Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

memcyco

How Airlines Can Stop Loyalty Account Takeovers Before Miles Are Stolen

Nov 24, 2025 By Ezra In Memcyco
The airline industry faces a critical security threat that cuts directly into profits and customer trust: loyalty account takeover (ATO) fraud. Frequent flyer miles function as a highly liquid digital currency. This drives a surge in theft across US carriers and global networks. Attackers are increasingly sophisticated. They use automated kits and deepfake phishing to seize accounts and quickly convert stolen miles into cash.
Read Post
knowbe4

Report: Deepfake Attacks Are on the Rise

Nov 21, 2025 By KnowBe4 Team In KnowBe4
A new report from Entrust warns of an increase in deepfake attacks, which now account for one in five biometric fraud attempts. Additionally, instances of deepfaked selfies have increased by 58% over the past year. “This rise in deepfakes is part of a broader trend of increasingly sophisticated attacks driven by injection attacks, which surged 40% year-over-year,” Entrust says.
Read Post
memcyco

How to Evaluate Proactive Cybersecurity Tools That Stop Scams Before They Cause Damage

Nov 21, 2025 By Julian Agudelo In Memcyco
Enterprises searching for proactive cybersecurity tools are looking for one essential outcome: stop scams before they result in credential theft, account takeover, or financial loss. This outcome is critically important because the financial stakes for failure are at an all-time high: according to IBM, the average cost of a data breach involving stolen or compromised credentials is a staggering $4.44M according.
Read Post

The MemcycoFM Show: Ep 18 - SOC Defense Against Credential Replay Attacks

Nov 19, 2025 By Memcyco In Memcyco
In a recent blog post from @Memcyco , we discussed how credential replay remains one of the most efficient ways attackers turn stolen usernames, passwords, or tokens into real account access. Verizon’s 2024 DBIR shows that over 40% of breaches involve stolen credentials, underscoring the durability of this tactic. Even strong authentication is not immune. Techniques like pass-the-cookie and adversary-in-the-middle phishing allow attackers to replay tokens and sidestep MFA. Remote-access scams add another layer, handing fraudsters direct control of devices and sessions.
View Video

The MemcycoFM Show: Ep 19 - Website Cloning Detection for ATO Prevention

Nov 19, 2025 By Memcyco In Memcyco
In the recently published blog from @Memcyco titled 'Website Cloning Detection for ATO Prevention', we discussed how, with real-time visibility and browser-level telemetry, website cloning detection becomes a frontline layer of your ATO prevention strategy. It provides actionable insights into impersonation activity that often precedes account takeovers, helping teams intercept fraud earlier and protect customer trust more effectively.
View Video
upguard

Lookalike Domain Attacks Explained

Nov 18, 2025 By Revashni Moodley In UpGuard
Your potential customers could be interacting with a malicious website that resembles your company's website. This dangerous cyber risk, known as a lookalike domain, is on the rise, with 80% of registered web domains in 2024 resembling 2000 global brands. This article explains what lookalike domains are, their impact on your brand, and why these attacks are increasing, providing real-time strategies to protect your business from domain spoofing.
Read Post
memcyco

How to Prevent Account Takeovers from SEO Poisoning and Fake Search Ads

Nov 18, 2025 By Sheena Kretzmer In Memcyco
SEO poisoning has become a major driver of phishing‑driven credential theft. Attackers manipulate search engine results and paid ads so users click on what appears to be a legitimate brand link, only to land on a fake website built to steal login credentials. Attackers combine domain abuse, cloaking, and keyword hijacking to move malicious pages to the top of search results.
Read Post

Avast Scam Guardian for Mobile: Advanced AI Scam Protection

Nov 17, 2025 By Avast In Avast
Introducing Avast Scam Guardian and Scam Guardian Pro for mobile devices—bringing powerful AI-driven scam protection to your smartphone and tablet. Experience complete peace of mind with advanced AI tools that proactively block scam calls before they ring, detect even the most convincing phishing emails and texts, and offer instant expert guidance whenever something seems suspicious—giving you round-the-clock protection against evolving scams. Avast Scam Guardian is now available with Avast Mobile Security in France and Germany, with worldwide availability coming soon.
View Video
elastic

Detecting the undetectable: Building a fraud detection framework with Elastic

Nov 17, 2025 By Kyle Rozanitis In Elastic
Learn how public sector organizations are using Elastic to identify fraudulent activity with rules and anomaly detection jobs fine-tuned for their specific use cases. Every organization faces the challenge of identifying and combating fraud. In the financial services industry, it might be credit card fraud; in the auto insurance space, staged accident fraud; and in the public sector, unemployment, health insurance, or tax fraud.
Read Post
inetco

To protect Canada's financial system, new anti-fraud measures must evolve faster than their foes

Nov 17, 2025 By Bijan Sanii In INETCO
The Government of Canada’s launch of an Anti-Fraud Strategy and Financial Crimes Agency acknowledges a reality that banks, fintechs and payment processors already know: the scale, sophistication and speed of digital fraud are outpacing traditional defences. These are vital national commitments, to be sure, but they also underscore the need for companies, institutions and governments to evolve faster than the attacks they face. Fraud has become one of the defining challenges of our time.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.