Email remains king as the primary form of communication in the modern workforce. However, its extensive use also makes it a prime target for cyber threats. According to a recent report by Cofense, a staggering 90% of data breaches stem from phishing attacks, establishing it as the leading vector for cybercrime in 2024. Who is… Read more »
Latrodectus, a recently discovered malware, may be sitting in your inbox. First appearing in phishing campaigns in late November 2023, the malware has raised major concerns in the cybersecurity community because it can bypass protections to execute malicious code to the user. Its infiltration tactics involve deceiving victims with fake legal threats, leading them to… Read more »
Reports have surfaced detailing a sinister phishing campaign that leverages what appears to be a flaw in Apple’s password reset mechanism. Victims find themselves bombarded with a barrage of system-level prompts, rendering their devices virtually unusable until they respond to each prompt with either an “Allow” or “Don’t Allow.” This inundation tactic, dubbed “push bombing”… Read more »
Since many of us spend as much time online as we do offline, it’s just as important to fresh your digital space as it is your physical space. Just like decluttering your home, organizing your digital space can boost efficiency, productivity, and even cybersecurity. Below are four tips to help you jump into your virtual… Read more »
Is your organization’s website hosted on WordPress? According to a recent discovery by the Wordfence team, your site may be at risk. The Wordfence team at WordPress security company Defiant have unveiled critical vulnerabilities in two discontinued MiniOrange plugins, as well as another concerning flaw in the widely-used RegistrationMagic plugin. These vulnerabilities pose significant risks… Read more »
Do you use Calendly to organize your calendar and book meetings? You may be vulnerable to a new scheme targeting Mac users. Recently reported by Krebs On Security, this scheme targets people in the cryptocurrency space through platforms like Calendly via malicious links and calendar add-ons. One victim’s experience illustrates the danger: approached via Telegram… Read more »
Following the recent viral story of the woman who lost $50,000 to a phone scam, the discourse surrounding scam prevention has been renewed. Unfortunately, stories like these are becoming increasingly common and are not only detrimental to individuals – but can be to businesses as well. Below are five of the most common scam calls… Read more »
A 16-character password may be just as susceptible to a hacking attempt as a short password, according to a recent Specops Software report. Using easily guessable, duplicate, and simple passwords may make it easier for you to remember, but it also makes it easier for hackers to hijack your accounts. With a booming market for… Read more »
Immediate Response and Detection On Friday Microsoft released an official statement on its actions following a cyber breach by Nation State Actor Midnight Blizzard against its corporate systems. This breach raises concerns about the ongoing threat from nation-state actors and highlights potential shortcomings in Microsoft’s cyber practices. Common issues such as poor password management and… Read more »
Despite having 2FA enabled, Mandiant, a Google-owned company, was recently the victim of a cyber-attack against their Twitter account with over 100,000 followers. To appear more legitimate, the hackers renamed the account “Phantom” and updated the bio to pose as the Phantom Cryptocurrency wallet. The hackers then used the account to promote links to a… Read more »
