2022 and Account Security - Cyber Security Informer

5 predictions to help you focus your web app security resources in 2022

Tech Republic Security

NOVEMBER 17, 2021

This is the year business leaders will learn just how innovative online criminals have become, and it'll take rethinking how we perceive account security to fight it, says PerimeterX CTO Ido Safruti.

Account Security

Account Security Accountability

Key Fraud Attack Trends for 2022 and Beyond

Security Boulevard

JANUARY 31, 2022

As we brace for another year of fraud attacks and online abuse, insights into what motivates attackers to target businesses and how they bypass the latest fraud defense technologies can help them elevate their defenses In 2021, account security was one of the biggest challenges for […].

Account Security

Account Security Accountability Technology

LastPass: ‘Horse Gone Barn Bolted’ is Strong Password

Krebs on Security

SEPTEMBER 22, 2023

LastPass says the changes are needed to ensure all customers are protected by their latest security improvements. But critics say the move is little more than a public relations stunt that will do nothing to help countless early adopters whose password vaults were exposed in a 2022 breach at LastPass. ”

Passwords

Passwords Encryption Password Management Cryptocurrency

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

It’s Still Easy for Anyone to Become You at Experian

Krebs on Security

NOVEMBER 11, 2023

In the summer of 2022, KrebsOnSecurity documented the plight of several readers who had their accounts at big-three consumer credit reporting bureau Experian hijacked after identity thieves simply re-registered the accounts using a different email address. 9, 2022 and Dec.

Accountability

Accountability Authentication Passwords Identity Theft

Understanding MFA Fatigue: Why Cybercriminals Are Exploiting Human Behaviour

IT Security Guru

FEBRUARY 25, 2025

For instance, in 2022, Uber experienced a significant security breach attributed to MFA fatigue. Cyber crooks often bank on organisations thinking of MFA as a silver bullet for account security, but it isnt. MFA will always be a cornerstone of account security, but it is not a standalone solution.

Social Engineering

Social Engineering Authentication Risk Accountability

Lessons Learned from a High-Stakes Data Breach

SecureWorld News

NOVEMBER 11, 2024

Fast forward to 2022: after years of investigation, Sullivan was convicted of obstruction of justice and concealing a felony. He became one of the first executives to face criminal charges for mishandling a data breach. Key takeaways The Uber breach highlights some critical lessons for cybersecurity professionals.

Data breaches

Data breaches Accountability Cybersecurity Account Security

Hackers stole over $250,000 in Ethereum from Bored Ape Yacht Club

Security Affairs

JUNE 5, 2022

In the attack, the EOA related to the phishing site was identified as EOA 0x1079061D37f7F3FD3295E4aAd02EcE4a3f20DE2d OpenSea account (Now blocked). — Bored Ape Yacht Club (@BoredApeYC) June 4, 2022. At this time it is unclear how the attackers have hacked the community manager’s account.

Phishing

Phishing Hacking Accountability Scams

MailChimp breached, intruders conducted phishing attacks against crypto customers

Security Affairs

APRIL 4, 2022

pic.twitter.com/BQSB2uV1JW — Life in DeFi (@lifeindefi) April 3, 2022. 1/ — Trezor (@Trezor) April 3, 2022. A statement shared by Mailchimp CISO Siobhan Smyth with TechCrunch revealed that the company discovered the security breach on March 26. You may want to warn everyone.

Phishing

Phishing Data breaches Cryptocurrency Social Engineering

Arkose Labs Recognized as Winter 2022 G2 Leader in Fraud Detection

CyberSecurity Insiders

JANUARY 24, 2022

SAN FRANCISCO–( BUSINESS WIRE )– Arkose Labs , the global leader in fraud deterrence and account security, today announced it has been named a Leader in G2’s Winter 2022 Fraud Detection Grid ® and a High Performer in their Enterprise Fraud Detection Grid ®.

Marketing

Marketing Authentication Account Security Software

Darwinium upgrades its payment fraud protection platform

CSO Magazine

APRIL 19, 2023

Use cases for the Darwinium platform include account security, scam detection, account takeover, fraudulent new accounts, synthetic identities, and bot intelligence. In 2022, a study by Statista and Juniper Research estimated e-commerce losses to online payment fraud of $41 billion globally.

B2C

B2C eCommerce Scams Cybercrime

Google Cybersecurity Action Team Threat Horizons Report #8 Is Out!

Anton on Security

NOVEMBER 2, 2023

src: TH8 report “In the Q2 2022 Threat Horizons Report, we highlight that a disproportionate percentage of attackers opportunistically use coin mining across Cloud products and alter their tactics to evade discovery. as usual, shocking but not surprising.

Cybersecurity

Cybersecurity Healthcare Account Security Ransomware

Discord Shame channel goes phishing

Malwarebytes

JULY 6, 2022

vtuber (@puppygooose) July 3, 2022. Tips to keep your Discord account secure. Should you land on a regular phishing page and hand over login details, the attacker will still need your 2FA code to do anything with your account. url] check #shame and youll see. anyways until you explain what happened im blocking you.

Phishing

Phishing Accountability Scams Backups

Reducing the Risk of Buy Now Pay Later Fraud

Security Boulevard

JUNE 3, 2022

Buzzing with over 4,000 attendees and 250 exhibitors, the environment at Fintech Nexus 2022, one of America’s biggest finance events, was electric. The post Reducing the Risk of Buy Now Pay Later Fraud appeared first on Security Boulevard.

Risk

Risk Financial Services Accountability Account Security

A massive phishing campaign using QR codes targets the energy sector

Security Affairs

AUGUST 16, 2023

The content of the message attempt to trick the recipient into scanning the code to verify their account. “Email lures came in the form of updating account security surrounding 2FA, MFA, and general account security. The emails urge the recipient to complete the procedure in 2-3 days.

Phishing

Phishing Energy and Utilities Insurance Manufacturing

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs

APRIL 6, 2023

ARCHIPELAGO “browser-in-the-browser” phishing page The ARCHIPELAGO group has shifted its phishing tactics over time to avoid detection, the attackers use phishing messages posing as Google account security alerts.

Phishing

Phishing Media Passwords Malware

Final Fantasy 14 players targeted by QR code phishing

Malwarebytes

AUGUST 31, 2022

Zack/"Lily") (@LilyBlossoming) August 29, 2022. What waits for them is a screenshot of a faked Tweet from the official Final Fantasy 14 account. What waits for them is a screenshot of a faked Tweet from the official Final Fantasy 14 account. hollownozuchi) August 29, 2022. — TheBlossomingLily?

Phishing

Phishing Scams Accountability Passwords

Ransomware gang hits 49ers’ network before Super Bowl kick off

Malwarebytes

FEBRUARY 14, 2022

infosec #cybersecurity #threatintel #cyber #NFL pic.twitter.com/tl7OWM2Aqf — CyberKnow (@Cyberknow20) February 12, 2022. On the eve of the #SuperBowl the #49ers get posted as a #Blackbyte #ransomware victim. Smart marketing tbh.

Ransomware

Ransomware Backups Encryption InfoSec

Google Cybersecurity Action Team Threat Horizons Report #8 Is Out! [Medium Backup]

Security Boulevard

NOVEMBER 3, 2023

src: TH8 report “In the Q2 2022 Threat Horizons Report, we highlight that a disproportionate percentage of attackers opportunistically use coin mining across Cloud products and alter their tactics to evade discovery. as usual, shocking but not surprising.

Backups

Backups Cybersecurity Healthcare Account Security

Class Action Targets Experian Over Account Security

Krebs on Security

AUGUST 5, 2022

The legal filing cites liberally from an investigation KrebsOnSecurity published in July, which found that identity thieves were able to assume control over existing Experian accounts simply by signing up for new accounts using the victim’s personal information and a different email address.

Accountability

Accountability Account Security Computers and Electronics Passwords

Four ways to stay ahead of the AI fraud curve

SC Magazine

APRIL 7, 2021

As cybercriminals take advantage of new technologies faster than security defenses can combat them, it’s critical for enterprises to secure ML systems and implement AI-powered solutions to recognize and halt attacks. Secure and manage AI to prevent malfunctions. Robert Prigge, chief executive officer, Jumio.

Authentication

Authentication Digital transformation Accountability Technology

Keeper vs Bitwarden (2024): Benefits & Features Compared

eSecurity Planet

JUNE 20, 2024

Bitwarden has a page about its audits and compliance posture where it lists recent reports, including multiple ones for 2021, 2022, and 2023. Types of reports include web app and desktop app security assessments, SOC 2 and SOC 3, and network security assessments. Monthly Pricing (Billed Annually) • Teams: $19.95

Password Management

Password Management Passwords Authentication Accountability

Lamborghini Carjackers Lured by $243M Cyberheist

Krebs on Security

OCTOBER 9, 2024

” A November 2022 story at patch.com quoted Veer Chetal (class of 2024) crediting the Harvard program with his decision to pursue a career in law. The Corvette that Diaz was sitting in when he was shot in 2022. In 2022, Borrero was arrested in Miami for aggravated assault with a deadly weapon. Image: NBC 6, South Florida.

Cryptocurrency

Cryptocurrency Social Engineering Accountability Mobile

Loose-lipped neural networks and lazy scammers

SecureList

OCTOBER 31, 2024

On another scam site, this time targeting Coinbase users, we see text written by a fresher model: This content is entirely hypothetical, and as of my last update in January 2022, Coinbase does not have a browser extension specifically for its wallet. Lastly, one more page in this campaign, hosted at webflow[.]io,

Cryptocurrency

Cryptocurrency Scams Phishing Technology

Updated: Data of 400 Million Twitter users up for sale

Security Affairs

DECEMBER 25, 2022

pic.twitter.com/wQU5LLQeE1 — Hudson Rock (@RockHudsonRock) December 24, 2022. Update December 26, 2022. The private database contains devastating amounts of information including emails and phone numbers of high profile users such as AOC, Kevin O'Leary, Vitalik Buterin & more (1/2). ” Gal explained.

Data breaches

Data breaches Accountability Advertising Hacking

Cyber Security Informer

5 predictions to help you focus your web app security resources in 2022

Key Fraud Attack Trends for 2022 and Beyond

Webinars

Trending Sources

LastPass: ‘Horse Gone Barn Bolted’ is Strong Password

Webinars

It’s Still Easy for Anyone to Become You at Experian

Understanding MFA Fatigue: Why Cybercriminals Are Exploiting Human Behaviour

Lessons Learned from a High-Stakes Data Breach

Hackers stole over $250,000 in Ethereum from Bored Ape Yacht Club

MailChimp breached, intruders conducted phishing attacks against crypto customers

Arkose Labs Recognized as Winter 2022 G2 Leader in Fraud Detection

Darwinium upgrades its payment fraud protection platform

Google Cybersecurity Action Team Threat Horizons Report #8 Is Out!

Discord Shame channel goes phishing

Reducing the Risk of Buy Now Pay Later Fraud

A massive phishing campaign using QR codes targets the energy sector

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Final Fantasy 14 players targeted by QR code phishing

Ransomware gang hits 49ers’ network before Super Bowl kick off

Google Cybersecurity Action Team Threat Horizons Report #8 Is Out! [Medium Backup]

Class Action Targets Experian Over Account Security

Four ways to stay ahead of the AI fraud curve

Keeper vs Bitwarden (2024): Benefits & Features Compared

Lamborghini Carjackers Lured by $243M Cyberheist

Loose-lipped neural networks and lazy scammers

Updated: Data of 400 Million Twitter users up for sale

Stay Connected