As we enter the beginning of Summer, many of us are highly anticipating the start of pool days, campfires, and of course, taking time off for much needed vacations. While summer vacation is meant to be a time to throw all your troubles away, protecting your personal data and information should still be a priority…. Read more »
Posts Tagged: security
Fishing vs. Phishing: Key Differences and Staying Safe Online
Fishing and phishing might sound alike, but while one is a relaxing pastime – the other is a malicious cybercrime where attackers bait victims into handing over sensitive information through bogus emails and websites. In honor of National Fishing Week, we will be covering what phishing is, its impact, and how you can protect your… Read more »
What is DKIM Authentication?
Getting your email into a prospect’s inbox is already challenging. The last thing any organization wants is for a phishing or spoofing attack to doom that email to the spam folder. To guard against these threats, one powerful tool is DomainKeys Identified Mail (DKIM) authentication. In this post, we’ll explore what DKIM is, how it… Read more »
Navigating Data Privacy: The Dangers of Tracking Technologies
Kaiser Permanente, a major healthcare provider, recently informed 13.4 million current and former members and patients that tracking technologies may have transmitted personal information to third-party vendors like Google, Microsoft Bing, and X while logged into a Kaiser Permanente account or service. The incident sheds light on an ongoing issue with the privacy risks associated… Read more »
What is Sender Policy Framework?
What is SPF? Sender Policy Framework (SPF) is an email authentication protocol designed to combat email spoofing, spam, and phishing attacks. It verifies the legitimacy of incoming emails by allowing domain owners to authorize specific mail servers. How does SPF work? SPF works through DNS records. When an email is received, the recipient’s server checks… Read more »
Thread Hijacking Attacks Targeting Email Users
Thread hijacking attacks, a sophisticated form of social engineering, occur when an individual’s email account is compromised, and the attacker sends malicious emails from that account within an ongoing email thread. This method leverages the recipient’s trust in the sender and curiosity to trick them into clicking on malicious links or attachments. In a recent… Read more »
AI Scams on the Rise: LastPass’s Close Call
Details of the Attack In a recent blog post, LastPass revealed the details of an attempted AI driven scam. An employee received multiple WhatsApp communications, including calls, texts, and a voice message, purportedly from the company’s CEO, Karim Toubba. Recognizing the communication as unusual and potentially fraudulent, they promptly reported it to the internal security… Read more »
Major Email Security Risks in 2024
Email remains king as the primary form of communication in the modern workforce. However, its extensive use also makes it a prime target for cyber threats. According to a recent report by Cofense, a staggering 90% of data breaches stem from phishing attacks, establishing it as the leading vector for cybercrime in 2024. Who is… Read more »
New Malware Infiltrating Inboxes
Latrodectus, a recently discovered malware, may be sitting in your inbox. First appearing in phishing campaigns in late November 2023, the malware has raised major concerns in the cybersecurity community because it can bypass protections to execute malicious code to the user. Its infiltration tactics involve deceiving victims with fake legal threats, leading them to… Read more »
Microsoft Teams Unbundling: Navigating Change in Global Business
Microsoft has decided to separate its popular video meeting application, Teams, from its commercial Microsoft 365 and Office 365 suites. The unbundling is a result of European antitrust regulations and global changes in business practices. Initially implemented in the European Economic Area and Switzerland in October 2023, this move is now going global as of… Read more »
