Over the past few years, a series of privacy scandals including the Facebook/Cambridge Analytica scandal have spurred an international push for better privacy laws. In some parts of the world, policymakers have responded to this movement by introducing new data protection bills, such as the EU General Data Protection Regulation

The 24th volume of Microsoft’s Security Intelligence Report shows that phishing surged in 2018. The detected 250% increase in phishing attacks last year confirms similar findings of other recent studies. The research also confirmed that threat actors are moving away from ransomware and malicious software (malware) in general, as malware

Cyberattacks involving the psychological manipulation of targeted users, which is known as social engineering, have surged in 2018, a new Trend Micro report has found. According to the report, the number of detected phishing URLs increased by 269% compared to the year before. The finding is in line with a

A new Webroot report provides valuable insights into the threat landscape. The report contains various striking findings, including the fact that 2 out of 5 (40%) malicious URLs can be found on otherwise benign web pages, which indicates that cybercriminals often succeed in injecting legitimate websites with bad links and

The 2019 IBM X-Force Threat Intelligence Index shows that cybercriminals are moving away from ransomware and malware in general because a growing awareness of these attacks among organizations, in combination with increased threat mitigation efforts, have made malware-based attacks less lucrative. Cryptojacking attacks, in which threat actors hijack the processing

Two new research reports indicate that threat actors mostly rely on traditional techniques, including phishing and credential stuffing, to target organizations. Trend Micro’s yearly security report for 2018 shows that the company detected 82% more phishing URLs in 2018 than it did the year before. The other report, a Rapid7

A new report by Group-IB indicates that cyber attacks on financial institutions can create a domino-effect when threat actors use their foothold on a breached network to infiltrate the systems of connected organizations in other parts of the world. Group-IB has seen various real world instances of these kinds of chain

Akamai researchers have uncovered a new and unique phishing campaign. As in all phishing campaigns, the threat actors are out to obtain sensitive information from victims. In this case, they want to trick victims into filling out their Facebook and Google login credentials on a fake website. However, instead of creating

According to Vade Secure’s latest phishing report, the most impersonated brand in the final quarter of last year was Microsoft (again). The other brands making up the top 10 were Netflix, Paypal, Bank of America, Chase, DHL, Facebook, Docusign, Linkedin and Dropbox. Phishing messages pretending to come from Netflix increased

Research by Check Point has uncovered serious vulnerabilities in the user login process of Fortnite, the immensely popular online battle royale game. The flaws, which have recently been patched, could enable attackers to manipulate the login process by means of a phishing link, in order to steal users’ login credentials