My TechDecisions

Search Results: phishing

Phishing Success rates

New Phishing-Resistant Solutions, Security Key Integrations in Azure AD

Microsoft new phishing-resistant solutions for Azure, Office 365 and remote desktop environments, and Yubikeys can play a role.

October 21, 2022 Zachary Comeau Leave a Comment

Microsoft has announced new phishing-resistant solutions designed to help organizations protect against credential-based attacks in Azure, Office 365 and remote desktop environments, and hardware security key maker Yubico says the measures make it easier to secure accounts and assets using the YubiKey. Microsoft announced authentication strength, a new Conditional Access control that allows admins to […]

Read More
This Week in IT, IT News

This Week in IT: Trellix Live, Hurricane Phishing Scams, Ransomware, HHS COVID Tracking

Trellix Live, Hurricane Ian phishing scams, ransomware attack stats, and how HHS' COVID tracking system lacked basic cyber protections highlight this week in IT.

September 29, 2022 TD Staff Leave a Comment

Editor’s note: There is a lot going on in the world of IT, from emerging technologies to digital transformation and new cybersecurity threats. However, we can’t possibly cover it all, so we’ll bring you This Week in IT, a curated summary of IT and enterprise technology stories each week. Trellix Expand Live Event in Las […]

Read More
Cloudflare Phishing

How One Large Tech Company Thwarted a Highly Sophisticated Phishing Attack

Cloudflare says a reliance on physical security keys, robust cybersecurity tools and awareness helped stop a sophisticated phishing attack.

August 11, 2022 Zachary Comeau Leave a Comment

Phishing attacks are becoming all too common, and they are becoming increasingly sophisticated, leveraging text messages to trick employees not clicking links. However, the use of multi-factor security keys, robust security practices and a strong culture of security can help thwart them, as evidenced by a recent attack against Cloudflare. The web performance and security […]

Read More
IT news, This Week in IT

This Week in IT: macOS Bug, New Google Cloud Offerings, Phishing Attacks, Autopatch, and More

Security research, threat trends and the general availability of Microsoft's AutoPatch highlight this week's IT news.

July 14, 2022 Zachary Comeau Leave a Comment

Editor’s note: There is a lot going on in the world of IT, from emerging technologies to digital transformation and new cybersecurity threats. However, we can’t possibly cover it all, so we’ll bring you this curated summary of IT and enterprise technology stories each week. Microsoft Discovers macOS App Sandbox escape bug Microsoft says it […]

Read More
My TechDecisions Podcast, zero trust

My TechDecisions Episode 165: Phishing Simulation and Continuous Cybersecurity Training

James McQuiggan, security awareness advocate at simulated phishing platform KnowBe4, joins the podcast to talk about modern cybersecurity training.

June 30, 2022 Zachary Comeau Leave a Comment

On this episode of the My TechDecisions Podcast, we talk about how modern cybersecurity training needs to evolve from the legacy method of online videos and quizzes to a more hands-on approach, including phishing simulation. James McQuiggan, security awareness advocate at simulated phishing platform KnowBe4, joins to discuss how simulated phishing attacks can help spread […]

Read More
Phishing Success

Ukraine-related Phishing Emails Up More than 200%

Hackers are exploiting the Ukraine crisis to conduct donation scams, deploy malware and steal credentials, Tessian says.

April 6, 2022 Zachary Comeau Leave a Comment

Similar to how cybercriminals jumped on the COVID-19 and used the pandemic as a useful phishing lure, attackers are exploiting the Ukraine crisis to conduct email-based donation scams, deploy malware and steal credentials. According to email security firm Tessian, researchers are seeing Ukrainian-themed phishing emails skyrocket, with new domains containing “Ukraine” up more than 200% […]

Read More
Phishing Success rates

Watch Out For This Chameleon Phishing Scheme

Trustwave SpiderLabs is warning of a chameleon-like phishing scheme that adapts its background page and logo depending on the user input.

March 25, 2022 TD Staff Leave a Comment

Security researchers at TrustWave SpiderLabs encountered a phishing scheme that acts like a chameleon by changing and blending its color based on its environment. The site adapts its background page and logo depending on the user input to trick victims into giving away their email credentials. The phishing scheme starts with an email asking the […]

Read More
Phishing Success

Phishing, Ransomware Continue To Plague Businesses As Awareness Stagnates

Proofpoint phishing report finds that 60% organizations hit with ransomware in 2021 paid the ransom, but not all data is recovered.

February 22, 2022 Zachary Comeau Leave a Comment

More than two-thirds were infected with ransomware from a direct email payload, and 60% of those victims paid the ransom, according to new research from cybersecurity and compliance firm Proofpoint. The company’s 2022 State of the Phish Report, the results of a survey of 600 IT professionals and 3,500 workers, reveals that phishing and other […]

Read More
Beyond Identity

Phishing Attacks That Bypass MFA Could Become The Norm

Proofpoint says threat actors are increasingly leveraging phishing kits that can bypass mutli-factor authentication methods.

February 4, 2022 Zachary Comeau Leave a Comment

Multi-factor authentication (MFA) is now a standard cybersecurity practice—or at least it should be—across an organization’s IT environment. MFA has been proven to stop hackers from accessing accounts and thwart ransomware attacks from happening with compromised credentials alone. However, like with most IT security safeguards, cybercriminals are finding ways around it with phishing attacks that […]

Read More
Phishing

These Were The Top Phishing Topics in 2021

The pandemic and vaccination were the most common phishing topic among hackers in 2021, new report research says.

January 26, 2022 Zachary Comeau Leave a Comment

Phishing remains among the top security threats to any organization, as the attack vector is often where a hacker first attempts to steal credentials and access victim networks with the end goal of stealing secrets, deploying ransomware or other malicious activities. Since the start of the COVID-19 pandemic, phishing attempts have grown considerably, with nearly […]

Read More