Security Boulevard

JUNE 5, 2022

The post DuckDuckGo Browser Allows Microsoft Trackers, Stolen Verizon Employee Database, Attacking Powered Off iPhones appeared first on The Shared Security Show.

Social Engineering 115

Social Engineering Mobile Engineering Data privacy 115

Jane Frankland

FEBRUARY 7, 2025

The report explores major findings and this year it put a spotlight on the complexity of the cybersecurity landscape, which is intensified by geopolitical tensions, emerging technologies, supply chain interdependencies, and cybercrime sophistication. Nation-states and geopolitical tensions are increasingly fuelling modern cyber threats.

Cyber Risk 130

Cyber Risk CISO Risk Encryption 130

Security Boulevard

JUNE 17, 2021

Ira Winkler, CISO at Skyline Technology Solutions, recounts his amazing journey from wannabe astronaut to NSA intelligence analyst, social engineer, systems hacker and author, and some of the crazy things that happened along the way - check it out. The post CISO Stories Podcast: So You Want to be a Cyber Spy?

CISO 94

CISO Social Engineering Engineering Technology 94

eSecurity Planet

APRIL 23, 2021

It requires some baseline industry knowledge, but it’s a great way to stay on top of InfoSec current events. Since 2007 (before podcasting in general had really taken off), Patrick Gray and his co-host Adam Boileau have covered a wide range of InfoSec topics with insight from fellow industry leaders. Malicious Life.

Cybersecurity 144

Cybersecurity InfoSec Cybercrime Hacking 144

Krebs on Security

DECEMBER 29, 2022

I seem to be doing most of that activity now on Mastodon , which appears to have absorbed most of the infosec refugees from Twitter, and in any case is proving to be a far more useful, civil and constructive place to post such things. For a variety of reasons, I will no longer be sharing these updates on Twitter.

Cryptocurrency 286

Cryptocurrency Cybercrime Computers and Electronics Scams 286

Security Through Education

FEBRUARY 3, 2021

I am currently a full-time social engineering pentesting professional with Social-Engineer, LLC (SECOM). The Social Engineering Framework defines vishing as the “practice of eliciting information or attempting to influence action over the telephone.” I’m not originally from the InfoSec world.

Social Engineering 98

Social Engineering Engineering InfoSec Education 98

Duo's Security Blog

OCTOBER 6, 2023

Threat actors have dramatically escalated their attacks – targeting security controls like multi-factor authentication (MFA), conducting wily social engineering attacks and extorting businesses large and small with ransomware. Since then, teams have had years to adjust to this new reality, yet the attackers have as well.

Authentication 144

Authentication Risk Social Engineering InfoSec 144

Security Through Education

JANUARY 18, 2023

The truth is technology has grown at an exponential rate and so has cybercrime. Most if not, all social engineering attacks will attempt to trigger some emotion such as urgency, fear, greed, or curiosity. At Social-Engineer LLC, our purpose is to bring education and awareness to all users of technology.

Cybersecurity 98

Cybersecurity Social Engineering Scams IoT 98

SC Magazine

MAY 17, 2021

5G is among the technologies that researchers predict will have a big impact on the security landscape in the next decade. The Project assumes that consumers will access information with technologies designed for more and more immediacy, and less and less effort. AI could impact more than just social engineering.

Manufacturing 95

Manufacturing IoT Technology Artificial Intelligence 95

SC Magazine

MAY 1, 2021

Brian Levine is senior director of product security at Axway, a global security engineering organization delivering training, tools, processes and DevSecOps practices for secure applications and cloud services to the enterprise market. John Bruggeman is chief technology officer at Hebrew Union College – Jewish Institute of Religion.

Computers and Electronics 126

Computers and Electronics Technology Information Security Education 126

Herjavec Group

MAY 19, 2022

Conduct regular social engineering tests on your employees to actively demonstrate where improvements need to be made. Implement the right tools, processes, and technology – based on the needs of your organization. Segment your internal corporate networks to isolate any malware infections that may arise.

Penetration Testing 98

Penetration Testing Social Engineering Cybercrime InfoSec 98

The Security Ledger

MAY 16, 2024

In this Spotlight Podcast, host Paul Roberts talks with Chris Walcutt, the CSO of DirectDefense about the rising cyber threats facing operational technology (OT) and how organizations that manage OT - including critical infrastructure owners can best manage increased cyber risks to OT environments. Read the whole entry. »

CSO 59

CSO Risk Energy and Utilities Social Engineering 59

The Falcon's View

AUGUST 29, 2017

For those unfamiliar with Fogg's work, he started out doing research on Persuasive Technology back in the 90s, which has become the basis for most modern uses of technology to influence people (for example, use of Facebook user data to influence the 2016 US Presidential Election). Well, low-and-behold, it already exists!

Information Security 45

Information Security InfoSec Social Engineering Security Awareness 45

SC Magazine

JUNE 16, 2021

While being “classic” and “timeless” might work in other industries, information security (Infosec) must constantly guard against resting on laurels when it comes to strategies and solutions. The question is whether the concept is still relevant, or if a new one is needed that better matches today’s technological capabilities.

Technology 53

Technology Artificial Intelligence Social Engineering Cybercrime 53

SecureWorld News

JUNE 2, 2024

Another emerging trend is the use of technology to identify and mitigate bias in hiring and promotion processes. By automating certain tasks and reducing the reliance on human judgment, these technologies can help minimize the impact of unconscious bias.

Cybersecurity 106

Cybersecurity Education Artificial Intelligence Social Engineering 106

SecureWorld News

OCTOBER 19, 2023

Too many folks focus on the technology as opposed to the people or process. Economic effects, including inflationary pressures, have had a broad impact across the InfoSec landscape," Smeaton said. Reanna Schultz is a cybersecurity professional and frequent SecureWorld speaker whose day job is as Team Leader of InfoSec at Garmin.

Cybersecurity 105

Cybersecurity CISO Education Phishing 105

CyberSecurity Insiders

DECEMBER 4, 2021

Of the 13 engineers who commented for this publication, none felt that the marketing associated with the products they were working on was completely accurate with respect to advertised capabilities. The paper explores those areas as well as malicious uses of ML and DL, specifically in social engineering and phishing.

Cybersecurity 52

Cybersecurity Education Artificial Intelligence Engineering 52

SC Magazine

MAY 20, 2021

Social engineering, phishing scams, ransomware, DDoS attacks , and software vulnerabilities are just some of the threats facing overloaded security professionals with limited budgets. Bear in mind that SOAR requires a mix of technologies and tools that deliver the capabilities the infosec team requires.

Social Engineering 73

Social Engineering Internet Internet InfoSec 73

Security Boulevard

NOVEMBER 14, 2021

Details on the Robinhood data breach (apparently caused by a social engineering attack) affecting approximately 7 million customers, and a discussion about surveillance and privacy concerns from a 600-hour leak of Dallas Police Department helicopter footage. ** Links mentioned on the show ** Robinhood Trading App Suffers Data Breach Exposing 7 Million (..)

Data breaches 59

Data breaches Social Engineering Surveillance Engineering 59

Digital Shadows

OCTOBER 23, 2024

The attacker gained initial access to two employee accounts by carrying out social engineering attacks on the organization’s help desk twice. Leveraging its English proficiency, the collective uses social engineering for initial access. Within six hours, the attacker began encrypting the organization’s systems.

Social Engineering 52

Social Engineering Engineering Accountability Backups 52

Malwarebytes

DECEMBER 11, 2022

Whether those compromises specifically were via some additional form of social engineering, we’ll likely never know. Amazon decided to trial ad technology which displays ads in Twitch streams, but the ads are only visible to certain people. Invisible ads for thee but not for me.

Scams 92

Scams Social Engineering Engineering Accountability 92

Security Boulevard

MAY 19, 2024

In episode 330 Tom, Scott, and Kevin discuss the new features for iPhones and Android phones designed to warn users about secret trackers, possibly aiding in identifying stalkers.

Data breaches 64

Data breaches Technology Social Engineering Data privacy 64

NopSec

FEBRUARY 9, 2017

Based on current trends, NopSec has released its latest report on the 5 biggest cyber threats we expect to see this year: nation-state cyber attacks, ransomware, DDoS attacks , the Internet of Things, and social engineering & human error. 2017 will see major advancements in technology. For a preview, read on.

Cybersecurity 40

Cybersecurity DDOS IoT Social Engineering 40

eSecurity Planet

MAY 5, 2021

Breach and attack simulation (BAS) is a relatively new IT security technology that can automatically spot vulnerabilities in an organization’s cyber defenses, akin to continuous, automated penetration testing. DXC Technology. DXC Technology. SafeBreach holds multiple patents and awards for their BAS technology.

Penetration Testing 67

Penetration Testing Risk Technology Marketing 67

Security Boulevard

MARCH 23, 2025

In this special episode of the Shared Security Podcast, join Tom Eston and Dan DeCloss, CTO and founder of PlexTrac, as they discuss the challenges of data overload in vulnerability remediation. Discover how PlexTrac addresses these issues by integrating various data sources, providing customized risk scoring, and enhancing remediation workflows.

Risk 52

Risk Penetration Testing Social Engineering Data privacy 52

Security Boulevard

JANUARY 10, 2022

A phone scam targeting psychologists reveals that even professionals can become victims, stolen multi-million-dollar NFT’s results in a “all my apes gone” plea for help, and details on a skimmer supply chain attack on more than 100 real estate websites. ** Links mentioned on the show ** The Phone Scam That Targets Psychologists [link] Thieves […].

Scams 104

Scams Social Engineering Engineering InfoSec 104

Security Boulevard

MARCH 1, 2023

The campaign uses consistent maritime-related social engineering lures in spearphishing emails almost certainly targeting the maritime industry. The Campaign is Likely Conducted by a Single Threat Cluster EclecticIQ analysts assess that the campaign is likely conducted by a single related threat cluster.

Phishing 75

Phishing Social Engineering Ransomware Encryption 75

Security Boulevard

MARCH 27, 2022

The LAPSUS$ hacking group has claimed to have hacked both Microsoft and Okta, details about a novel phishing technique called a browser-in-the-browser (BitB) attack, and how a popular software package that has 1.1

Phishing 98

Phishing Software Hacking Social Engineering 98

Herjavec Group

DECEMBER 15, 2021

Threat actors have developed social engineering approaches that leverage the uncertainty and chaos of the pandemic in order to deliver their malicious software. When it comes to cyber risks, the most up-to-date cybersecurity technology or regimented program doesn’t make an organization immune to an attack.

Cybersecurity 52

Cybersecurity Digital transformation Ransomware Cyber Risk 52

Security Boulevard

JULY 25, 2022

In this episode learn all about the world of corporate spying from someone who was a corporate spy and actually wrote a book on it! Robert Kerbeck author of “RUSE: Lying the American Dream from Hollywood to Wall Street” joins us to discuss his fascinating career as a corporate spy, life as a struggling actor, […].

Social Engineering 80

Social Engineering Data privacy Engineering InfoSec 80

Security Boulevard

JULY 14, 2024

In episode 338, we discuss the recent breach of the two-factor authentication provider Authy and its implications for users. We also explore a massive password list leak titled ‘Rock You 2024’ that has surfaced online.

Passwords 72

Passwords Authentication Social Engineering Data privacy 72

Security Boulevard

JANUARY 21, 2024

Then they switch to the best practices to prevent social media account takeovers, highlighting […] The post The World of Scambaiting, Preventing Social Media Account Takeovers, Network Wrenches Hacked appeared first on Shared Security Podcast.

Media 78

Media Accountability Hacking Scams 78

Security Boulevard

SEPTEMBER 10, 2023

In this episode we discuss the FBI’s remarkable takedown of the Qakbot botnet, a saga involving ransomware, cryptocurrency, and the FBI pushing an uninstaller to thousands of victim PCs. Next, we explore how a major U.S. energy organization fell victim to a QR code phishing attack, highlighting the ever-evolving tactics used by attackers.

Phishing 75

Phishing Cryptocurrency Ransomware Social Engineering 75

ForAllSecure

APRIL 7, 2021

You’d think that having an amazing resume, a couple of bug bounties, or a CTF win would land you that dream infosec job. There's a serious shortage of InfoSec professionals. I've mentioned before but InfoSec Twitter is a valuable resource. For many, though, that isn’t true.

Hacking 40

Hacking InfoSec Cybersecurity Engineering 40

ForAllSecure

APRIL 7, 2021

You’d think that having an amazing resume, a couple of bug bounties, or a CTF win would land you that dream infosec job. There's a serious shortage of InfoSec professionals. I've mentioned before but InfoSec Twitter is a valuable resource. For many, though, that isn’t true.

Hacking 40

Hacking InfoSec Cybersecurity Engineering 40

Security Boulevard

SEPTEMBER 15, 2024

In episode 346, we discuss new AI-driven voicemail scams that sound convincingly real and how to identify them. We also explore recent research on the privacy concerns surrounding donations to political parties through their websites.

Scams 64

Scams Social Engineering Data privacy Engineering 64

Security Boulevard

APRIL 7, 2024

Episode 324 features discussions on a significant AT&T data breach affecting 73 million customers and a sophisticated thread jacking attack targeting a journalist.

Data breaches 69

Data breaches Accountability Social Engineering Data privacy 69