Articles Tagged with ''social engineering''

DOJ charges two men for involvement in hacking of NFL and NBA players social media accounts

October 2, 2020

Two men will appear in federal court to face charges that they were involved in the unauthorized takeover of social media and other personal online accounts belonging to professional and semi-professional athletes, U.S. Attorney Craig Carpenito announced.

The Twitter takedown: How a teen rocked the cybersecurity world and why this can never happen again

Caleb Barlow

September 11, 2020

Recently, two teens and a young adult infiltrated one of Silicon Valley’s biggest companies in a high-profile hack – and the biggest ever for Twitter. Authorities say the 17-year-old “mastermind” used social engineering tactics to convince a Twitter employee that he also worked in the IT department and gained access to Twitter’s Customer Service Portal. The 130-account takeover proved unique, as it was fundamentally a dramatic manipulation of trust and could have had far more world-changing consequences if the attackers had the aspirations of say, a dangerous fringe group versus that of a teenager. There are a few takeaways to learn here, especially when it comes to considering redefining what we classify as “critical infrastructure” and what must be protected at all costs.

Deepfakes will tell true lies

Steve Durbin

June 24, 2020

Organizations need to enhance current technical security controls to mitigate against the threat of deepfakes to the business. Training and awareness will also need revamping with special attention paid to this highly believable threat.

Can the Tsunami of Phone-Based Social Engineering be Contained?

As soft target telephone scams become more sophisticated, people are turning to protocols like biometric verification for enhanced protection. But implementation is key.

Aman Khanna

March 17, 2020

As digital security through online portals continually improves and people become more wary of phishing emails, hackers have turned to old fashioned telephone calls to elicit key pieces of personal information they can use for profit. It takes little technical skill—just the ability to sound convincing to vulnerable people over the phone.

FBI Warns of Cyber-Based Romance Scams

February 6, 2020

The Federal Bureau of Investigation (FBI) is warning Americans to be on the lookout for cyber-based romance scams.

NJ Cybersecurity and Communications Integration Cell Predicts New Cyber Threat Landscape in 2020

January 10, 2020

As we begin a new year and decade, the cyber threat landscape presents both existing and new threats, trends and techniques.

Cybercriminals Target Star Wars Fans in Social Engineering Campaign

January 10, 2020

Cybercriminals targeted Star Wars fans in a recent phishing campaign designed to steal credit card data by enticing fans with an early movie screening.

Replacing the Front Lines of Cyber Defense with Concentric Circles

Adam Stern

August 19, 2019

On the premise that the best defense is understanding the real nature of the offense – or, in this case, offenses, since cyber security addresses a multi-front battleground – it’s useful to think in terms of concentric circles, broad steps any small or midsize business can take to maximize safety.

Social Engineering Simulation Testing Tips

Joe Malec

May 8, 2019

Do you know who is calling you? In many cases, employees rely on caller ID or a familiar name to allow callers to build trust and potentially exploit them. Vishing (or social engineering) is a practice where verbal communication is used to deceive a potential victim.

Call for Speakers for Florida Cyber Conference 2019

March 22, 2019

Cyber Florida has announced a Call for Speakers for Florida Cyber Conference 2019 (FLCyberCon).

Domestic violence remains a complex driver of workplace violence, creating high-risk scenarios that require coordination across departments without clear ownership. Learn how threat management teams can manage domestic violence referrals from the start.

OSHA fines grab headlines, but most compliance issues start with everyday operational gaps: missed protocols, unsecured areas, or slow response. Learn how emerging technologies & AI can be leveraged towards a more proactive model of compliance.