News

Latest news on the subject of B2B cyber security >>> PR agencies: Add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

Sharp increase in malware, BEC and QR code phishing attacks
Sharp increase in malware, BEC and QR code phishing attacks Image by Elchinator on Pixabay

Trend Micro's latest email threat landscape report shows a sharp increase in malware, BEC and QR code phishing attacks on companies. Trend Micro's cloud-based email security blocked 45,2 million attacks last year. Trend Micro's latest email threat landscape report shows current changes in the cyber threat landscape. Among other things, cybercriminals are increasingly using links in email attachments and QR codes to phish login data. Email remains the main means of communication for companies and the most frequently used attack vector. This makes it all the more important to keep an eye on these developments and react if necessary. Blocked:...

Read more

Negligence: No .de DMARC protection against phishing
Negligence: No .de DMARC protection against phishing Image by Gerd Altmann on Pixabay

Most organizations with a .de domain are inadequately protected against phishing and spoofing. A study by EasyDMARC has shown that only 4,55 percent of organizations with the top-level domain .de use DMARC for email authentication. Google & Co, on the other hand, already reject emails without DMARC. The email security provider EasyDMARC has examined organizations with a .de domain to find out how they are using DMARC (Domain-based Message Authentication, Reporting and Conformance). The email security experts found that of 6.428.99 country domains in Germany, only 292.796 use the DMARC policy. This corresponds to 4,55 percent. Completely protected against phishing...

Read more

Targeted Russian phishing on 800 EU and US organizations
SophosNews

From Russia with love: Sophisticated social engineering campaign targets access data from 800 organizations. Interestingly, the targets are all in the EU or the USA. Sophos experts see Russian connections. Within 51 days, a group of attackers, presumably from Russia, sent more than 2.000 phishing emails to almost 800 companies and organizations in the government, healthcare, energy and critical infrastructure sectors. The targets were in the UK, Australia, France, Germany, Austria, Italy, the USA and the Netherlands. Perfect phishing with a lot of effort The emails were characterized by...

Read more

New threat defense against mobile threats 
New threat defense against mobile threats Image by Joshua Woroniecki on Pixabay

The explosive growth of mobile devices and applications is leading to an ever larger attack surface for cyber attacks - sophisticated security threats such as spyware, phishing and ransomware are increasing. Cybereason offers a cyber security solution with its Mobile Threat Defense solution. Current research shows that 60% of end devices that access company resources are already mobile devices. Compared to the previous year, the number of devices identified as compromised, not jailbroken or rooted has increased by 187% - according to the current 'Global Mobile Threat Report 2023' by Zimperium. Companies must strengthen their mobile security measures,...

Read more

Phishing: How AI makes attacks more dangerous

Threat actors are increasingly using generative AI to improve their phishing campaigns - this is shown by a new report from Zscaler. The results are more accurate and deceptively real. In the financial sector, the increase is almost 400 percent. AI represents a paradigm shift in the areas of cybercrime and phishing. With the help of these new technologies, cybercriminals can create extremely convincing phishing campaigns in a very short time that exceed previous standards in terms of complexity and effectiveness. The Zscaler report supports these statements. AI brings advantages to cybercriminals With the help of AI-based algorithms, attackers can process huge data sets in a very short time...

Read more

APT groups: Many routers as part of huge botnets 
APT groups: Many routers as part of huge botnets Image MS-KI

In a blog post, Trend Micro analyzes how Pawn Storm (also APT28 or Forest Blizzard) and other APT actors compromise routers and thus make them part of botnets. Cybercriminals and Advanced Persistent Threat (APT) actors share an interest in proxy anonymization layers and Virtual Private Network (VPN) nodes because they can hide traces of their presence and make malicious activity more difficult to detect. This interest generates malicious Internet traffic that combines financial and espionage motives. Router botnet takeover A well-known example is a cybercriminal botnet (in operation since at least 2016) that compromised…

Read more

Phishing: How well do Chrome, Edge, Firefox defend against attacks? 
B2B Cyber ​​Security ShortNews

The AV-Comparatives laboratory examined modern browsers and examined their ability to defend against phishing. The result shows that even modern browsers struggle to cope with modern phishing. Market leader Google Chrome is massively disappointing. In today's interconnected digital landscape, protecting against online threats remains paramount. AV-Comparatives, an independent laboratory specializing in evaluating IT security solutions, recently completed its latest comprehensive evaluation of online browsers with a focus on defending against phishing attacks. Market leaders Google Chrome, Microsoft Edge, Mozilla Firefox, Opera and...

Read more

AI-powered cyber attacks are increasing
AI-powered cyber attacks are increasing

Cyberattacks are more sophisticated than ever and AI-powered attacks pose the greatest risk. This is what the Keeper Security Insight Report 2024 finds. It shows that IT managers are not sufficiently prepared for the new wave of threat vectors. Worldwide, 92 percent (97 percent in Germany) of those surveyed said that the number of cyber attacks had increased compared to the previous year. In parallel with the increasing frequency, 95 percent of IT leaders worldwide and in Germany say that cyberattacks are more sophisticated than ever before and that they are unprepared for this new wave of threat vectors. The…

Read more

280.000 email addresses stolen from Mainz University Medical Center
B2B Cyber ​​Security ShortNews

Several media reports document the recent data theft at the Mainz University Medical Center: 280.000 email addresses were stolen and published on the darknet. The data was probably stolen from an IT service provider that had stored the data. As reported by the Tagesschau, among others, the email systems of an IT service provider at Mainz University Medical Center were accessed without permission. The log files containing the names and email addresses of 280.000 patients and customers were stolen. The attackers published the data on the dark web after a short time. Since only the log files were stolen, the attackers cannot access the...

Read more