Phishing
Phishing | News, how-tos, features, reviews, and videos
Tabletop exercises: Six sample scenarios
Tabletop exercises are a low-stress, high-impact way to test your plans for handling a crisis. Here are some tips for getting the most out of the process, plus six scenarios you can use to start your journey.
5 biggest healthcare security threats for 2021
Healthcare organizations can expect ransomware, botnets, cloud misconfigurations, web application attacks, and phishing to be their top risks.
4 steps to prevent spear phishing
Your users are in the crosshairs of the best attackers out there. Follow these steps to better protect them.
What are phishing kits? Web components of phishing attacks explained
A phishing kit is the back-end to a phishing attack. It's the final step in most cases, where the criminal has replicated a known brand or organization.
17 cyber insurance application questions you'll need to answer
Recent high-profile security incidents have tightened requirements to qualify for cyber insurance. These are the tougher questions insurance carriers are now asking.
5 best practices for conducting ethical and effective phishing tests
Phishing tests have become a popular feature of cybersecurity training programs, but they should follow ethical frameworks to ensure they don’t do more harm than good.
![A fishing lure with multiple hooks baits a binary stream. [fraud / phishing / social engineering]](https://images.idgesg.net/images/article/2020/09/fishing_bait_lure_hooks_by_curaga_gettyimages-91736452_binary_streams_by_cofotoisme_gettyimages-1199213090_phishing_social_engineering_bait_and_switch_fraud_2400x1600-100860144-small.3x2.jpg?auto=webp&quality=85,70)
7 new social engineering tactics threat actors are using now
Old tactics in new packages lead the list of current social engineering attacks. Experts provide real-world examples.
Top cybercrime gangs use targeted fake job offers to deploy stealthy backdoor
The Golden Chickens cybercriminal gang is believed to sell its more_eggs backdoor for spear phishing campaigns executed using information gleaned from victims' LinkedIn profiles.
Sponsor Podcast in partnership with Microsoft
Episode 4: Reduce SOC burnout
Episode 4 - Listen to the podcast to learn more about the expanding threat landscape and how security leaders can reduce SOC burnout and enable security teams to be proactive and preventive threat hunters with a modern threat...
How to prepare for an effective phishing attack simulation
Here's what users need to know about phishing attacks before you send out a test email.
Sponsor Podcast in partnership with Microsoft
Episode 2: Empowering employees to be secure and productive
Episode 2: When it comes to protecting your business, security is a team sport. Criminal hackers –increasingly sophisticated and persistent – are playing offense, trying to find weak spots to breach an organization. And everyone in...
14 tips to prevent business email compromise
Criminals fool victims into clicking on malicious links or assisting in financial theft by sending emails that mimic real senders and real companies. Here's how to stop BEC.
8 types of phishing attacks and how to identify them
Phishing comes in many forms, from spear phishing, whaling and business-email compromise to clone phishing, vishing and snowshoeing. Here's how to recognize each type of phishing attack.
CISO Q&A: How AvidXchange manages COVID-related threats and risk
Like many CISOs, Christina Quaine's team is supporting the payment processor's work-at-home employees and managing internal pandemic-specific risks. It also helps its mid-market customers meet new security challenges.
What is pretexting? Definition, examples and prevention
Pretexting is form of social engineering in which an attacker comes up with a story to convince a victim to give up valuable information or access to a service or system.
6 hard truths security pros must learn to live with
Crafty hackers, unwitting users, a relentless workload — working in IT security is all about accepting this as business as usual and pushing forward anyway.
How Abnormal Security combats business email compromise
Abnormal Security analyzes work relationships, language patterns to spot compromised accounts and stop them from sending mail.
Vishing explained: How voice phishing attacks scam victims
Vishing (voice phishing) is a form of attack that attempts to trick victims into giving up sensitive personal information over the phone.
8 ways attackers are exploiting the COVID-19 crisis
Cybercriminals are taking advantage of the coronavirus crisis to spread malware, disrupt operations, sow doubt and make a quick buck.
