News

Latest news about B2B cyber security >>> PR agencies: add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

Danger when surfing through browser-based attacks
B2B Cyber ​​Security ShortNews

The threat situation in the digital space is becoming increasingly complex and sophisticated. According to a recent study, in the second half of 2023 there was a 198 percent increase in browser-based phishing attacks and a 206 percent increase in evasive attacks. During the same period, over 31.000 specially designed threats were identified that were designed to evade detection by security solutions. The most common attack techniques are phishing, social engineering, smishing and deepfakes. These tactics aim to exploit human weakness for manipulation, which then allows cybercriminals to gain access to sensitive data...

Read more

New wave of phishing: Attackers use Adobe InDesign
New wave of phishing: Attackers use Adobe InDesign

There is currently an increase in phishing attacks that abuse Adobe InDesign, a well-known and trusted document publishing system. According to Barracuda Telemetry, the number of emails containing Adobe InDesign links has increased nearly 30x since October. While the daily number was previously around 75 per email per day, it has now increased to around 2.000. Almost one in 10 (9 percent) of these emails contain active phishing links. Many of these links have the top-level domain “.ru” and are hosted behind a Content Delivery Network (CDN) that acts as a proxy for the source site. This…

Read more

Microsoft Teams as a phishing vector
B2B Cyber ​​Security ShortNews

Hardly any place in the digital space is safe from phishing attacks these days. Even supposedly trustworthy applications and platforms such as Microsoft Teams are now being abused by malicious actors to send phishing messages. Many end users are aware of the dangers of traditional phishing attacks such as email or other media. However, you should be aware that applications such as Microsoft Teams can also represent a phishing vector. Microsoft Teams, usually considered a secure tool for corporate communication, has recently become the target of phishing attempts: cybercriminals are exploiting the “External…

Read more

Cyber ​​attacks cost over 5 million euros annually
Cyber ​​attacks cost over 5 million euros annually

Cyber ​​attacks are increasing. Last year, 71 percent of German companies fell victim to ransomware. 59 percent paid ransoms. 53 percent fear more hacker attacks through generative AI technologies. Barracuda Networks has released its Cybernomics 101 Report, which analyzes the financial impact and profit motives behind cyberattacks. The research found that for German companies, the average annual cost of responding to attacks is around 5,7 million euros ($6,2 million). Ransomware attacks on over 70% of German companies The report also raises alarm as hackers explore how to use generative AI technology (GenAI)...

Read more

Attacks via QR code routing
B2B Cyber ​​Security ShortNews

A provider of cyber security solutions had already found that QR code phishing as a scam increased by 2023 percent in frequency between August and September 587. Now the hackers are stepping up their game: the attacks now work as conditional routing, which means they automatically adapt to the user's device, browser and screen size. But it is based on the old quishing technique, namely contaminated code. In the recently discovered case, users should check a post overview and read the QR code with the alleged link. Given the fact that for years most cyber attacks have been...

Read more

Phishing, vishing and quishing
Phishing, vishing and quishing

In the early days, phishing attacks were often very simple and used legitimate sources of written communication such as email to gain access to sensitive data. In the age of AI, it is tempting to consider how attackers are modernizing their phishing methods. With the growing popularity of GenAI tools, voice-based phishing attacks – also known as “vishing” – have become the new norm and the evolution of attack methods continues. Phishing as a springboard To understand the importance of phishing in the malware industry, it helps to look at the anatomy of a...

Read more

Threat report for the second half of 2023
Threat report for the second half of 2023

A cybersecurity AI provider has released its End of Year Threat Report for the second half of 2023. The report is based on data from the entire customer base and uncovers important developments in the areas of multi-functional malware, loaders, ViperSoftX and phishing emails. According to Darktrace's analysis, in the second half of 2023, the most commonly observed threat type was Malware-as-a-Service (MaaS), which, along with Ransomware-as-a-Service (RaaS), accounted for the majority of malicious tools used in cyberattacks made up. Due to high demand and repeat subscription-based revenue, Darktrace expects the…

Read more

Microsoft abused for phishing
B2B Cyber ​​Security ShortNews

The research department of a cyber security solutions provider has published the Brand Phishing Report for the fourth quarter of 2023. The report highlights the brands most frequently imitated by hackers to steal personal information, user account information or payment data in October, November and December 2023. Microsoft was at the top with 33 percent and overall the technology sector was the most abused industry as Amazon came second with 9 percent, Google third with 8 percent and Apple with 4 percent. “As we move forward from 2023…

Read more

Cybersecurity: The vulnerable employee needs support
Cybersecurity: The employee vulnerability needs support - AI MS

In the changing threat landscape, human behavior plays an important role in cybersecurity - on the one hand, positively as a reinforcement in defense, on the other hand, negatively as a door opener for cybercriminals. A difficult balancing act. But there are effective solutions to better support employees. Security technologies are constantly evolving - and with them the tactics of cybercriminals who exploit vulnerabilities in machines and people to gain unauthorized access to systems. In the first half of 2023, the Sophos Cybersecurity Report found that compromised credentials were the primary cause of 50 percent...

Read more

Perfidious cyber attacks on hotels
SophosNews

Criminals are increasingly exploiting the well-meaning service spirit of hotel employees: Sophos X-Ops has uncovered several cases of a “malspam” campaign targeting hotels around the world. Access comes via phishing and also threatens the guests' data. The attacks using the RedLine Stealer malware, which specializes in skimming access data, have currently been detected in Spain, France, Germany, Switzerland, the United Arab Emirates and the USA. Phishing through fake complaints... The attackers first report with complaints about serious problems that the sender supposedly has with...

Read more