Cyber escape room locks in employees’ security awareness. But can SC Media beat the clock?
The plot: identify and capture an insider threat within your organization before he or she is able to divert payroll funds.
About SC Media
Phishing
At quick glance, ‘expertly framed’ Quickbooks phishing email looks legit
Attackers impersonating Quickbooks on the Microsoft 365 platform create a sense of urgency to compel their victims to “promptly” pay fake invoices allegedly from a legitimate vendor, thereby opening them up to a future malicious act.
GoDaddy scam shows how voice phishing can be more deceptive than email schemes
Unlike with an email-based phish where an employee might be observant enough spot a telltale red flag, such as multiple typos or the wrong sender address, there’s little time to key in on suspicious circumstances in the midst of a dialogue.
You clicked on what?! Shaming among the most effective deterrents for phishing scams
New research suggests cybersecurity technology and policies alone cannot adequately address rampant phishing threats. What is effective? Negative consequences.
Female CISOs lead global enterprises through unprecedented change
Supporting organizations that stretched from Colorado to China, security leaders detail COVID tech response.
With Kimsuky APT advisory, gov’t finally shares actionable information
A recent government advisory on the North Korean APT group offered some of the best actionable guidance to security teams that some researchers have seen in a long time.
Malicious SharePoint and OneDrive links are a phishing scammer’s dream
Attackers are using cloud-based collaboration services as social engineering tools to trick users into clicking on malicious links, often for the purpose of wire fraud or supply chain fraud.
SC Media aces phishing test (whew!), but average score was only 52%
Devised by email security company GreatHorn and security awareness firm Inspired eLearning, a new quiz taken by 1,123 U.S. users showed how individuals actually respond to phishing scams. The results weren’t great.
Phishing scams use redirects to steal Office 365, Facebook credentials
Researchers have recently warned of two massive phishing operations, collectively targeting hundreds of thousands of users – one seeking credentials for business services such as Office 365 and the other abusing Facebook Messenger to go after roughly 450,000 of the social media giant’s account holders.
Twitter hackers lured employees to give up VPN credentials
The attackers that hacked Twitter in July pretended to call from Twitter’s IT department about a VPN issue, then persuaded employees to enter their credentials into a website that looked identical to the real VPN login site. The claims by the hackers were credible – and successful – because Twitter’s employees were all using VPN…
Want to read more?
Next post in Security News
