A proposed settlement has been reached in the lawsuit against Magellan Health, filed by the 270,000 patients whose data was compromised during an undetected phishing attack in 2019.

Security analysts say integration with email and XDR will offer security teams more visibility into attacks as phishing is often involved in attack chains.

Akamai uses automation to identify the newest malicious DNS domains and mitigate them with a very short mean-time-to-detect.

Microsoft recently detailed on its security blog an attack where malicious OAuth applications were used to compromise cloud tenants to gain control of Exchange Online settings to eventually spread spam.

ResearchLabs details how scammers coerce payment providers to accept credit cards from fake websites, then acquire stolen credit cards to charge for services.

Security researchers say email breach at large airline demonstrates that users are still a primary attack vector for threat actors.

Ride-share company Uber confirmed it was hacked in what appears to be a damaging compromise that includes both internal systems and the company’s accounts for multiple third-party services.

In recent weeks, the U.S. student loan market has been in the spotlight — not just for the much-discussed loan forgiveness plan launched by the Biden administration, but also for the segment’s growing position as a target for financial fraud.

The CEO of security firm Armorblox offers guidance to financial institutions looking to mitigate the risk from business email compromises (BEC).

Fraudulent American Express email bypassed Google Workspace security and directed users to spoofed page to enter credentials, Amorblox researchers reported.