The 2021 Verizon Data Breach Investigations Report (DBIR) provides valuable information on the threats facing organizations today. The DBIR is produced by Verizon with a collaboration of many security entities. The following is a summary of finding that relate to the human element of security.
With a COVID-influenced economy, job hunting has become very difficult, and as a result, more and more people are using LinkedIn as a tool to look for remote jobs or local jobs online. However, things might have become more dangerous because these job offers are now the target of cyber criminals.
According to the IBM X-Force Report, phishing remains one of the leading causes of data breaches outside of ransomware. K–12 education systems are not immune to this reality since elementary and secondary school networks contended with a record number of cybersecurity incidents during 2020.
A report in the Wall Street Journal on October 26th described incidences of election officials within the U.S. at the local level being sent suspicious emails which appear to be purposefully targeting them due to their position within their states.
n Sunday August 30th, 2020 CenturyLink suffered a major outage which affected numerous internet companies including Amazon, Twitter, Microsoft via Xbox Live, EA, Blizzard, Steam, Discord, Reddit, Hulu, NameCheap, OpenDNS, and many others including PhishingBox.
The developers behind the Google Chrome browser have announced in a blog post that they will begin testing a new way to help defend against the increasing threat of phishing attacks.
In a new report from the combined efforts of Arizona State University, PayPal, Google, and Samsung, researchers found that at least 7.42% of victims who visit phishing pages input their credentials resulting in compromised accounts and experience fraudulent transactions as a result.
In an effort to inform and defend customers, LastPass warned that there had been reports of a Phishing email that was being sent to users using the LastPass platform.
A new post by the Microsoft security team warns about a new type of phishing attack vector targeting users. Consent Phishing, as they refer to it as, targets users by asking for an egregious amount of permissions from Single-Sign-On allowing the bad actors to abuse the accounts they have been granted access to.
