Researchers at PhishMe recently detected two email-based phishing campaigns that infected users with either Lockyransomware or the Trickbot banking trojan based on the victim's geographical location.
Middle-eastern bank, international sporting organisation and Asian individuals were victims of a highly-targeted attack that interrupted an in-progress conversation using compromised credentials.
2017 first half: Kaspersky Labs products blocked 51 million phishing attempts; mobile ransomware attacks up 250% percent; Ironscales' own research estimates 95 percent of successful attacks start with phishing says Eyal Benishti
Malware distributors are now maliciously crafting PowerPoint Open XML Slide Show (PPSX) files to take advantage of a Microsoft Office vulnerability.
Increasingly sophisticated malware strains are using SSL to encrypt their activity with malicious SSL-encrypted content more than doubling in the last six months according to a study from Zscaler ThreatLabZ.
Google claims new 'unverified app' warning will cut down on phishing attacks from within G Suite by giving users information on potentially dodgy apps and scripts.
The phishing attacks against Australian energy customers grew yesterday with Mailguard reporting an enormous number of phishing attempts made centered on fake Origin Energy bills.
Hyphens galore as cyber-criminals attempt to hide the web addresses of phishing sites on mobile phones with a lot of punctuation.
With the value of crypto-currencies like bitcoin continuing to climb, cyber-criminals are looking to expand the tricks they use to steal these virtual dollars.
People are now officially the strongest link in cyber-security and this people-centric approach demands that vendors make their tech easier to use, and organisations implement policies that people will choose to follow.
Rick McElroy discusses recent revelations around email phishing and why the sophistication of attacks is going to continue to increase.
Stu Sjouwerman explains what organisations need to do to protect themselves from phishing attacks and how to better educate and train employees.
New exploit kit taking the place of Angler and others as it rapidly evolves to target its victims.
Cyber-criminals are attempting to steal credentials from French companies and consumers, yet the campaign is falsely attributed to the Bank of France.
In Case You Missed It: Google & Facebook phished; Czechs win exercise; ATM theft; Netflix ransom snub; Bank domains spoofed
A new malware family has been discovered with belief that it has been in use for more than three years to target officials and organisations with ties to North Korea.
A Malwarebytes researcher on Monday discovered a new variant of the "Dokument.app" dropper that was recently found delivering OSX/Dok Mac malware capable of intercepting infected machines' HTTPS communications.
DomainTools discovers more than 300 fake websites fooling customers into thinking they're clicking on top UK bank websites.
Conventional anti-virus and sandboxing solutions are no longer effective defences against malicious email attachments, but relying upon employees doesn't work for companies either.
Schools, both those of higher education and local school districts, hold in one place all the types of data prized by hackers, health care information, student and employee PII, research and even payment card data.
Back in March, a Lithuanian man was arrested for duping two unnamed multinational internet companies via an email phishing attack.
IBM's X-Force Research Team has found that cyber-criminals follow Willie Sutton's old-school, analog advice on why to rob banks because "that is where the money is."
Authorities from seven Southeast Asian nations recently collaborated on an operation that exposed regional threats including malware, ransomware, DDoS attacks, and spam campaigns.
User's surprised by their surprise booking and re-accommodation, receive an email stating that the user's order has been confirmed.
The Callisto Group is said to behind a spear-phishing campaign in the UK intent on gathering intel.
In Case You Missed It: Chinese hack MSPs; Windows Server 2003 flaw; Phishing hits travellers; retraining graduates; OpIsrael hacktivists targeted.
Spear-phishing attacks aimed at placing cyber-espionage malware on government computers using an infected Word document are being blamed on about a dozen Saudi Arabian agencies.
Adam Vincent discusses why phishing attacks continue to dominate the cyber-security landscape, why companies are still falling for them and how attacker profiling can help protect against them.