Blog
What You Need to Know About the Kaseya Ransomware Outbreak
Thu, 07/22/2021
In early July, IT solutions provider and remote management solution provider Kaseya announced that it had fallen victim to a supply chain ransomware attack. During the attack, hackers leveraged a vulnerability in Kaseya’s VSA platform to encrypt the data of hundreds of downstream MSPs and their clients.
The Kaseya ransomware outbreak is one of the latest high-profile...
Blog
What You Need to Know About the Latest Facebook Data Leak
Tue, 04/13/2021
At the start of April, hackers leaked the data of 533 million Facebook users from 106 countries in an online hacking forum. The leaked data included the private information of Facebook users like full names, phone numbers, email addresses, locations, Facebook IDs, and biographical data.
While hackers obtained the information in 2019, there are serious concerns over how cyber...
Blog
What You Need to Know About The Office-365 Phishing Campaign Targeting C-Suite Executives
Fri, 02/12/2021
During the last week of January 2021, cyber security provider TrendMicro shared a blog post highlighting an Office-365 phishing campaign that criminals have targeted executives within manufacturing, tech, real estate, government, and finance since May 2020. As part of the scam, fraudsters sent the victims fake emails with links to a phishing site, where they harvested their...
On-Demand Webinar
Terranova Security and Microsoft Present Global Phishing Benchmarks and Recommendations
Get the latest phishing statistics from the 2020 Gone Phishing Tournament and learn how to leverage them to help your organization strengthen security awareness initiatives. Watch the Phishing Benchmark Global Report Results webcast.
Theo Zafirakos of Terranova Security and Brandon Koeller from Microsoft present highlights from the Tournament’s results and answer questions...
Spear Phishing vs. Phishing: Everything You Need to Know
Thu, 01/07/2021
Spear phishing occurs when cyber criminals deploy targeted attacks against individuals and businesses alike via email. Using savvy tactics, hackers collect sensitive data about specific parties to construct messages that sound familiar and trustworthy.
As its name implies, spear phishing falls under the larger umbrella category of phishing attacks that victimize end users and...
Blog
How To Build a Strong Security Awareness Program in 2021
Mon, 12/28/2020
Discover security awareness trends and best practices for 2021
Your employees are your first line of defense against cyber security attacks. The strength of your security awareness program depends on every employee in your organization.
As part of your organizational goals and plans for 2021, you need to prioritize building a cyber secure and aware culture. This requires an...
Blog
Data Breaches in 2020: The Year in Review
Wed, 12/23/2020
The disruption caused by the Covid-19 pandemic saw enterprises across the globe rapidly adopt remote working to support social distancing and comply with quarantine restrictions implemented by national governments. Amid this chaos, many cyber criminals created new phishing scams and other online threats, leading to many high profile data breaches.
One of the most alarming...
Guide
The Latest Click Rate Benchmarking for Security Awareness Leaders
This report gives cyber security and risk management leaders real-world phishing benchmarking data and lets organizations see how their click rate stacks up against their peers in multiple categories, including:
Industry
Organization size (number of employees)
Geographical location
Image
...
Blog
How to Stop Your Employees Falling Victim to Shipping Notification Scams this Holiday Season
Tue, 11/24/2020
With Black Friday, Cyber Monday, Thanksgiving, and the Christmas holidays fast approaching, cyber criminals are working round the clock to create new scams, such as the shipping notification scam, to phish for private information and commit identity fraud.
As many employees will be shopping online during working hours, cyber security leaders need to educate employees on...
Blog
How To Protect Remote Financial Services Employees from Cyber Attacks
Thu, 10/29/2020
Security awareness training for financial services and bank employees must be a top priority. While financial services institutions have long been prime targets for cybercriminals, as most attacks are financially motivated, the shift to remote work business models and operations has heightened cyber security risk levels. Recent data reinforces why financial services CISOs and...
Blog
The CRA Cyber Attack: Here’s What You Need to Know
Fri, 08/21/2020
In mid-August, cybercriminals targeted the Canada Revenue Agency with two credential stuffing attacks, obtaining the usernames and passwords of 9,041 GCKey accounts, and 5,500 CRA accounts. The fraudsters then used the stolen login credentials to apply for the Canadian Emergency Response Benefit (CERB).
In response to the attack, a statement released by the Office of the Chief...
Blog
How to Protect Your Data from the Microsoft Office 365 Phishing Scam
Fri, 07/31/2020
Since December 2019, there has been a coordinated campaign of phishing attempts targeting Office 365 users. Cyber criminals have sent spoofed email, gathering the login credentials and payment details of Microsoft accounts in over 62 countries.
According to one report, despite a 42% reduction in phishing attempts in 2019, scams like this Microsoft Office 365 campaign remain a...
On-Demand Webinar
On-Demand Webcast: The Five Stages of Being Phished
Mon, 11/18/2019
When falling for a phishing scam, users usually go through one or more emotional stages including; denial, anger, bargaining, depression and acceptance.
Watch now to learn more about:
The 5 stages and how they affect the impact of a data breach
Using a security awareness program to help users become cyber aware
The role of just-in-time training and phishing simulations in...
Blog
5 Ways to Reduce the Risk of a Social Network Breach
Wed, 05/29/2019
Social networking overlaps corporate and personal lives, and so should the mission to create a culture of security awareness.
It’s true.
There was little – if nothing – any Facebook user could have done to prevent their passwords from getting exposed earlier this spring.
Just look at the facts of the case, said Theo Zafirakos, Chief Information Security Officer and Security...
Blog
Cyber Security Breaches – Reduce The Human Risk Factor
Wed, 10/24/2018
You can have the most powerful, cutting-edge security technology in the world, but if a user clicks on the link in a malicious email, lets a stranger tailgate into your building or uses 1234 as their login password, they unwittingly open your organization up to a cyber security breach. The fact is that the human risk factor remains your greatest point of vulnerability when it...
Blog
Recent phishing attacks demonstrate widespread dangers
Tue, 11/24/2015
By this point, the dangers presented by phishing attacks are becoming increasingly well known. Business leaders recognize that information security awareness is critical for organizations of all kinds, and these programs need to focus heavily on phishing if firms want to remain protected in the current cybersecurity landscape.
Phishing attacks have become among the most...
Blog
Employee error leads to Rogers Communications data breach
Tue, 03/24/2015
While certainly not the biggest data breach in recent memory, this Rogers Communications incident demonstrates how a seemingly small employee error can have significant consequences in the realm of cybersecurity.
Data breaches have become major news topics and with good reason. These incidents have major implications not just for the businesses affected but also for their...