Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

tripwire

Analyzing the Latest APWG Phishing Activity Trends Report: Key Findings and Insights

Oct 14, 2024 By Kirsten Doyle In Tripwire
In the second quarter of 2024, 877,536 phishing attacks were reported, a marked decrease from the 963,994 attacks reported in the first quarter of the same year. However, this might not be a reason to celebrate just yet, as this reduction might be due to the fact that email providers have made it increasingly difficult for users to report phishing attempts.
Read Post
knowbe4

"Operation Kaerb" Takes Down Sophisticated Phishing-as-a-Service Platform "iServer"

Oct 14, 2024 By Stu Sjouwerman In KnowBe4
A partnering of European and Latin American law enforcement agencies took down the group behind the mobile phone credential theft of 483,000 victims. Someone steals a physical mobile phone and they need to unlock it. But to do so, you need the Apple ID or Google account of the phone’s owner. So, where do you go? Well, it used to be iServer – an automated phishing-as-a-service platform that could harvest credentials to unlock the stolen phones.
Read Post
securitysenses

Top Free Crucial Tools for Maintaining Privacy In Online Reviews

Oct 14, 2024 By SecuritySenses In SecuritySenses
Your online reputation matters, right? With everyone sharing opinions about everything, keeping your privacy intact while dealing with reviews is crucial. Think about it - do you really want all your personal data floating around with every click? There are tools out there that help keep things under wraps. You might be surprised at what's available. Let's explore the five must-have tools to ensure you stay private while still hearing what people have to say about their experiences.
Read Post
memcyco

The Mobile Phishing Boom and How to Avoid It

Oct 11, 2024 By Arthur Zavalkovsky In Memcyco
As mobile technology becomes integral to day-to-day life, fraudsters are refining phishing techniques to exploit vulnerabilities in mobile browsing. According to Zimperium’s 2024 zLabs Global Mobile Threat report, 82% of phishing sites specifically targeted mobile devices in 2023. To protect customer data, enterprises need to counter-adapt.
Read Post
knowbe4

Google App Scripts Become the Latest Way to Establish Credibility and Automate Phishing Attacks

Oct 11, 2024 By Stu Sjouwerman In KnowBe4
Cybercriminals have found a new way of leveraging legitimate web services for malicious purposes, this time with the benefit of added automation of campaign actions. Security researchers at CheckPoint have discovered a new phishing campaign that uses Google App Scripts – a scripting platform developed by Google that lets you integrate with and automate tasks across Google products – as the destination in malicious links.
Read Post
cyberint

Why Scammers Love the Holidays, and How to Stop Holiday Phishing Risks

Oct 7, 2024 By Rom Shaked In Cyberint
For phishing scammers, the holidays are the most wonderful time of the year – or so holiday phishing trends would suggest. Cyberint research shows that phishing alerts surged by 46 percent last December compared to the monthly average observed throughout the year. Similarly, an Akamai study found a 150 percent increase in phishing victims between mid-October and late November 2021.
Read Post
knowbe4

Free Phishing Platform Has Created More than 140,000 Spoofed Websites

Oct 7, 2024 By Stu Sjouwerman In KnowBe4
A free phishing-as-a-service (PhaaS) platform named Sniper Dz has assisted in the creation of more than 140,000 phishing sites over the past year, according to researchers at Palo Alto Networks. The service allows unskilled criminals to spin up sophisticated phishing sites that steal credentials or deliver malware.
Read Post
knowbe4

Cybercriminal Gang Targeting SMBs Using Business Email Compromise

Oct 3, 2024 By Stu Sjouwerman In KnowBe4
Researchers at Todyl have published a report on a major cybercriminal group that’s conducting business email compromise (BEC) attacks against small and medium-sized businesses. Todyl describes three separate BEC attacks launched by this threat actor. In one case, the attackers compromised a Microsoft 365 account belonging to an individual working at a small non-profit.
Read Post
knowbe4

Dick's Sporting Goods Cyber Attack Underscores Importance of Email Security and Internal Controls

Oct 2, 2024 By Stu Sjouwerman In KnowBe4
The recent cyber attack on Dick's Sporting Goods makes it clear that email played a critical role and emphasizes the need for better security controls. Dick’s Sporting Goods is a $12 billion company with more than 800 stores across the United States. That measure of success made the retailer the target of a recent cyber attack. A filing with the U.S.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.