October 24, 2023 at 01:03PM AI-generated phishing emails have the potential to be more damaging in the future, but currently human social engineering is more effective, according to a study conducted by IBM’s X-Force Red. While AI can produce phishing emails faster, humans have an advantage in emotional intelligence, personalization, and creating compelling narratives. The … Read more
October 23, 2023 at 02:09PM The Quasar RAT malware is using DLL side-loading to steal data from compromised Windows hosts. The malware disguises itself as legitimate files, such as ctfmon.exe and calc.exe, to avoid detection. It can gather system information, execute commands, and establish remote access. The attack vector is likely phishing emails. Stay vigilant … Read more
October 20, 2023 at 01:24PM The Philippine defense chief has issued an order prohibiting defense personnel and the military from using applications that employ artificial intelligence to generate personal portraits. The defense secretary stated that these apps pose significant security and privacy risks and can be used for malicious activities such as identity theft and … Read more
October 20, 2023 at 08:50AM LinkedIn users are being targeted by a threat actor spreading malware through fake job posts at Corsair. The cybercriminal group responsible for the attacks, believed to be Vietnamese, is linked to previous campaigns targeting Facebook business accounts. The malware, including DarkGate and RedLine, is distributed through malicious files downloaded from … Read more
October 18, 2023 at 04:46PM Cybercriminals are targeting plastic surgery offices, stealing medical records and using them to extort doctors and patients. The trend is not limited to the US, as plastic surgeons in Brazil and the UK have also been affected. The FBI has warned about these attacks and provided security tips for patients, … Read more
October 17, 2023 at 03:09PM Amazon has introduced passkey support as a passwordless login option to enhance security for customers. Passkeys are digital credentials that use biometric controls or PINs linked to devices for logging into websites. They mitigate the risk of data breaches, compromised accounts, phishing attacks, and information-stealing malware. Passkeys also simplify the … Read more
October 17, 2023 at 10:04AM Threat actors are constantly finding new ways to trick end-users into giving up their credentials, leading to a rise in credential theft. Cybercriminals target credentials because people often reuse the same login information across multiple sites, giving hackers access to sensitive accounts. They use social engineering tactics like tailgating, spear … Read more
October 16, 2023 at 10:52PM Phishing attacks have been on the rise, with a 29% increase in detections reported by Trend Micro for 2022. These attacks are becoming more sophisticated, including tactics like spear phishing, whaling, and QR code phishing. Organizations need to implement a layered approach to email security, including capabilities like email gateway … Read more
October 16, 2023 at 02:08PM The Russian hacking group known as ‘Sandworm’ has compromised eleven telecommunication service providers in Ukraine between May and September 2023, according to a report by Ukraine’s Computer Emergency Response Team (CERT-UA). The hackers interfered with communication systems, causing service interruptions and potential data breaches. Sandworm used various tactics, including phishing … Read more