Phishing attacks often feel like an unrelenting tsunami, flooding your organisation with a never-ending deluge of threats.
Traditional methods for analysing and mitigating phishing attacks are manual, repetitive and error-prone. These workflows slow the speed at which you can mitigate a spear-phishing attack and...
A new phishing campaign is targeting victims through mobile devices by mirroring legitimate login pages for the Federal Communications Commission and large cryptocurrency platforms including Binance and Coinbase. At least 100 victims, including crypto company employees, have fallen for the scam.
The surge in authorized push payment fraud in APAC underscores the urgent need for enhanced cooperation between banks and telecommunications companies. Both players should tap into AI and ML technologies for better fraud detection and real-time authentication, said Mel Migriño of Gogolook.
North Korean espionage group TA406, aka the Konni Group, deployed information-stealing malware on a Russian government-owned software to spy on the country's foreign ministry officials. This is the latest attack in a North Korean campaign that targets Russian diplomatic activities.
Security leaders from a wide range of industries explored the latest cybersecurity trends and issues -including Web 4.0, generative AI, automation, data protection and regulatory compliance - at ISMG's DynamicCISO Excellence Awards and Conference 2024 in Mumbai.
Poor credential management practices hit Australian organizations hard in late 2023, accounting for a majority of cyber incidents affecting millions of people, the Australian Information Commissioner said. Compromised or stolen credentials account for 1 in 4 data breaches.
A watchdog report reveals how Heartland Tri-State Bank CEO Shan Hanes allegedly defrauded a local church and investment club in Kansas out of $47.1 million through a "pig-butchering" cryptocurrency scam that ultimately caused the bank to fail in 2023.
In the latest weekly update, Joe Sullivan, CEO of Ukraine Friends, joins three editors at ISMG to discuss the challenges of being a CISO in 2024, growing threats from disinformation, vulnerabilities in MFA, AI's role in cybersecurity, and the obstacles to public-private information sharing.
Researchers at South Korean cybersecurity company S2W attributed a new malware campaign that targeted South Korean organizations to North Korean cybercrime group Kimsuky. The hackers disguised their malware installer as a security program installation file to deceive victims and steal their data.
Entrust, a pioneer payment, identity and data security software and services provider, is in talks to acquire Onfido, a pioneer in cloud-based, AI-powered identity verification technology, for a reported $400 million. The combined solution will help customers fight identity fraud.
Don't click phishy links. Everyone knows that. But are your end users prepared to quickly identify today's tricky tactics being used by bad actors? Probably not. Cybercriminals have moved beyond simple bait and switch domains. They're now employing a variety of advanced social engineering techniques to entice your...
The novel variant of the banking Trojan Mispadu is targeting Latin American countries, especially Mexico, by exploiting a flaw in Windows SmartScreen. In this latest distribution method, the attackers send spam emails that deliver deceptive URL files that circumvent the SmartScreen banner warning.
South Korean President Yoon Suk Yeol expects North Korea to interfere with the upcoming legislative elections and warned citizens to prepare for waves of cyberattacks, fake news and disinformation. Investigators believe North Korea conducted 80% of the attacks on public sector organizations in 2023.
While ransomware groups rightly have a reputation for being morally and ethically bankrupt, many do play things straight with their victims. But RansomedVC is a notable exception. In some ways, it is "more dangerous" because of its expert ability to lie, according to researcher Jon DiMaggio.
Rumors are swirling about how the Department of Health and Human Services lost about $7.5 million in grant payments through a series of cyberattacks last year, including speculation over whether the incidents involved sophisticated AI-augmented spear-phishing or more commonplace fraud schemes.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.asia, you agree to our use of cookies.