FireEye M-Trends 2019: Hidden Phishing Risks During Mergers and Acquisitions

FireEye M-Trends 2019: Hidden Phishing Risks During Mergers and Acquisitions

Partner, FireEye has released their most recent M-Trends report which looks at some of the significant trends and shifts of 2019, including the Hidden Phishing Risks During Mergers and Acquisitions. FireEye had previously discussed the risks of integrating a compromised organization into a parent organization back in their M-Trends 2012 report and this issue remains a large threat to organizations today. During a merger or acquisition, tight deadlines are in...

Read More

There’s a New Trojan in Town, Spreading Through Targeted Email Campaign

The authors of a malware sample that has been around for more than two years have yet another trick for distributing it. The Kovter malware sample that has infected systems around the world for the past couple of years is proving to be a case study in how threat actors constantly tweak their malware to keep one step ahead of the defenders. Trojan Kovter surfaced about two years ago as a screenlocker...

Read More

10 Things to Watch: Detecting a Phishing Email

As you may have noticed, the topic of phishing has been at the forefront of the concerns within the IT security 2016 landscape. As attacks become more challenging to identify, organizations become more susceptible to breach. Ransomware infections are often instigated through phishing emails. It’s crucial to take proactive measures to help protect yourself and your organization’s security. As attacks become more challenging to identify, organizations become more susceptible to breach. Ransomware infections...

Read More

What a Week for Social Media Platform Hacks

In the latest string of old hacks coming back to life, microblogging, social network Tumblr, who was hacked in 2013 – has a much larger scope than anticipated. Back in 2013, Tumblr refused to release the number of those affected and now that much anticipated number has finally been brought to light as – 65 million emails and passwords.   A screenshot of the listing of the Tumblr data on the dark...

Read More

Snapchat Falls Victim to Phishing Attack

On Friday February 26, 2016, the popular photo sharing app, Snapchat, fell victim to a sophisticated phishing attack. Employees were “targeted by an isolated email phishing scam”, where the scammer impersonated Snapchat’s Chief Executive Officer, Evan Spiegel, according to a blog posted by Snapchat representatives on Sunday. The malicious email requested payroll information about current and former employees. While Snapchat is not giving away details, this information could include addresses,...

Read More

eBay Exposed to Vulnerability

On December 15, 2105, Israeli security firm Check Point, informed the e-commerce giant, eBay about an online sales platform vulnerability. This flaw would allow cyber criminals to distribute phishing attacks and deploy malicious code on eBay’s users. On February 2, 2016 after demonstrating that the hackers could bypass eBay’s security initiatives, Check Point went public with the information, as eBay claimed there are no immediate plans to fix the issue. The...

Read More

This Week in Breaches: Time Warner Cable

The American cable telecommunications company, which happens to be the second-largest cable company in the country, has admitted that 320,000 customer passwords MAY have been obtained[i]. TWC has stated that the email and password details were likely stolen either through malware downloaded through phishing attacks, or indirectly through data breaches of secondary companies that store their customers’ information. While there are no implications that their systems were actually breached, Time Warner...

Read More