Social engineers have many tricks up their sleeves, and we have covered many of them in previous articles. The biggest trick is phishing emails, of course, coupled with replica landing pages on hijacked websites. Other methods include phone calls, such as fake tech support calls. There are texting hoaxes, called smishing. There are fake, cloned, or hijacked Facebook, LinkedIn, Twitter, and Instagram account ...
Due to the high-profile cases of cybercrime in recent years, including the Facebook-Cambridge Analytica scandal back in 2018, the Equifax data breach in 2017, and the Russian interference with the US presidential election in 2016, cybersecurity is now a top priority for businesses, institutions, and individuals alike.
In order to implement effective countermeasures against cyber attacks, one has to ...
Continue Reading →
A quick Saturday digest of cybersecurity news articles from other sources.An very cool. detailed, and facinating look at how technology is changing and breaking the spy game from foreignpolicy.com. Worth the read.
The world of espionage is facing tremendous technological, political, legal, social, and commercial changes. The winners will be those who break the old rules of the ...
Continue Reading →
There has been a stream of email alerts arriving at my inbox lately that warned of a variety of new phishing approaches that are using well-known brands (OneDrive and Office 365, FedEx and UPS), trusted sources (Department of Homeland Security, Gmail, Yahoo Mail), secure services (TLS certificates and HTTPS web sites) and curiosity (you received an encrypted message) to trick recipients into clicking a link that leads to a fake ...
What follows is a sponsored post from cybersecurity firm Sequretek.
Businesses usually tend to trust their partners/ technology partners when related to the security of the data flowing across partners. This approach has changed drastically these days; now businesses themselves need to focus on their cyber security measures. There is a sudden rise in the number of supply chain attacks, by which we can conclude that attackers are easily spotting out vulnerabilities in the supply chain network of the organisations. Today, ...
Continue Reading →
Have you been approached by phone or email for a business loan or line of credit? How do you know if the offer is legitimate, or part of a scam designed to separate you from the money you have? Today’s guest post will answer those questions, and more.
A guest post by Jeff Gitlen
If you’re a small business owner, then you’re already ...
Continue Reading →A quick Saturday digest of cybersecurity news articles from other sources.In our earlier post, we issued a warning to users of the Social Warfare plugin regarding a zero-day vulnerability affecting their sites. At this time, the plugin’s developers have issued a patch for the flaw. All users are urged to update to version 3.5.3 immediately.
A quick Saturday digest of cybersecurity news articles from other sources.From the Electric Frontier Foundation (EFF). Do you like what has happened to your cable and Internet service? In December 2017, the FCC voted to roll back the 2015 Open Internet Order, giving Internet service providers (ISPs) free reign to engage in unfair and discriminatory data practices. That ...
Continue Reading →
A quick Saturday digest of cybersecurity news articles from other sources.A new book uncovers the intricacies of Paul Le Roux’s cartel and how it fueled the opioid epidemic ravaging the U.S. today. This fascinating story is covered in detail on the Smithsonian website. Or read Evan Ratliff’s new book The Mastermind. I ...
Continue Reading →
You or your CFO receive an email offering business capital at attractive interest rates. The company that sent you the offer has provided an application for the loan using the legitimate document presentation platform, DocuSign. Everything looks legit, and it is. No fake web pages or near-miss web addresses. But this is the latest in “no malware” phishing scams.
Filling out the form will ...
Continue Reading →