Join Scott Young from Optrics Engineering and Mike Brill from KnowBe4 as they discuss the latest Zoom phishing attacks and social engineering and how best to keep you and your staff safe from them.Read the “Running Headfirst into a Breach” blog article mentioned in the above video.Learn more about KnowBe4 by going to:www.Optrics.com/KnowBe4Find out what […]
Trickbot is Targeting the Legal Sector
Researchers at Menlo Security warn of an ongoing Trickbot campaign targeting the legal and insurance industries. Trickbot is a notorious remote access Trojan that was in the crosshairs of separate operations by US Cyber Command and Microsoft late last year. While these operations crippled the malware’s botnet ahead of the US elections, they weren’t expected […]
![[Heads Up] Email Phishing Is Now the Top Ransomware Attack Vector](https://www.optricsinsider.com/wp-content/uploads/2021/02/RansomwareAttackVectors.png)
[Heads Up] Email Phishing Is Now the Top Ransomware Attack Vector
New data shows that pushback from the ransomware victim “market” may be influencing just how much cybercriminals are asking for as ransom and are being paid.2020 seemed to point to ransomware continuing to grow in devastation and cost; Ryuk reached a $34 million ransom payout, organizations were operationally brought to their knees by many of […]
Beware the Long Con Phish
Social engineering and phishing happen when a con artist communicates a fraudulent message pretending to be a person or organization which a potential victim might trust in order to get the victim to reveal private information (e.g. a password or document) or perform another desired action (e.g. run a Trojan Horse malware program) that is […]
![[HEADS UP] New Phishing Kit Spotted on Over 700 Domains](https://www.optricsinsider.com/wp-content/uploads/2021/01/domain-names-1772242_1920.jpg)
[HEADS UP] New Phishing Kit Spotted on Over 700 Domains
A cybercriminal gang has recently developed a new phishing kit named LogoKit on several domains. LogoKit changes logos and text in real-time in order to adapt to the targeted victims.This vicious phishing kit has already been released in the dark web according to threat intelligence firm RiskIQ. The firm has tracked it’s progression and in […]
Optrics Insider – KnowBe4 Spoofed, Security Awareness Training Wears Off & Microsoft Zero Login Flaw
Join Scott Young and Shaun Sturby from Optrics Engineering as they discuss security awareness training company KnowBe4 being spoofed, the fact the security awareness training for you staff does wear off over time and Microsoft’s zero login flaw.Timecodes:0:00 – Intro0:18 – Today’s 3 topics0:50 – Topic 1: KnowBe4’s Emails Spoofed3:03 – Topic 2: Security Awareness […]
Five Reasons Why Ransomware Attacks Should Be Your Biggest Worry and Aren’t Going Anywhere
No other cyberattack has evolved like ransomware. Today’s attacks are more pervasive, invasive, impactful, damaging, and costly. Learn why and what to do about it.Unless you’ve been hiding under a rock, you can’t go online to any tech news without bumping into a ransomware story. This cyberattack method has gone from nuisance, to a mainstream […]
Leaked U.S.-UK Trade Documents Show How Devastating Compromised Email Can Be
An ongoing criminal investigation highlights how classified documents stolen by Russian hackers from former U.K. trade minister Liam Fox may have been used to impact the British 2019 election.Late last year, these trade documents were leaked and disseminated online by a Russian disinformation campaign. The new addition to this story, according to Reuters, is that […]
GitHub is the Latest Target of Social Engineering Phishing Attacks
Using simple alert-style email notices, scammers look to steal credentials to gain access to development code, intellectual property, and project details.While the preponderance of impersonation attacks focus on brands like Office 365, Facebook, and others, it’s only a matter of time until cybercriminals decided going after developers was a good idea.Last month, GitHub announced a […]
Sawfish Spearphishing Attacks Continue, Prompting Password Resets on GitHub and DeepSource
A new wave of attacks on GitHub users via app developer DeepSource has raised concerns over access to user credentials and development code.I’ve written about phishing attacks targeting GitHub users previously. But this month, users of GitHub partner DeepSource were notified of a security incident in which at least one of DeepSource’s employee credentials had […]