Flipping the BEC funnel: Phishing in the age of GenAI
For years, phishing was just a numbers game: A malicious actor would slap together an extremely generic (and usually poorly-written) email and fire it out to thousands of recipients in the hope that a few might take the bait. Over time, however, as s.....»»
New phishing campaign targets Twitter Blue users amid X rebrand confusion
Twitter Blue subscribers are being targeted with fake migration service amid company rebrand to X......»»
Beware: Tricky phishing email targeting Twitter Blue subscribers with X rebranding confusion
Twitter’s abrupt rebrand to the letter X is leaving a lot of users confused about the direction of the platform. With this comes an opportunity for cybercriminals, who are now taking advantage of the chaos with some of the most clever phishing ema.....»»
North Korean hackers targeted tech companies through JumpCloud and GitHub
North Korean state-sponsored hackers have been linked to two recent cyberattack campaigns: one involving a spear-phishing attack on JumpCloud and the other targeting tech employees on GitHub through a social engineering campaign. The JumpCloud intrus.....»»
LokiBot malware infecting PCs via Microsoft Word — protect yourself now
Thanks to a report in TheHackerNews, we know that Microsoft Word documents are being used to exploit known remote code execution flaws. The flaws are used as phishing lures to sneak the LokiBot malware onto compromised c.....»»
Egress defends users against phishing threats with adaptive security capability
Egress launched adaptive security for its Intelligent Email Security platform, providing dynamic and automated protection against advanced inbound and outbound threats, transforming the way in which organizations manage human risk on email. Egress CE.....»»
Number of email-based phishing attacks surges 464%
The evolving cyberattack landscape reveals the increasing utilization of generative artificial intelligence (AI) systems, like ChatGPT, by cybercriminals for crafting malicious content and executing sophisticated attacks, according to Acronis. The bi.....»»
Rolls-Royce threatens to blacklist EV flippers
The upcoming Spectre has been so popular that Rolls-Royce wants to stop buyers from flipping the car for profit......»»
Financial transparency index helps track the flow of "dark money" in politics
Not all nonprofits are created equal—and some exist mainly to capitalize on a tax law loophole that allows them to anonymously funnel donations to political causes. New University of Oregon research proposes an index that rates the financial transp.....»»
Small organizations face security threats on a limited budget
Small organizations face the same security threats as organizations overall but have less resources to address them, according to Netwrix. Lack of budget among small organizations The most common security incidents are phishing, ransomware, and user.....»»
Torrent of image-based phishing emails are harder to detect and more convincing
The arms race between scammers and defenders continues. Enlarge / Man hand holding a mobile phone with QR code. (credit: Getty Images) Phishing mongers have released a torrent of image-based junk emails that embed QR cod.....»»
New infosec products of the week: June 30, 2023
Here’s a look at the most interesting products from the past week, featuring releases from Cequence Security, Delinea, Index Engines, and NetApp. Delinea Privilege Manager enhancements reduce phishing effectiveness Based on Delinea’s deep experti.....»»
Delinea Privilege Manager enhancements reduce phishing effectiveness
Delinea announced the latest release of Privilege Manager, its solution for providing privilege elevation controls for users and applications on workstations. The latest enhancements significantly improve ease of use for customers by preconfiguring f.....»»
Insurance companies neglect basic email security
Only 3.54% of of insurance companies have correctly implemented basic phishing and spoofing protection, according to EasyDMARC. DMARC standard adoption Insurers operate using highly sensitive, private information that they’ve been trusted by client.....»»
ChatGPT shows promise in detecting phishing sites
ChatGPT can be used to generate phishing sites, but could it also be used to reliably detect them? Security researchers have tried to answer that question. Can ChatGPT detect phishing sites based on URLs? Kaspersky researchers tested 5,265 (2322 phis.....»»
There"s a new gen AI tool to help workers spot malicious emails
Purge BEC attacks and phishing emails from your workplace with Themis Co-pilot for Microsoft Outlook......»»
Hackers threaten to leak stolen data if Reddit doesn’t reverse API changes
The situation surrounding Reddit’s changes to its API continues to get even weirder. Earlier this year, a ransomware group used a sophisticated phishing attack to steal 80GB of data from Reddit. Now, ransomware group BlackCat is claiming responsib.....»»
IBM expands collaboration with Adobe to help users navigate the complex generative AI landscape
IBM announced plans to expand its longstanding partnership with Adobe to help brands successfully accelerate their content supply chains through the implementation of next-generation AI including Adobe Sensei GenAI services and Adobe Firefly (current.....»»
Small organizations outpace large enterprises in MFA adoption
The use of MFA has nearly doubled since 2020 and that phishing-resistant authenticators represent the best choice in terms of security and convenience for users, according to Okta. MFA authentication gains traction MFA authentication has steadily gai.....»»
From 19th century "Indian remedies" to New Age spirituality, research explores historical appropriation
Sarah Dees pulls several yellow-tinged booklets out of plastic bags. Flipping through one titled "Life Among the Indians," she points out sections on ceremonies and customs. Toward the back are ads for so-called "Indian remedies," products like "Kick.....»»
Insight launches Insight Lens for GenAI
Insight Enterprises is launching a new service offering designed to help unlock the vast potential of generative AI to drive value to clients’ businesses. Insight Lens for GenAI builds on Insight’s deep capabilities in enterprise applicat.....»»