My TechDecisions

Search Results: phishing

spear phishing, Phishing bait alert concept on a smartphone screen

Barracuda: Half of Organizations Fell Victim to Spear Phishing in 2022

Barracuda report reveals the high success rate of spear-phishing attacks in 2022, despite their low-volume, but widespread nature.

May 30, 2023 Alyssa Borelli Leave a Comment

A recent Barracuda Networks Inc. (Barracuda) report shows that 50% of organizations were victims of spear-phishing in 2022 — and 24% had at least one email account compromised through account takeover. Cybercriminals continue to barrage organizations with targeted email attacks, and many companies are struggling to keep up, says the Campbell, Calif.-based cloud security solutions […]

Read More
Tax day concept. Businessman using the laptop to fill in the income tax online return form for payment.

Best Practices on How to Avoid Phishing Scams Ahead of Tax Day

Learn how to protect yourself and your organization from tax scams ahead of the U.S. tax deadline with these best practices.

April 10, 2023 Steven Spadaccini Leave a Comment

With April’s U.S. tax deadline, cybercriminals have sprung into action. For one, a devious Emotet malware phishing campaign has been launched, masquerading as official W-9 tax form emails sent from the Internal Revenue Service (IRS). A malicious group known as Tactical#Octopus is also on the prowl and looking to spread malware through fake file downloads […]

Read More
MFA bypass, AiTM

Microsoft Warns of Increasing Use of MFA Bypass Tools in Phishing Attacks

Threat actors are stepping up their use of Adversary-in-the-Middle attacks that bypass multi-factor authentication tools, Microsoft says.

March 14, 2023 Zachary Comeau Leave a Comment

Microsoft is warning organizations of an uptick in Adversary-in-the-Middle (AiTM) phishing kits that are capable of bypassing multi-factor authentication (MFA) through reverse-proxy functionality, rendering the security tool that many organizations now deploy useless. In a new blog, the Microsoft Threat Intelligence Team dives into a threat actor it calls DEV-1101, a group that develops, supports […]

Read More
ChatGPT, IT, Policies, AI Tools, Data

Beware of ChatGPT-Themed Phishing Attacks

ChatGPT-themed phishing lures are becoming a favorite among cybercriminals to distribute malware, Cyble researchers say.

March 10, 2023 Zachary Comeau Leave a Comment

ChatGPT and generative AI is dominating the news cycle, with companies like Microsoft, Slack, Snapchat, Grammarly and many others leveraging the emerging technology to help users be more efficient, accurate and creative. In fact, ChatGPT was estimated to have reached 100 million monthly active users in January, making it the fastest-growing consumer tool in history. […]

Read More
Phishing, Email security

Phishing Remains a Favorite Hacking Tool as New Methods Emerge

New methods such as phone-oriented attack delivery and MFA bypass are making phishing attacks more sophisticated, according to Proofpoint.

March 3, 2023 Zachary Comeau Leave a Comment

Phishing, social engineering, and ransomware remain favorite attack methods of cybercriminals, but threat actors are beginning to shift to newer techniques, such as phone-oriented attack delivery and adversary-in-the-middle phishing proxies designed to bypass multifactor authentication, according to cybersecurity firm Proofpoint. The Sunnyvale, Calif.-based company’s’ State of the Phish report finds that email-based phishing attacks remain […]

Read More
Phishing Success rates

Phishing Click Rates Mean More Training, Awareness are Needed

Large enterprises with at least 10,000 employees have the highest phishing click rates, according to a new report from Terranova Security.

February 1, 2023 Zachary Comeau Leave a Comment

Large enterprises with at least 10,000 employees are the most susceptible to phishing schemes that promise a gift despite having access to more cybersecurity resources than smaller businesses, according to a new report on phishing link click rates from Terranova Security, a subsidiary of Fortra (previously HelpSystems). The report is based on the 2022 Gone […]

Read More
Royal Ransomware

Phishing, Ransomware Continue to Dominate as Cyberattacks Surge in 2022

Acronis' year-end report finds that ransomware, phishing and unpatched bugs remain top threats as cybercriminals adapt.

December 28, 2022 Zachary Comeau Leave a Comment

Phishing, MFA fatigue attacks are on the rise, and the cost of a data breach is now expected to reach $5 million, according to a year-end cyberthreat report from cybersecurity firm Acronis. The Switzerland-based firm’s report from its Cyber Protection Operation Center provides an in-depth analysis of the cyberthreat landscape including ransomware, phishing, malicious websites, […]

Read More
The executive hands prevent the employee from receiving and opening a spam mail, the concept of information security in companies, data protection on the internet

Phishing Scams: 5 Tips on Training Employees

Five things enterprises can incorporate into their security awareness program to cut down on human risk.

December 19, 2022 Roy Zur Leave a Comment

Phishing attacks have been around for just about as long as email, yet employees still regularly fall for them. According to the U.S. Federal Bureau of Investigation, roughly 90% of data breaches occur on account of phishing and those attacks have increased approximately 400% since the start of the COVID-19 pandemic. Assessing and reacting to […]

Read More
Twitter phishing, security, cybersecurity

Beware of Twitter Phishing Scams As Musk Takeover Unfolds

Cybersecurity experts are warning of significant security risks stemming from organizational changes at Twitter.

November 16, 2022 Zachary Comeau Leave a Comment

With Twitter constantly in the news due to large-scale shifts in the social media company’s strategy after the takeover of Elon Musk, cybersecurity professionals are warning of new phishing scams and security risks as the new story continues to play out. Billionaire and CEO of Tesla and SpaceX Elon Musk finalized his $44 billion acquisition […]

Read More
POZNAN, POL - SEP 23, 2020: Laptop computer displaying logo of Dropbox, a file hosting service operated by Dropbox, Inc., headquartered in San Francisco, California

Dropbox Accelerates Adoption of WebAuthn in Response to Phishing Attack

Dropbox plans to move toward WebAuthn, in wake of a phishing campaign that accessed some of the code that the company store's in GitHub.

November 4, 2022 TD Staff Leave a Comment

Dropbox Inc., the San Francisco-based file syncing, sharing, online backup and cloud storage provider confirmed it was the target of a phishing campaign that accessed some of the code that the company store’s in GitHub. According to the company, no user’s content, passwords, or payment information was accessed. The company’s core apps and infrastructure were […]

Read More