Digital ‘Spring Cleaning’ Tips – Part 2
This entry is part 2 of 2 in the series Digital Spring Cleaning Even the strongest organization-wide network security policy can leave end users exposed to threats. This security hole can lead to financial, legal, and productivity implications for the entire organization. Uneducated or unaware end users can fall prey to cyber attacks such as [Read More...]
Can You Spot a Phishing Email?
This holiday season, buyers everywhere will flock to the Internet to rack up savings on deals and avoid the hassles of shopping in malls and department stores. Unfortunately, shopping online without using caution can lead to great headaches due to the prevalence of criminal activity. One of the most devastating identity theft techniques comes in [Read More...]
What is Spear phishing?
Recently, a form of identity theft known as spear phishing has been making headlines. While the method isn’t new, thieves are using it more and more to break into networks and steal data. Spear-phishing is a highly targeted, fraudulent attempt to enter into a network by gaining unauthorized access to secure information. The purpose of [Read More...]
Inside a Twitter Attack: How Hijacked Twitter Accounts are Falling Victim to Digital Theft, Influencing Global Markets
Recently, we have seen a rash of high-profile takeover attacks on Twitter accounts. These Twitter attacks are targeting Western news organizations, but some organizations outside of the news realm (e.g., Burger King) have also come under attack.
Phishing with SSL
I read an article from Netcraft about Phishing on sites using SSL certificates. It reminded me that the industry has been working on anti-phishing for many years. In 2005, the SSL industry created the CA/Browser Forum. One of the issues was to create a new SSL certificate that would fight phishing. The result was the [Read More...]
APWG Counter eCrime Operations Summit
The APWG started as the Anti-Phishing Working Group in 2003. In the past nine years, it has grown and expanded to be an association of technical organizations, financial organizations, treaty organizations, and others to fight eCrime and identity theft. It provides coordination and assistance for just about anyone who needs it. I have worked with [Read More...]
Protecting My Business and Personal Online Identity. . . or, how Meg Ryan could be my downfall!
I thought this was an interesting story: “Webmail gets hacked, corporate passwords exposed”, and one that ought to be read by executives in many companies – the folks who can actually change behavior that could otherwise jeopardize corporate security. But it’s also a story that is highly relevant to consumers because they – “we” – [Read More...]
Is it Paypal? Or is it Paypal?
New character types can now be used in domain names. Does that mean we can no longer rely on domain names to verify against phishing sites?
Phishing is Here to Stay: 1 in 200 are Victimized
I guess its not that surprising, but a new report indicates that .47 percent of banking customers fall victim to a phishing site every year. This clearly demonstrates that phishers have a large market to address and are obviously seeing a return on their investments. That means we can expect to see even more phishing [Read More...]