Report: Mobile Phishing to Steal Government Credentials Increased 67% in 2020
In 2020, malicious hackers targeting government workers' devices drastically sharpened the focus of their phishing efforts on obtaining victims' login credentials-as opposed to delivering malware-making for more invasive and persistent attacks, according to a report from mobile security firm Lookout.
Ukraine says Russia hacked its document portal and planted malicious files
Ukraine has accused the Russian government of hacking into one of its government Web portals and planting malicious documents that would install malware on end users' computers.
Think of it as Fishing, where you do not try to catch a specific fish, but rather try to catch any fish. 1
...
An example of a phishing attack would be an email sent to users highlighting that their PayPal accounts are being blocked due to suspicious behavior. 1
...
This form of attack requires a huge effort from the attacker and can even take several months of planning and preparation. 1
Universities Face Double Threat of Ransomware, Data Breaches
Institutions of higher education continue to have problematic password policies, lack multifactor authentication (MFA), and have a plethora of open ports - despite suffering dozens of ransomware attacks and targeting by attackers focused on stealing student information and university research, according to a new study published Tuesday.
What do users and IT have in common? They're both to blame for poor remote security practices
One in four remote workers reuses work credentials on consumer sites, but IT isn't doing them any favors by reportedly failing to provide essential protection while away from the office.
Security professionals are considering questions over the privacy and wider security of hot new social network Clubhouse following a leak of private audio chats by a user who found a way to beat the system and stream them beyond the confines of the service.