Threat actors have set up over 540 domains that closely resemble that of Walmart and a number of career, dating, and movie and TV websites, a security professional at DomainTools discovered. So far only 181 of the spoofed domains have been blacklisted, but this number will likely increase in the

Researchers with Proofpoint have uncovered various spearphishing campaigns that aim to infect US utility companies with a new kind of remote access trojan (RAT) dubbed LookBack. The spear phishing campaigns targeted three US utility firms between July 19 and 25. The researchers think the campaigns “may be the work of

Between November 2017 to April 2019, threat actors carried out 3.5 billion malicious login attempts as part of credential stuffing attacks, in which credentials exposed in a data breach at one firm are used to gain access to accounts at another company. Akamai also identified close to 200,000 phishing domains

A new study conducted at the University of Plymouth underscores that spam filters in popular email providers are highly ineffective against phishing attacks. The researchers found that 75% of phishing emails without malicious links and 64% of those with links end up in the inbox of potential victims, while a

While 63% of cybersecurity professionals believe that security at their organization has improved in the past year, the vast majority (85%) of organizations suffered an email-borne cyber incident last year, a recent survey by Barracuda Networks shows. In addition, one in two respondents reported rising stress levels. Targeted phishing attacks, known

Global losses to cybercrime total $1.5 trillion per year, which amounts to $2.9 million per minute, a new report by RiskIQ shows. Some of the largest companies are losing $25 each minute due to security breaches. Phishing campaigns accounts for losses of $17,700 per minute and ransomware attacks are expected to

New research by SonicWall indicates that threat actors are increasingly abandoning traditional attacks like malware and phishing campaigns in favor of more sophisticated, encrypted attacks. While malware campaigns declined by 20% and phishing by 18% this year, encrypted attacks have surged by 76%. Ransomware increased by 15%, in large part

A new global survey conducted by CyberArk indicates that half of organizations have little confidence in their cyber defenses and actually believe that threat actors can break into their networks whenever they want to. When it comes to threats to their critical assets, organizations are mostly worried about hackers (78%),

A new survey by GreatHorn sheds light on the massive threat that email-based attacks pose to organizations. It shows that 22% of organizations experienced a data breach that started with an email-based attack in the past three months alone. About one in two professionals receive malicious emails on a daily

FireEye researchers recently uncovered a new phishing campaign by Iranian state-backed cyber espionage group APT34 (aka OilRig or Greenbug) that took advantage of LinkedIn. Masquerading as a Cambridge University lecturer on LinkedIn, the threat actors invited people to connect with them. If a victim accepted the connection, the hackers would