FBI: Cyber Attacks Target Organizations Involved in Mergers and Acquisitions

A new notification from the FBI warns organizations of attacks at the perfect time when organizations are spending money, new people are being introduced, and operations are in flux. Threat actors like nothing more than a dash of chaos when it comes to timing their attacks. If
Read More

Business Email Compromise-as-a-Service Emerges as Attempted Fraud Soars to as High as $6 Million

BEC scammers set their sights on payoffs in the millions of dollars, and are following the path of their ransomware counterparts by evolving services while organizations struggle to keep up. It shouldn’t come as a surprise (if you’ve been following the evolution of cybercrime)
Read More

One in Three IT Organizations Have No Cyberattack Incident Response Plan

Despite increases in ransomware attacks, ransom amounts and how often payments are made, new data shows organizations aren’t responding in kind and putting response plans in place. As expected, we’re continuing to see data corroboration around the rise in ransomware attacks this
Read More

Probability of Experiencing a Vendor Email Compromise Attack Increases 96%

Vendor Email Compromise requires first taking control of a strategic email account within the victim organizations. According to new data, cybercriminals are getting really good at this. Vendor Email Compromise – an attack where an email account is actually taken over rather than
Read More

Spear Phishing Becomes a Bigger Problem as the Average Organization is Targeted 700 Times a Year

With threat actors honing their trickery skills to craft the perfect email used to fool a would-be victim recipient, new data shows cybercriminals are stepping up their game on a number of fronts. Spear phishing only works when the misleading email content is relevant to the
Read More

77% of Organizations Are Unable to Access Systems or Networks Post-Ransomware Attack

The fallout after a ransomware attack is more devastating than previously thought. New data spells out what you should really expect after being hit with ransomware. When we consider what happens after a ransomware attack, we normally think about remediation steps –
Read More

Ransomware Attacks from Within Russia So Impactful, U.S. Government Says it Will Take Action if Russia Won’t

In light of recent ransomware attacks, the White House Press Secretary Jen Psaki stated this week that the Russian government needs to address ransomware groups stemming from Russia. The cybersecurity sector has long known that a majority of ransomware gangs reside within Russia.
Read More

Bad Cyber Hygiene: 54% Of Employees Admit They Use the Same Passwords Across Multiple Work Accounts

It appears that working from home causes employees to develop some very bad cyber habits, demonstrating that cybersecurity hygiene went from bad to worse mid-pandemic. We’d like to think we’re just as secure while working from home. But a new survey from 2FA vendor Yubico of
Read More

Do Ransomware Gangs Restore Data, Even After They’re Paid?

Only 8% of ransomware victims get all of their data back after paying the ransom, according to researchers at Sophos. The researchers found that, on average, victims who pay the ransom recover about 65% of their data, while 29% of respondents said they recovered less than 50% of
Read More

The Digital Workplace is a Cybersecurity Disaster

New data reviewing how the 2020 shift to a remote workforce impacted organizational security shows all too well that since the pandemic onset, cybersecurity has become critically worse. We all know IT’s focus during the pandemic was to primarily get the business running remotely.
Read More

Recent Phishing Scams Managed to Bypass Email Security Filters

Researchers at Armorblox describe several recent phishing scams that managed to bypass email security filters. The first attempted to gain access to users’ Facebook accounts. “Recently, the Armorblox threat research team observed an email impersonating Facebook attempt to hit one
Read More

New Phishing Scam Uses Fake PPP Loans to Trick Victims into Giving Up Personal Information

Taking advantage of people’s need for financial assistance, these scammers pose as a bank offering “forgivable business loans to individuals impacted by the pandemic.” Nothing says lowlife more than someone who purposely targets those who are already down and out. Those
Read More

Health Care Sees Double the Increase in the Amount of Ransomware Attacks Since November

With an average of 626 ransomware attacks weekly on health care organizations, it’s evident that the bad guys are stepping up their tactics and focus where they believe the money to be. Health care as a target industry has always been somewhere in the top 10 or even top five
Read More

Report: 85% Of Employees More Likely to Leak Files Now Than Pre-Pandemic

According to research released by Code42, 85% of employees are more likely to leak files today than before the COVID-19 pandemic. “By malicious insiders, we are not talking about terrible people who are criminals,” said Joe Payne, Code42’s president and CEO. “More often
Read More

University Research Shows Security Awareness Training is a Necessary Layer of Defense

A research paper in the Journal of Computer Information Systems says that security awareness training is a necessary complement to technical defenses and security policies, SC Magazine reports. Published by researchers from the University of Sussex and the University of Auckland,
Read More