Social Engineering
Social Engineering | News, how-tos, features, reviews, and videos
The three most important ways to defend against security threats
Patching, security training programs and password management will thwart attacks more effectively than anything else. You're already doing them. Here's how to do them better.
Doctored Jim Acosta video shows why fakes don’t need to be deep to be dangerous
White House promotion of an allegedly doctored press conference video shows how "shallow fakes" can manipulate opinion.
Cyber security relics: 4 older technologies still plaguing the infosec world
Understanding the issues of the past can help us be better equipped to deal with seemingly new issues in the present.
Using social media for authentication: 3 pitfalls to avoid
Logging into business systems with social accounts comes with certain risks. Here's what you need to know.
Scammers pose as CNN's Wolf Blitzer, target security professionals
Here's an interesting, if not outright comical, story for those of you just coming back to work after a long Labor Day weekend. Scammers are pretending to be a well-known CNN anchor and offering serious cash to anyone looking to be a...
10 topics every security training program should cover
A thorough end-user education program is a necessary weapon in the battle to protect your perimeter. These 10 topics are the baseline of what to include in an awareness training program.
China’s MSS using LinkedIn against the U.S.
The head of the U.S. National Counterintelligence and Security Center says China's MSS is using social networks, specifically LinkedIn, to target, access, and recruit U.S. sources.
Talking phishing campaigns with @PhishingAI's Jeremy Richards | Salted Hash, Ep. 42
All this week, while we’re on location in Las Vegas, Salted Hash has been discussing phishing and the impact it has had on the public. Today, we’re getting an insider view on how @PhishingAI operates, and learning about a recent...
Inside Dropbox and Microsoft Office phishing attacks | Salted Hash, Ep. SC03
Today on Salted Hash, we're going to look at a phishing attack that targeted me directly. It's got a few interesting elements, including a weak attempt to spoof an HTTPS connection, and a sort of hybrid lure, which starts as Dropbox...
What are phishing kits? Web components of phishing attacks explained
A phishing kit is the back-end to a phishing attack. It's the final step in most cases, where the criminal has replicated a known brand or organization.
C-suite is a weak link when it comes to email-based attacks
Phishing and impersonation attacks are up, and the C-suite is the weak link in email-borne attacks.
Stop training your employees to fall for phishing attacks
Training your employees how to recognize and avoid phishing only works if trusted emails don’t look the same as criminals'.
How elections are hacked via social media profiling
What to expect in the 2018 midterm elections and how malvertising tactics will be used to target voters.
David Jewberg — social engineering the Russia conversation
The David Jewberg persona trolled Russian and Ukrainian media. The question remains: Was it the alter ego of Dan Rapoport or a creation to social engineer the Russian dialog?
Salted Hash – SC 02: What a TSB phishing attack looks like
In April, TSB (a retail and commercial bank in the UK) announced they would shutdown some systems for an IT upgrade. However, the upgrade was a disaster, and over a month later customers are still having problems. As a result,...
video
TSB phishing attacks | Salted Hash Ep 33
TSB customers in the U.K. were already frustrated by the bank's technical problems, but now the situation has gotten worse as criminals take advantage of the chaos. Host Steve Ragan looks at recent TSB phishing attacks and the kit...
The impact of human behavior on security
People should be the last thing in charge of cybersecurity. Remove people and add transparency and automation for true protection.
Chinese citizen tries to steal advanced robotic technology IP
Medrobotics' CEO caught Dong Liu in the company's conference room attempting to steal advanced robotic intellectual property.
Sponsored Links