Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

December 2024

cyberark

CIO POV: Beware of Deepfakes Infiltrating the Enterprise

Dec 23, 2024 By Omer Grossman In CyberArk
Many years ago, the philosopher Phaedrus said, “Things are not always what they seem; the first appearance deceives many; the intelligence of a few perceives what has been carefully hidden.” He couldn’t have possibly imagined today’s world, yet his warning encapsulates deepfakes, one of the greatest threats of modern times. As AI advances, digital disinformation is blurring the lines between fact and fiction.
Read Post
securitysenses

Deepfake Videos on YouTube: A Growing Cybersecurity Threat

Dec 23, 2024 By SecuritySenses In SecuritySenses
The technology behind deepfake, AI that swaps faces in videos, is moving fast. It's not just that deepfakes are now easier and more difficult to detect. It's that their presence on YouTube and other platforms raises serious concerns about privacy, consent, and misinformation. In this article, we explore how deepfakes have risen on YouTube, what dangers they bring, and why fighting them is an escalating cybersecurity challenge.
Read Post
knowbe4

James Bond-Style Scamming Profits Explode

Dec 20, 2024 By Roger Grimes In KnowBe4
There is a type of scam where victims are contacted by someone fraudulently posing as a popular trusted entity (e.g., Amazon, U.S. Post Office, etc.), law enforcement, or an intelligence agency that initially claims to have evidence linking the victim to a global, spy-like scam. Initially, the victim is befuddled, clueless and scared. The caller then asks the victim to hold on as they are then passed to one or more purported national law enforcement agencies.
Read Post
manageengine

Top tips: 3 holiday hoaxes that could ruin your season

Dec 19, 2024 By General In ManageEngine
Top tips is a weekly column where we highlight what’s trending in the tech world today and list ways to explore these trends. This week, we’ll look at three common holiday season scams and how to spot and avoid them. ‘Tis the season to be jolly—and wary. The holidays are the time when friends and families come together, make merry, and revel in the festivities.
Read Post
knowbe4

AI-Powered Investment Scams Surge: How 'Nomani' Steals Money and Data

Dec 18, 2024 By Stu Sjouwerman In KnowBe4
Cybersecurity researchers are warning about a new breed of investment scam that combines AI-powered video testimonials, social media malvertising, and phishing tactics to steal money and personal data. Known as Nomani — a play on "no money" — this scam grew by over 335% in H2 2024, with more than 100 new URLs detected daily between May and November, according to ESET's H2 2024 Threat Report.
Read Post
memcyco

What Is the TransUnion Scam and 5 Ways to Protect Your Customers from It

Dec 18, 2024 By Lori Moss In Memcyco
With the exponential expansion of AI, bad actors are frothing at the mouth. Advanced technology for automating social engineering techniques that previously required technical know-how is now within arm’s reach of anyone with a keyboard. Attempts to exploit and deceive are more common than ever, and they are emptying business’s pockets. In 2023, 800 businesses worldwide reported fraud losses totaling 6.5% of their revenue, amounting to $359 billion.
Read Post
memcyco

6 Ways to Prevent Triangulation Fraud

Dec 16, 2024 By Ido Mazin In Memcyco
Customer fraud losses and remediation are often integrated as an inevitable cost of doing business Fraud’s impact on the bottom line is often considered when pricing products and services. This has happened since the first thief swiped a product from a marketplace stand. Today, scams responsible for severe business impact have become increasingly sophisticated, and the creeping costs are increasingly hard to budget for.
Read Post
safeaeon

Vishing Attacks: Protect Your Business from Phone-Based Threats

Dec 16, 2024 By SafeAeon Inc. In SafeAeon
Vishing attacks, also known as voice phishing scams, are the newest way for cybercriminals to take advantage of weak spots. What is a vishing strike, though? Vishing is a type of social engineering scam in which people are tricked into giving up private information like passwords, credit card numbers, or business details over the phone or through voice mail. Vishing is different from phishing emails because it involves talking to people in person.
Read Post
memcyco

How Advanced Device Fingerprinting Optimizes ATO Fraud Prevention

Dec 13, 2024 By Arthur Zavalkovsky In Memcyco
Forget ‘billions’, fraud is now a trillion-dollar challenge according to McKinsey, with phishing, account takeovers (ATOs), and credential-based attacks driving unprecedented losses. Needless to say, this step change underlines the urgency for scam-prone enterprises to add further protective layers as part of a fraud prevention strategy that combines emerging technologies.
Read Post
knowbe4

Be Careful of Malicious Ads

Dec 12, 2024 By Roger Grimes In KnowBe4
For decades, we have all been warned to be appropriately skeptical of internet search engine results. Sadly, most people are not. Most people think that what Google, Bing, or Duck Duck Go brings back is heaven sent and can be trusted. It cannot. Results often include malicious links from search engine optimization (SEO) poisoning, where the attacker has been able to trick the search engine into returning its URL when a user searches for something.
Read Post
Trustwave

'Tis the Season for Artificial Intelligence-Generated Fraud Messages

Dec 10, 2024 By Trustwave In Trustwave
The FBI issued an advisory on December 3rd warning the public of how threat actors use generative AI to more quickly and efficiently create messaging to defraud their victims, echoing earlier warnings issued by Trustwave SpiderLabs. The FBI noted that publicly available tools assist criminals with content creation and can correct human errors that might otherwise serve as warning signs of fraud.
Read Post
tripwire

8 Emerging Cybersecurity Scams And Their Implications For The Future

Dec 9, 2024 By Tripwire Guest Authors In Tripwire
Technological advances usually lead to a brighter future. While that may be true, these developments could also be used to refine and increase cybersecurity scams. Attackers do not care about who they target as long as they get people's and establishments' information and credentials. Cybersecurity professionals must be aware of the current scams plaguing the digital world and how to combat them. Here are a few examples and their implications for the future.
Read Post
inetco

MobiFin and INETCO partner to deliver cutting-edge digital banking and payments security

Dec 6, 2024 By Joe Kitos In INETCO
MobiFin, a leading provider of unified digital banking and payment solutions, has entered into strategic partnership with INETCO, an innovative real-time transaction monitoring and fraud prevention company. INETCO has established a significant global footprint by implementing its innovative solutions across more than 27 nations, serving some of the most prominent financial powerhouses worldwide.
Read Post
safeaeon

What is Smishing in Cybersecurity and How to Prevent it?

Dec 5, 2024 By SafeAeon Inc. In SafeAeon
Cybercriminals are getting smarter and using new methods like smishing to take advantage of s. In the world of protection, what is smishing? Smishing is a type of scam that happens through SMS (short message service). Attackers use this method to get people to give up private information or click on harmful links. This dishonest method takes advantage of the speed and trust that people have in text messages by pretending to be a trusted organization, like a bank or the government.
Read Post
securitysenses

Securing the Digital Landscape: Combating Cyber Threats in Modern Business

Dec 5, 2024 By SecuritySenses In SecuritySenses
As businesses increasingly rely on digital platforms, cybersecurity has become a cornerstone of organizational resilience. From safeguarding customer data to protecting intellectual property, companies face a growing array of cyber threats that require strategic defenses. One of the less discussed but highly impactful vulnerabilities is fraudulent activity targeting online advertising campaigns, which costs businesses billions annually. Tools like click fraud prevention software can play a vital role in mitigating these threats, alongside other key cybersecurity practices.
Read Post
tripwire

Tech Support Scams Exploit Google Ads to Target Users

Dec 4, 2024 By Graham Cluley In Tripwire
It's not a new technique, but that doesn't mean that cybercriminals cannot make rich rewards from SEO poisoning. SEO poisoning is the dark art of manipulating search engines to ensure that malware-laced adverts and dangerous websites appear high on users' results - often impersonating legitimate businesses and organisations. But the simplest way of all to get a malicious website in front of a potential victim is to create a Google advertising account, and buy your way to the top of the search results.
Read Post
knowbe4

Malicious Google Ads Target Users Seeking Solutions to Printer Problems

Dec 3, 2024 By Stu Sjouwerman In KnowBe4
Scammers are abusing Google ads to target users searching for help with printer problems, according to researchers at Malwarebytes. The malicious ads claim to offer tech support for installing drivers used by HP and Canon printers. “After clicking on a malicious ad, the website instructs you to enter your printer’s model number in order to download the required driver, which it proceeds to ‘install,’” the researchers write.
Read Post
tripwire

Cyber-Safe Shopping: Protect Yourself from Holiday Scams and Cyber Threats

Dec 2, 2024 By Fortra Staff In Tripwire
The holiday shopping season is here, and while it brings excitement and joy, it also opens opportunities for cybercriminals to exploit unsuspecting shoppers. With more people buying gifts online and taking advantage of holiday deals, the risk of falling victim to cyberattacks increases. Whether you're shopping from your desktop, mobile device, or in-store, it's essential to be aware of common threats and take steps to protect yourself.
Read Post
securitysenses

The Risks of Fake IDs in Online Transactions

Dec 2, 2024 By SecuritySenses In SecuritySenses
What if the person you are trusting with all your money and IDs is not who they claim to be? Fake IDs have turned the virtual world into a playground for scams and deceits. From identity thefts to cybercrime, fake IDs are causing mistrust and safety issues in the online marketplace. Overall, these IDs are posing risks to the individual finances as well as the integrity of eCommerce. The evolution of technology has made fraudulent tactics more advanced, prioritizing the need to recognize these dangers and adopt proactive measures.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.