Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Cybercriminals are increasingly abusing AI-assisted website generators to quickly craft convincing phishing sites, according to researchers at Palo Alto Networks’ Unit 42. In many cases, even when these services have safeguards in place to prevent abuse, criminals are able to bypass these measures in order to create phishing pages. Unit 42 tested a popular website generator to see how easy it was to spin up a spoofed website.

Below is an example of a sophisticated survey scam phishing email that KnowBe4’s Threat Lab team has been monitoring as discussed in “The Hidden Cost of "Free" Gifts: How Survey Scams Are Evolving to Steal Financial Data”. As discussed in our previous blog, the human element is a critical part of the fake survey scam. However, the campaign's success is largely due to its advanced technical infrastructure.

You've probably seen them: enticing online offers for free products from brands you trust, like a Yeti beach chair from Costco or an emergency car kit from AAA. All you have to do is fill out a quick survey and pay a small "shipping fee" of a couple of dollars. But what seems like a harmless transaction is actually a sophisticated scam with a high price tag. The KnowBe4 Threat Lab team has been tracking a phishing campaign where scammers use these fake surveys to steal financial data.

In today’s fast-moving digital economy, growth depends on strong, trusted relationships with vendors, suppliers, and partners. These third parties are often essential to modern business operations; however, they also open the door to a range of risks, from regulatory fines to operational slowdowns. Many organizations have already felt the impact of these risks becoming reality firsthand.

Trustwave, A LevelBlue Company’s Managed Detection and Response solution (MDR), has three elements that cannot be found at any other MDR provider. Together this triumvirate forms a powerful defense against the highly sophisticated cyber threats all organizations, from large to small, now face.

There are two enormous cybersecurity events each year in the United States: RSA Conference and the week in Vegas that is so full of conferences, summits, and ancillary events that it’s simply known as “Hacker Summer Camp.” From Security BSides Las Vegas to Black Hat and DEF CON, it takes the fortitude of a camel to survive the desert heat and the late nights.

Retail account takeover fraud has surged in recent years, with attackers exploiting stored payment details, loyalty points, and digital wallets. This blog analyzes five of the biggest and most impactful retail account takeovers in recent years, evealing how each unfolded, how customers were affected, and how real-time, in-session defenses could have changed the outcome.

We’ve all been there, pushing through a cold, a nagging pain, or a persistent feeling of being "off." We tell ourselves it’s nothing, that we’re too busy to slow down. I did the same thing, ignoring my body’s subtle whispers until they turned into a deafening roar. One moment, I was pushing through a typical day, and the next, I was in a hospital bed, a stark reminder that ignoring warning signs can have serious consequences.

In Uber’s 2022 breach, attackers didn’t crack encryption or exploit some unknown flaw. They flooded an employee with MFA prompts until they became exhausted. One careless tap, and an entire enterprise was open. The lesson isn’t that MFA failed. It’s that MFA itself can become the exploit surface. From AiTM phishing proxies like EvilGinx to automated OTP interception, attackers treat MFA like DevOps treats CI/CD, i.e, scalable, repeatable, and scriptable.