Guest blog, Law & order, phishing, Scattered Spider, sim swap
King Bob pleads guilty to Scattered Spider-linked cryptocurrency thefts from investors
A Florida man, linked to the notorious Scattered Spider hacking gang, has pleaded guilty to charges related to cryptocurrency thefts which have netted hundreds of thousands of dollars. Read more in my article on the Hot for Security blog.
Cloud Security, fraud detection, friendly fraud, Global Security News, payment fraud, payments, phishing, Security, wire fraud
Payment Fraud Detection and Prevention: Here’s All To Know
Here are the most common and latest advancements in payment fraud strategies and payment fraud prevention tools for protecting your business.
Global Security News, phishing, Podcast, Scam, Smashing Security, Troy Hunt
Smashing Security podcast #411: The fall of Troy, and whisky barrel scammers
Renowned cybersecurity expert Troy Hunt falls victim to a phishing attack, resulting in the exposure of thousands of subscriber details, and don’t lose your life savings in a whisky scam… All this and more is discussed in the latest edition of the “Smashing Security” podcast by cybersecurity veterans Graham Cluley and Carole Theriault. Plus! Don’t…
Cybersecurity, Exploits, gen z, Global Security News, online scams, phishing, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Threats & Breaches
Gen Z’s Rising Susceptibility to Social Engineering Attacks
Gen Z, or individuals born between 1997 and 2012, have certain types of lifestyles, upbringings and character traits that make them ideal for social engineering exploitation. The post Gen Z’s Rising Susceptibility to Social Engineering Attacks appeared first on Security Boulevard.
Artificial Intelligence, Cloud, Cloud Security, Cybersecurity, Global Security News, Microsoft, microsoft security copilot, News, phishing, Security, threat detection
After Detecting 30B Phishing Attempts, Microsoft Adds Even More AI to Its Security Copilot
Microsoft is partnering with top firms to launch new AI security tools, boosting breach analysis, threat detection, and AI model protection across cloud platforms.
Blog, Careers, Global Security News, phishing, phishing training, Security Awareness, Security Bloggers Network
Why So Many Employee Phishing Training Initiatives Fall Short
During the work-from-home boom of 2020, GitLab, a company that largely employs tech-savvy individuals, decided to test its security by sending fake phishing messages to its WFH workers. About one out of every five tested employees fell for it, and […] The post Why So Many Employee Phishing Training Initiatives Fall Short appeared first on…
Coinbase, CryptoCurrency, Global Security News, Guest blog, phishing
Mandatory Coinbase wallet migration? It’s a phishing scam!
An ingenious phishing scam is targeting cryptocurrency investors, by posing as a mandatory wallet migration. Read more in my article on the Hot for Security blog.
Big Data, Cybersecurity, Global Security News, International, phishing, Ransomware, ransomware as a service, Security
Medusa Ransomware Strikes 300+ Targets: FBI & CISA Urge Immediate Action to #StopRansomware
Medusa ransomware now operates as a RaaS model, recruiting affiliates from criminal forums to launch attacks, encrypt data, and extort victims worldwide.
AI, Artificial Intelligence, Event, Global Security News, Password, phishing, Security threats
Webinar: Credential security in the age of AI: Insights for IT leaders
On Tuesday, March 18 2025, at 1pm EST, I will be joining the experts at Dashlane for an online chat all about credential security in the age of AI. Learn more and make sure to book your free seat.
Apple, Canada, CISA, cyber security, cyber threat, Cybersecurity, Data Privacy, Data Security, Digital Privacy, doge, encryption, Encryption Backdoor, Endpoint, Episodes, Global Security News, Government, Impact, Incompetence, Information Security, infosec, Jokes, national security, phishing, Podcast, Podcasts, privacy, SBN News, Security, Security Bloggers Network, Technology, Trump, uk, Weekly Edition
Cybersecurity Impact of DOGE, Apple’s Stand Against Encryption Backdoors
In this episode, Kevin and Tom discuss current events including the latest developments with DOGE and the significant changes happening at the Cybersecurity and Infrastructure Security Agency (CISA). They also touch on Apple’s decision to refuse creating backdoors for encryption, setting a new precedent in digital security. Tune in for an insightful discussion on the…
Apple, Canada, CISA, cyber security, cyber threat, Cybersecurity, Data Privacy, Data Security, Digital Privacy, doge, encryption, Encryption Backdoor, Endpoint, Episodes, Global Security News, Government, Impact, Incompetence, Information Security, infosec, Jokes, national security, phishing, Podcast, Podcasts, privacy, SBN News, Security, Security Bloggers Network, Technology, Trump, uk, Weekly Edition
Cybersecurity Impact of DOGE, Apple’s Stand Against Encryption Backdoors
In this episode, Kevin and Tom discuss current events including the latest developments with DOGE and the significant changes happening at the Cybersecurity and Infrastructure Security Agency (CISA). They also touch on Apple’s decision to refuse creating backdoors for encryption, setting a new precedent in digital security. Tune in for an insightful discussion on the…
Cybercrime, Cybersecurity, Global Security News, Google Threat Intelligence Group, GRU, messaging apps, phishing, Research, Russia, Sandworm, signal, Threats, Uncategorized
Russia-aligned threat groups dupe Ukrainian targets via Signal
Russian state threat groups have compromised Signal accounts used by Ukrainian military and government personnel to eavesdrop on real-time communications, Google Threat Intelligence Group said in a report released Wednesday. “This is a persistent, ongoing campaign being carried out by multiple different Russia-aligned threat actors,” Dan Black, principal analyst at Google Threat Intelligence Group, said…
Global Security News, Guest blog, Microsoft, Microsoft Teams, North America, phishing, WhatsApp
Got a Microsoft Teams invite? Storm-2372 gang exploit device codes in global phishing attacks
Security experts have warned that a cybercriminal group has been running a malicious and inventive phishing campaign since August 2024 to break into organizations across Europe, North America, Africa, and the Middle East. Read more in my article on the Tripwire State of Security blog.
Cybersecurity, Global Security News, phishing, romance scams, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X
Law Enforcement Can’t Save You From Romance Scams
Once a conversation starts and a personal connection is established, scammers behind a screen can lure their targets into video call scams utilizing high-quality deepfake technology The post Law Enforcement Can’t Save You From Romance Scams appeared first on Security Boulevard.
Cybersecurity, Exploits, Global Security News, Microsoft, phishing, Research, Russia, Threat Intelligence, Threats, Volexity
Threat researchers spot ‘device code’ phishing attacks targeting Microsoft accounts
Microsoft threat researchers discovered a series of what they are calling “device code” phishing attacks that allowed a suspected Russia-aligned threat group to gain access to and steal data from critical infrastructure organizations, the company said in research released Thursday. The group, which Microsoft tracks as Storm-2372, has targeted governments, IT services and organizations operating…
Cybercrime, Cybersecurity, Exploits, Featured, Global Security News, News, phishing, Scams, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, valentine's day
Cybercriminals Exploit Valentine’s Day with Romance Scams, Phishing Attacks
As Valentine’s Day approaches, cybercriminals are ramping up their efforts to exploit consumers through romance scams, phishing campaigns and fraudulent e-commerce offers. The post Cybercriminals Exploit Valentine’s Day with Romance Scams, Phishing Attacks appeared first on Security Boulevard.
Global Security News, Guest blog, North America, phishing, SMS
Toll booth bandits continue to scam via SMS messages
North American drivers are continuing to be barraged by waves of scam text messages, telling them that they owe money on unpaid tolls. Do you know what to tell your friends and family to watch out for? Read more in my article on the Hot for Security blog.
Cloud Security, Global Security News, MFA. phishing MFA, phishing, Security, spear phishing
How to Prevent Phishing Attacks with Multi-Factor Authentication
Learn how to protect yourself and your sensitive information from phishing attacks by implementing multi-factor authentication.
Cybersecurity, Global Security News, NIST phish scale, NIST Phishing Framework, phishing, phishing awareness training, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Threats & Breaches
Using the NIST Phish Scale Framework to Detect and Fight Phishing Attacks
The NIST Phish Scale framework offers a structured and effective approach to improving phishing awareness training in organizations. The post Using the NIST Phish Scale Framework to Detect and Fight Phishing Attacks appeared first on Security Boulevard.
Cloud Security, Cybersecurity, Data Privacy, Data Security, Endpoint, enterprise mobile threats, Featured, Global Security News, Mobile Security, News, PDF files, phishing, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Threat Intelligence, USPS
Hackers Use Malicious PDFs, pose as USPS in Mobile Phishing Scam
A large-scale phishing campaign is using PDF files and hidden malicious links, as well as posing at the U.S. Postal Service, in phishing campaign targeting mobile device users in hope that victims will divulge credentials and personal information, Zimperium researchers say. The post Hackers Use Malicious PDFs, pose as USPS in Mobile Phishing Scam appeared…
CloudFlare, Cybersecurity, Global Security News, group-1b, Microsoft, Microsoft 365, Microsoft Office, microsoft outlook, phishing, phishing-as-a-service, Security, Sekoia, sneaky 2fa, sneaky log, Social Engineering, Telegram, trac labs, two factor authentication
‘Sneaky Log’ Microsoft Spoofing Scheme Sidesteps Two-Factor Security
The phishing-as-a-service kit from Sneaky Log creates fake authentication pages to farm account information, including two-factor security codes.
Bitcoin, Crypto, Cybersecurity, Exploits, fraud, Global Security News, phishing, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Veriti
California Wildfires Spark Phishing Scams Exploiting Chaos
As Southern California continues to battle devastating wildfires, cybercriminals have seized the opportunity to exploit the chaos, targeting vulnerable individuals and organizations. The post California Wildfires Spark Phishing Scams Exploiting Chaos appeared first on Security Boulevard.
AI, Artificial Intelligence, Bennie Thompson, Biden administration, CISA, cloud computing, critical infrastructure, Cybersecurity and Infrastructure Security Agency, Cybersecurity and Infrastructure Security Agency (CISA), Donald Trump, Emerging Tech, encryption, fraud, Global Security News, Government, House Homeland Security Committee, Joe Biden, Mark Green, National Cyber Director, National Risk Management Center, National Security Council, National Security Council (NSC), Office of the National Cyber Director, operational technology, phishing, quantum computing, supply chain, supply chain security, Trump, Trump Administration
Biden cyber executive order gets mostly plaudits, but its fate is uncertain
A sweeping executive order on cybersecurity released Thursday won largely positive reviews, with the main question being its timing — and what will come of it with the executive branch set to be handed over from president to president. Chris Inglis, the former national cyber director for Joe Biden who has served under both Democrats…
Department of Justice (DOJ), FSB, Geopolitics, Global Security News, Government, Microsoft, phishing, Russia, Star Blizzard, Threats, WhatsApp
Microsoft catches Russian state-sponsored hackers shifting tactics to WhatsApp
The cat-and-mouse game between state-sponsored Russian hackers and one of the world’s biggest technology companies has continued into 2025. Microsoft’s threat intelligence team published research Thursday examining how a state-sponsored Russian threat actor group, known as Star Blizzard, has altered its longstanding attack strategies to target WhatsApp accounts. This attack vector is a significant change…
Emerging Tech, Global Security News, phishing
Phishing click rates tripled in 2024 despite user training
For years organizations have invested in security awareness training programs to teach employees how to spot and report phishing attempts. Despite those efforts, enterprise users were three times as likely in 2024 to land on phishing pages compared to the previous year, according to a report from security vendor Netskope. Based on telemetry collected from…