#business-email-compromise

[ follow ]
#cybersecurity #phishing #mfa-bypass #wire-fraud #ai-enabled-attacks #vps-abuse #session-hijacking #email-security
Information security
fromSecuritymagazine
1 week ago

When Employees Help Hackers: How Threat Actors Bypass MFA

Criminals increasingly bypass MFA by tricking employees with sophisticated phishing, driving business email compromise and largely irretrievable wire fraud losses.
fromSecuritymagazine
1 month ago

Cybercriminals Attack VPS to Access Business Email Systems

Attackers now rent trust. Five dollar VPS nodes buy entry to your allow list and they accomplish this by getting a clean ASN and fresh IP making traffic feel like a trusted source, not a criminal. In this case, the adversary is riding live sessions and no longer just harvesting passwords. The mailbox becomes the control plane. Vague rules act like a kind of stealth policy.
Information security
US news
fromwww.mercurynews.com
2 months ago

S.F.: 2 men plead guilty to laundering millions from online phishing scams

Two men pleaded guilty to federal money laundering charges linked to extensive phishing and business email compromise schemes.
Information security
fromSecuritymagazine
4 months ago

Deepfake Scam or Inside Job? Rethinking the BEC Threat

The growing sophistication of BEC attacks, using deepfake technology, presents new challenges for businesses in verifying incidents and handling potential insider threats.
[ Load more ]