Duo's Security Blog

NOVEMBER 20, 2023

This group of English-speaking threat actors are known for launching sophisticated campaigns that can bypass weak MFA implementations, leveraging tactics such as SIM swapping, adversary-in-the-middle (AiTM) techniques, and social engineering to gain unauthorized access to organizations’ sensitive data.

Threat Detection 138

Threat Detection Authentication Accountability Data breaches 138

Duo's Security Blog

OCTOBER 24, 2023

Be sure to tune into our webinar - Authenticate Further, Defend Faster with Higher Security from Duo – to learn more about ways to protect against MFA bypass attacks, credential theft and compromised third-party security. For example, an attacker might message a user pretending to be part of the organization’s security team.

Social Engineering 88

Social Engineering Education Authentication Engineering 88

Security Affairs

FEBRUARY 20, 2022

Scammers use to compromise legitimate business or personal email accounts through different means, such as social engineering or computer intrusion to conduct unauthorized transfers of funds. Crooks started using virtual meeting platforms due to the popularity they have reached during the pandemic. ” reads the FBI’s PSA.

Accountability 100

Accountability Social Engineering Scams Mobile 100

Security Boulevard

MARCH 19, 2021

Social engineering lures are a good example. Blog: 2020 – A Transformation Year in Cybersecurity On-Demand Webinar: Is Your Remote Workforce a Top Security Risk? . These are fake but realistic emails sent to employees about current events which try to get them to click a link. Request a Demo. Additional Resources. Featured: .

Cybersecurity 119

Cybersecurity CISO Social Engineering Technology 119

SecureWorld News

OCTOBER 4, 2021

Still, little was reported about the details of the cyber incident, including who the attackers are, how the cyberattack happened, and the social engineering methods used to make the email look official. Monadnock Ledger-Transcript , a local newspaper, provided an update about recouping the costs.

Insurance 98

Insurance Ransomware Social Engineering Cybercrime 98

CyberSecurity Insiders

APRIL 10, 2023

In the current digital landscape, identity security has gained paramount importance due to the growing cyber risks posed by phishing and social engineering attacks utilizing AI. Why is identity management and security important in 2023? “In Batch training for the Identity Management key players.

Identity Theft 105

Identity Theft Education Authentication Data breaches 105

SecureWorld News

AUGUST 12, 2024

A : Educating employees about phishing, social engineering, and safe online practices helps prevent human errors that can lead to security breaches. Attending webinars is also important for staying updated on the latest trends; SecureWorld has some great ones.

Cybersecurity 104

Cybersecurity Technology Mobile Government 104

SecureWorld News

OCTOBER 19, 2021

The malicious campaigns Charming Kitten are unleashing on unsuspecting victims makes use of superior social engineering, such as creating dummy accounts on Gmail that look realistic enough to trick users into clicking through. Users were instructed to activate an invitation to a (fake) webinar by logging in.

Phishing 97

Phishing Authentication Social Engineering Government 97

SecureWorld News

OCTOBER 27, 2021

Representation of each guest comes from the private, non-profit, and education sectors, so there is sure to be helpful advice for everyone who tunes into the webinar, which is currently available online here. I can go into my [saved] folders, and find our folder on social engineering. social media safety. Ransomware.

Cybersecurity 98

Cybersecurity Cybercrime Security Awareness Education 98

Webroot

FEBRUARY 11, 2021

As we mentioned in a previous blog , hackers come in many forms, but their methods can generally be classified into three distinct types of cybercriminals: The Impersonator – Hackers that pretend to be others, often using social engineering and human psychology to trick users.

Scams 119

Scams Phishing Firewall Social Engineering 119

Identity IQ

MAY 17, 2023

The 2022 Trends in Identity Report indicates identity thieves are getting better at using social engineering techniques to convince people to share personal, financial, and important business information. For more information, email webinar@idiq.com. View the full 2022 Trends in Identity Report here.

Identity Theft 66

Identity Theft Scams Education Data breaches 66

Security Boulevard

APRIL 28, 2021

Networks can also be easily breached by social engineering, password theft, or tainted USBs, as in the Stuxnet attack. . . Webinar: Analysis of the Florida Water Utility Cyberattack . Webinar: Florida Water Utility Attack Demonstration. Webinar: Runtime: The New Security Battleground. Additional Learning.

Energy and Utilities 72

Energy and Utilities Malware DDOS Internet 72

Responsible Cyber

JULY 13, 2024

Recognize and avoid social engineering scams by educating yourself on common tactics. Social Engineering Scams : Manipulative tactics are employed to deceive investors into divulging confidential information or making unwise investments. Note: Continuous education about common social engineering tactics is vital.

Cryptocurrency 52

Cryptocurrency Cyber Attacks Social Engineering Scams 52

eSecurity Planet

APRIL 22, 2022

Other cyber incidents are common, including phishing attacks , business email compromise, exploitation of cloud and software vulnerabilities , social engineering , third-party exposures, and more. It hosts Cybercrime Spotlight webinars on emerging cyber threats and the most effective controls to prevent them.

Cyber Insurance 121

Cyber Insurance Insurance Marketing Small Business 121

Security Boulevard

OCTOBER 4, 2024

This threat category encompasses a wide range of activities that attackers deploy when attempting to gain access to either information or services through exploiting human error or behaviour,” reads an ENISA statement.

Cybersecurity 69

Cybersecurity CISO Ransomware Technology 69

Duo's Security Blog

DECEMBER 19, 2024

While we tend to associate phishing emails more with our personal accounts, attacks targeting our work identities whether through socially engineered phishing, brute force, or another form, are very common. An email containing a QR code constructed from Unicode characters (defanged) identified by Cisco Talos.

Phishing 64

Phishing Authentication Social Engineering Passwords 64

NopSec

FEBRUARY 15, 2017

How Phishing Works: Social Engineering The term “phishing” is broadly defined as sending an email that falsely claims to be from a legitimate organization. All of them rely on social engineering, a term that describes methods of deception used to coerce a victim into giving up valuable information.

Phishing 40

Phishing Social Engineering Engineering Healthcare 40

Chicago CyberSecurity Training

JULY 1, 2023

Be sure to avoid passphrases that may include information that can be easily gathered about you via social engineering. Stay tuned for more valuable insights through our blog posts and webinars, designed to empower you in the ever-changing cybersecurity landscape. Visit us at SouthsideCHISolutions.com to learn more!

Cybersecurity 40

Cybersecurity Backups Social Engineering Passwords 40

Webroot

FEBRUARY 5, 2025

Check out our recent webinar where we discuss passkeys How do passkeys work? Reduced risk of social engineering Attackers cant trick users into revealing passkeys like they do with passwords. This means no more passwords to remember, reset, or leak in data breaches.

Authentication 60

Authentication Password Management Passwords Backups 60

SecureList

MAY 27, 2022

The attackers study their victims carefully and use the information they find to frame social engineering attacks. You can find the recording of the webinar here and a summary/Q&A here. When opened, this document eventually downloads a backdoor. zip”). Lazarus uses Trojanized DeFi app to deliver malware.

Phishing 133

Phishing Spyware Firmware Malware 133

LRQA Nettitude Labs

JULY 5, 2023

In addition to the topics below that you can expect to see reviewed and discussed in the forms of blog posts or webinars, LRQA Nettitude would also like to extend an open invitation for feedback and collaboration.

Artificial Intelligence 52

Artificial Intelligence Data privacy Social Engineering Risk 52

Hacker's King

OCTOBER 15, 2024

Subscribe to cybersecurity blogs, attend webinars, and take online courses to keep your knowledge current Network with Professionals Joining cybersecurity communities, attending industry events, and engaging in online discussions with professionals can provide insight into the field and help you find opportunities.

Cybersecurity 52

Cybersecurity Penetration Testing Risk Antivirus 52

NetSpi Executives

APRIL 27, 2024

Ransomware, a definition Ransomware is a set of malware technologies, hacking techniques, and social engineering tactics that cybercriminals use to cause harm, breach data, and render data unusable. Ransomware attackers get into a network in many ways: Social engineering. Unpatched exploits.

Ransomware 52

Ransomware Cyber Insurance Backups Insurance 52

Centraleyes

FEBRUARY 26, 2025

It serves as a warning to regularly backup company data and train every employee on how to identify phishing and social engineering attacks. Meanwhile, the UAE Banks Federation hosted a two-day cybersecurity webinar focused on best practices in data privacy and protection, particularly as hybrid work models introduce new risks.

Cybersecurity 52

Cybersecurity Banking Education Antivirus 52

NopSec

JULY 25, 2017

The on-demand webinar features a live demo of password self auditing. Click here to watch the demo. References Hashcat – [link] John the Ripper – [link] Impacket – [link] [link] [link] The post Password Cracking: Top Tools Hackers Use to Crack Passwords appeared first on NopSec.

Passwords 40

Passwords Penetration Testing Phishing Accountability 40

Hacker's King

OCTOBER 16, 2024

Follow industry blogs, join cybersecurity forums, and participate in webinars to stay ahead. Stay Informed As cybersecurity is a rapidly evolving field, staying updated on the latest trends, tools, and techniques is crucial. has a clear and promising answer.

Cybersecurity 52

Cybersecurity Education Cyber Attacks Network Security 52

NetSpi Executives

APRIL 27, 2024

Each type of penetration test focuses on a different target: Network penetration testing Network penetration testing , also called network security testing , focuses on internal and external networks, wireless endpoints and wireless networks, email phishing, and other types of social engineering. appeared first on NetSPI.

Penetration Testing 52

Penetration Testing Social Engineering Software Wireless 52

eSecurity Planet

MAY 28, 2024

Conduct user awareness training: Incorporate a focused training program into onboarding and workflow process so employees can learn about social engineering strategies, phishing risks, and cloud security best practices. Offer regular workshops: Provide monthly training, webinars, and seminars on cloud security.

Risk 71

Risk Cloud Migration DDOS Encryption 71

Digital Shadows

AUGUST 17, 2021

The social engineering aspect around phishing works because humans want to be helpful, informed, paid well, get stuff for free sometimes, and generally not end up on the wrong side of management. Unfortunately, aspects of really good social engineering prey on one or more of these human traits (or faults).

Phishing 52

Phishing Accountability Social Engineering Mobile 52

Webroot

OCTOBER 31, 2024

Steam the Webinar on demand HERE As we look back on the cybersecurity landscape of 2024, it’s clear that the world of digital threats continues to evolve at an alarming pace in parallel with AI.

Malware 108

Malware Ransomware Passwords Healthcare 108

Malwarebytes

MAY 7, 2023

Last week on Malwarebytes Labs: How to protect your small business from social engineering Microsoft: You're already using the last version of Windows 10 Is it OK to train an AI on your images, without permission? Upcoming webinar: Is EDR or MDR better for your business? Google Authenticator WILL get end-to-end encryption.

Small Business 91

Small Business Social Engineering Passwords Mobile 91

Jane Frankland

JANUARY 23, 2024

Cybercriminals often exploit cultural nuances, language, or social engineering techniques tailored to target specific ethnic groups. Then, sign up for e2e-assure ’s webinar – Choosing your MDR Provider: Boutique or Big Brand – if you’re looking for an MDR provider. It’s being held on February 21 at 11AM GMT. [1]

Threat Detection 162

Threat Detection Risk Social Engineering Cybersecurity 162

Duo's Security Blog

MAY 23, 2023

The answer, like most other cybersecurity-adjacent answers, lies in a combination of factors including social engineering , weak passwords, and other risky security moves or attacks. What to do when your credentials are compromised How are credentials compromised in the first place?

Authentication 144

Authentication Passwords Data breaches Phishing 144

CyberSecurity Insiders

MAY 19, 2023

ATO is often initiated by credential theft and can be done using social engineering techniques (phishing attacks) or by bombarding login pages with bot-based attempts. Phishing attacks Phishing attacks attempt to steal personal data such as login credentials, credit card information, or even money using social engineering techniques.

Phishing 109

Phishing Authentication Passwords Social Engineering 109

McAfee

MARCH 5, 2021

Evolving Threats and Techniques – Staying ahead of the latest malware remains a priority, but many modern attacks are emerging that use techniques like social engineering to exploit the features of cloud providers and mimic user behavior with legitimate credentials. Live Webinar. Take the Fastest Route to SASE with MVISION UCE.

Digital transformation 102

Digital transformation Architecture VPN Internet 102

SecureList

APRIL 27, 2022

You can find the recording of the webinar here and a summary/Q&A here. Contrary to reporting from other vendors, this wiper does not leverage the Isaac PRNG. On March 10, researchers from the Global Research and Analysis Team shared their insights into past and present cyberattacks in Ukraine. Final thoughts.

Malware 145

Malware Firmware Government Phishing 145

NopSec

DECEMBER 7, 2016

Compromised USB drives are a common attack vector, and one that requires vigilance in order to avoid a supply chain attack or an attack that exploits social engineering tactics. Check out NopSec’s recent 20-minute webinar on emerging threats to these vital sectors. We’re glad you asked.

Cyber threats 40

Cyber threats Ransomware Cyber Attacks Government 40