Mind your header! There’s nothing refreshing about phishers’ latest tactic

September 12, 2024 at 05:24AM Palo Alto’s Unit 42 threat intel team warns of a rising tactic used by phishers to steal victims’ credentials. They identified over 2,000 large-scale phishing campaigns abusing HTTP header refresh entries to redirect visitors to malicious websites. The phishing attacks primarily target business and economy sectors, highlighting the need for … Read more

Physical security biz exposes 1.2M files via unprotected database

May 7, 2024 at 06:35AM UK-based physical security business Amberstone Security exposed nearly 1.3 million documents, including pictures of guards and suspected offenders, through a misconfigured public database. The exposed data raised concerns about personal privacy, public safety, and the integrity of security operations. After notification, Amberstone revoked public access to the database and initiated … Read more

Beyond the Hype: Questioning FUD in Cybersecurity Marketing

February 14, 2024 at 07:09AM FUD marketing, rooted in fear, uncertainty, and doubt, is often linked to cybersecurity and large, dubious numerical figures. The $8 trillion annual cybercrime cost figure, widely repeated, lacks transparent validation. Experts question its validity and relevance. While FUD does exist in cybersecurity marketing, it is sometimes justifiable, posing a challenge … Read more