It is widely understood that human beings are the weakest link in the cybersecurity chain. So it should come as little surprise that in the vast majority of ransomware campaigns, cyber-criminals use social engineering techniques to exploit the individual. A majority of attacks start with a phishing email. For this reason, many organisations are looking for products and services to help mitigate this significant cyber-risk.
In fact, it’s become such a thriving segment of the cybersecurity market that Gartner has created security awareness training magic quadrants to rank vendors and their products. So what do best practice staff training programmes look like?
Thought you’d seen the last of prolific hacking group Pawn Storm? Think again. Just-published research from Trend Micro reveals fascinating new insights into one of the world’s longest-running cyber espionage groups. As politicians in the US continue to argue over the impact of its audacious campaign against Democratic Party officials last year, Pawn Storm is at it again, attempting to influence public option ahead of major elections in France and Germany.
We’ve discovered multiple phishing domains set up by the group explicitly to target French presidential front-runner Emmanuel Macron and German political organisations allied to two main parties there.
Our report, Two Years of Pawn Storm, reveals a highly organised and sophisticated group whose tactics should make essential reading for any IT security professional looking to improve their organisation’s defences. Continue reading →
In the cyber security industry there’s often an overwhelming focus on the latest breaking threats and attack techniques – so much so that there’s a danger of forgetting about the staggeringly large volume of existing malware threatening internet users. One such threat is notorious banking trojan DYRE, and the bad news is it has been particularly prolific so far this year.
Trend Micro researchers observed a staggering 125% increase in global infections – from 4,000 in Q4 2015 to 9,000 in the first three months of the year. It seems the cyber criminals behind it have been hard at work once again tweaking the threat to bypass security filters and improve their chances of success. Continue reading →
Well that’s the Black Friday/Cyber Monday madness over for another year. This curiously American tradition of shopping excess around Thanksgiving weekend has well and truly come to the UK, and with it warnings that online fraudsters are looking to exploit distracted retailers and fraudsters around this period for their own ends. But while it’s obviously important that businesses and their customers stay vigilant to the increased risks of cyber attack, that’s not the only story we should be concerned about this week. Continue reading →