Insiders are always under attack through phishing, smishing, vishing and more. Why? Because attackers know insiders are users that already have access to the desired data. Learn more about this in this Insight.
Spam after spam after spam after spam after spam after spam, etc. That is a new technique attackers are using as a lead in to social engineering attacks.
Another big month for Microsoft patches. Be sure to determine which of your systems and applications are affected, the risk for each, then begin installing. Do not delay.
Actively exploited vulnerabilities are those that cyberattackers are using now to get into systems. Be sure to install the update sooner rather than later.
AI Chatbots come with many vulnerabilities and issues. Now the Android AI Perplexity chatbot was found to have 10 bugs. This makes it less secure than chatbots from ChatGPT and DeepSeek.
Credential stuffing is a tool of cyber attackers that tries compromised passwords on many different sites. If, despite warning, you used the same password for more than one site or service they will probably find it and get in. This Insight explores the technique and what you can do to protect against it.
Compromised SharePoint sites are being used to takeover Windows systems and install backdoors allowing full control of the Windows system.
Samsung has been hit with an infostealer that stole support ticket records with significant amounts of personal information; names, emails, home addresses, model number of the Samsung device they called about, payment details, and more.
Attackers use LinkedIn to post fake websites. These sites then show a Captcha for the user to prove they are a person. But the Captchas are fake and spread malware.
Google’s Quick Share is a service allowing the sharing of files of almost any type between users with about 5 feet of each other. Attackers found ways to use it to spread malware. Google issued patches and then attackers found ways around the patches. Be sure to install the updated patches.