Business email compromise (BEC) attacks made up more than 50% of incidents within social engineering in 2023, according to Verizon. The bad guys aren’t just increasing the volume of their attack attempts, they’re also getting way more sophisticated and automated in how they craft their impersonation messages. To avoid financial losses, CISOs should consider creating […]
According to the FBI’s 2021 Internet Crime Report, business email compromise (BEC) accounted for almost a third of the country’s $6.9 billion in cyber losses that year – around $2.4 billion. In surprisingly sharp contrast, ransomware attacks accounted for only $50 million of those losses. In this Help Net Security video, Dror Liwer, Co-Founder of […]
As part of the campaign, the attackers have been using adversary-in-the-middle (AiTM) phishing sites to steal credentials, and have been hijacking sign-in sessions to bypass authentication even with multifactor authentication (MFA) enabled. AiTM is a phishing technique in which the attackers deploy a proxy webserver between the user and the site they are trying to […]
Latest Comments