Armorblox study says language-based BECs attacks are much tougher for security teams to stop since they trick the recipient into performing an action rather that using a malicious attachment or link.

Blumira research finds that identity-driven techniques accounted for three out of the five top attacks targeting organizations in 2021.

Business email compromise (BEC) has often flown under the radar, creating an increasingly healthy source of funds for fraudsters in recent years.

BEC scams jumped a whopping 65% to a total of $43 billion in losses worldwide in just five years, from 2016 to 2021, according to an FBI public service announcement.

The creation of a Disinformation Governance Board has reignited a long-simmering debate that has been playing out the past five years over: namely how — or even whether — the government should wade into the murky and nuanced discussion around disinformation.  

Armorblox researchers say threat actors using WhatsApp combine social engineering, brand impersonation, exploiting a legitimate domain, and replicating daily business email to launch a trojan on a victim’s system.

Proofpoint researchers say students are a prime target for employment fraud because they are strapped for cash and are inexperienced when it comes to identifying scams.

Using voice-based phishing, or “vishing,” attackers impersonated Morgan Stanley during phone calls, where they encouraged customers to reveal sensitive personal and financial information including banking or login credentials.

Armorblox researchers say the email attack lulls users into clicking a malicious “Start Meeting” tab on Zoom, something they do every day.

As the COVID-19 pandemic extends into yet another year, having a remote workforce will continue to challenge IT and security teams, cybersecurity experts predict. Recruiting and retaining cyber talent will also continue to be a challenge for the industry, while compliance and data leaks, including leaked chats, will prove a headache for human resources.