Financial Institutions are the Most Affected by Phishing Attacks and Scams

New data shows how the overwhelming majority of phishing attacks on financial institutions dwarf every other industry sector by as much as a factor of 30-to-1. It’s no secret that banks and other types of financial institutions hold all the money, so it should be no surprise
Read More

Response-Based Business Email Compromise Contributes to 97% of Attacks

The malware-less and seemingly benign nature of business email compromise emails, mixed with impersonation techniques, are difficult to spot as being malicious, making them even more dangerous. I’ve covered both the threat of business email compromise and response-based email
Read More

Three-Quarters of Organizations Have Experienced an Increase in Email-Based Threats

New data on the state of email security shows that nearly every organization has been the target of a phishing attack as attacks increase in sophistication. While organizations are attempting to shore up their cybersecurity defenses, Mimecast’s State of Email Security report
Read More

Malware Report: The Number of Unique Phishing Emails in Q4 Rose by 36%

With nearly 280 million phishing emails detected by just one vendor and the increase in the number of unique emails, organizations have a lot to be worried about in 2023. I want to start with some context around this stat. This article is not about the number of phishing emails
Read More

Ohio Supreme Court: Insurance Policy Doesn’t Cover Ransomware Attack

The Ohio Supreme Court ruled in favor of an insurance company, determining that its contract to cover any direct physical loss or damage to property did not encompass ransom payments made when a hacker illegally gained access to medical billing software company EMOI’s
Read More

91% of Organizations Concerned About Ransomware Attacks in 2022

With ransomware attacks becoming more frequent, evasion getting more sophisticated, and ransoms increasing, new data shows organizations aren’t fighting for staff and budget. As ransomware attacks now reach downtime costs of over $160 billion, this prevalent attack is
Read More

Phishing Attacks Reach an All-Time High, Quadrupling That of Early 2020

New quarterly data from the Anti-Phishing Working Group shows unprecedented phishing activity with increases in BEC, use of social media, vishing, and smishing. It’s never good when phishing attacks are moving, proverbially, “up and to the right.” But that’s exactly what we’re
Read More

Phishing-Based Data Breaches Take 295 Days to Contain and Breach Costs Soar to $4.91 Million

Fresh data on data breach costs from IBM show phishing, business email compromise, and stolen credentials take the longest to identify and contain. There are tangible repercussions of allowing your organization to succumb to a data breach that starts with phishing, social
Read More

Phishing Attacks Increase by 54% as Initial Attack Vector for Access and Extortion Attacks

New analysis of threat activity for the first quarter of this year shows anyone with access to corporate email is now on the front lines of modern cyberattacks of all kinds. The key to a solid cyber defense is knowing your enemy. It’s one of the reasons I spend so much of the
Read More

Business Email Compromise Shouldn’t Be the Cost of Doing Business

The FBI last week published a public service announcement updating its warnings about the continuing threat of business email compromise (BEC, also called CEO fraud). The problem has reached shocking proportions: between June of 2016 and December of 2021, the Bureau counted
Read More

Small and Medium Businesses Account for Nearly Half of all Ransomware Victim Organizations

As ransomware costs increase, along with the effectiveness and use of extortions, smaller businesses are paying the price, according to new data from Webroot. Small businesses seem to be easy prey for ransomware gangs, according to Webroot’s just-released BrightCloud Threat
Read More

A Lack of Employee Cyber Hygiene is the Next Big Threat

A new report suggests that everything from endpoints, to passwords, to training, to security policies, to a lack of awareness is all contributing to a much higher risk of cyberattack. Employee cyber risk is a multifaceted issue that revolves a lot around cyber hygiene, according
Read More

Backups Become the Focus as Three-Fourths of Organizations Experienced Ransomware Attacks

New data puts the spotlight on how most organizations are unable to completely recover their data after a ransomware attack, making the case for better data protection for improved incident response. It appears that organizations simply aren’t prepared in the face of a ransomware
Read More

Half of All Organizations Hit by Ransomware Experience Productivity Loss

According to new data, ransomware is expected to be a larger and more likely threat in the next year, making the impacts felt today very relevant as the impetus for improved cybersecurity. According to new data from Bitglass in their 2022 Ransomware & Malware Report, you
Read More

Organizations Worldwide Experience Over 722 Million Attacks in the Last 30 Days

Analysis of data collected by Internet and security services vendor Akamai shows an unimaginable number of cyberattacks, demonstrating how frequently these attacks are happening. If you’ve been paying attention at all the last few years, you’re already keenly aware that
Read More