Who is responsible for fraud losses resulting from business email compromise? Texas-based AFGlobal Corp. is suing its insurance firm to settle this question. Experts weigh in on the lawsuit and why cyber insurance rarely covers losses from these scams.
Sophisticated phishing campaigns, increasingly targeted because of social media, are fueling business email compromises - a growing wire fraud scheme that is attacking businesses worldwide, says Jim Hansen of PhishMe.
The Ukrainian energy sector is being targeted by fresh phishing attacks, the country's computer emergency response team warns. But it's not clear who's behind those campaigns, or a recent malware infection at Kiev's main airport.
Spearphishing is a targeted email scam with the sole purpose of obtaining unauthorized access to sensitive data. Cybercriminals are using social media, mobile apps and other sources to effectively personalize messages and websites going undetected to steal your confidential data.
Download the SANS Spearphishing...
The latest strain of Android malware called SlemBunk tries to trick mobile banking application users into sharing their banking, social network and other credentials, as security experts see the number of mobile malware attacks continuing to increase.
In terms of malware, 2015 will go down as the year that ransomware got big, and the organized criminals behind it got bolder. IBM's Limor Kessem discusses what to expect from advanced malware variants in 2016.
The massive cyberattacks that struck Chase and other leading U.S. financial services firms illustrate just how vulnerable larger institutions can be to cyber-attacks. They also show why organizations must encrypt customer data, says security and forensics expert Chuck Easttom.
In today's digital world, email phishing attacks are more harmful - and more prevalent - than ever before. Banks and financial institutions are often the first to be targeted, since the financial gain of a successful attack is a lucrative business.
Download this whitepaper to learn how you can prevent cyber attacks...
Fraudsters are increasingly using global brands, including Apple, to fool consumers into providing personal and financial information that can be used to compromise financial accounts. Experts offer insights on the latest trends and how to respond.
Today's cyber criminals use social engineering to plan and execute increasingly sophisticated phishing attacks. The Fundamentals of Phishing provides practical steps for consumers to identify fraudulent phishing emails. It also provides guidance for organizations to prevent their brands and domains being leveraged for...
In recent years, sending a seemingly innocent email to trick the recipient into allowing unauthorized access to corporate and organizational networks has cost businesses millions of dollars. End users have become sensitive to highly publicized cyber-attacks, knowing that their personal data is at stake.
Everyone's talking about business email compromise, but what they aren't talking enough about is what's at the root of these attacks - spear phishing. Joseph Opacki of PhishLabs discusses how security leaders must respond to the threat.
Less than a year after the United States Postal Service revealed that hackers breached agency computers, many employees continue to click on phishing messages that contain false links, according to an inspector general report.
Too often, individuals who fail to take the proper steps to secure IT aren't punished for their reckless behavior. But should those who consistently fail to follow safe cyber hygiene be severely penalized for repeatedly falling for phishing attacks?
Spear phishing is the preferred attack method for advanced threat actors. Well-crafted spear phishing attacks easily slip past layers of defenses and target the only vulnerability that cannot be patched -- people. The vast majority of headline data breaches in recent years have all begun with spear phishing attacks....