%term

Multitasking Employees Are Particularly Vulnerable to Phishing Attacks

Oct 9, 2025 By KnowBe4 Team In KnowBe4

Employees who multitask are significantly more vulnerable to phishing attacks, according to a study from the University at Albany published in the European Journal of Information Systems. “In real-world settings, users are frequently engaged in other digital tasks when a suspicious message appears, requiring them to momentarily interrupt their workflow,” the researchers write.

Read Post

KnowBe4

Read more about Multitasking Employees Are Particularly Vulnerable to Phishing Attacks

The Lost Payload: MSIX Resurrection

Oct 9, 2025 By Splunk In Splunk

MSIXBuilder transforms what was traditionally a complex, multi-tool process into a single automated workflow that mirrors actual attacker techniques. By automatically handling certificate lifecycle management, dependency resolution, and package signing, the tool removes the technical barriers that previously prevented security teams from creating realistic test scenarios. This means defenders can quickly generate both signed and unsigned MSIX packages to validate their AppXDeployment event log coverage, confirm detection rules, and build detection coverage that actually works against real-world threats.

View Video

Splunk

Read more about The Lost Payload: MSIX Resurrection

Splunk Attack Analyzer Feature Video: Following Complex Attack Chains

Oct 7, 2025 By Splunk In Splunk

Learn how Splunk Attack Analyzer saves analysts time and enhances SOC efficiency by automatically analyzing complex attack chains.

View Video

Splunk

Read more about Splunk Attack Analyzer Feature Video: Following Complex Attack Chains

AI-Generated Attacks: What are They and How to Avoid Them?

Oct 7, 2025 By Chaitali Avadhani In miniOrange

AI-generated attacks, such as social engineering, phishing, deepfakes, malicious GPTs, data poisoning, and more, are disrupting the current security landscape speedily. But there are ways to avoid them and strengthen our defences with miniOrange IAM solutions.

Read Post

miniOrange

Read more about AI-Generated Attacks: What are They and How to Avoid Them?

How Graylog Helps You Spot LockBit-Style Attacks Sooner

Oct 6, 2025 By Jeff Darrington In Graylog

The DFIR Report recently detailed a LockBit attack with ransomware intrusion that succeeded without advanced exploits or zero-day vulnerabilities. The attack relied on a stolen AnyDesk installer, credential reuse, and renamed PowerShell scripts that blended into routine activity. These moves were not sophisticated, but they were fast and effective. The end result: complete domain encryption.

Read Post

Graylog

Read more about How Graylog Helps You Spot LockBit-Style Attacks Sooner

Manufacturing: Executives Voice Cyberattack Readiness Concerns

Oct 6, 2025 By Doug Olenick In LevelBlue

Manufacturing executives recently surveyed by LevelBlue expressed a deep concern that emerging attack methods, such as deepfakes and AI-powered attacks, will be almost as likely as more traditional attacks like ransomware. We derived the information from a research-based survey conducted in January 2025, which included 220 C-suite and senior manufacturing executives.

Read Post

LevelBlue

Read more about Manufacturing: Executives Voice Cyberattack Readiness Concerns

How SOC Teams Operationalize Real-Time Defense Against Credential Replay Attacks

Oct 3, 2025 By Riley MacCausland In Memcyco

Credential replay remains one of the most efficient ways attackers turn stolen usernames, passwords, or tokens into real account access. Verizon’s 2024 DBIR shows that over 40% of breaches involve stolen credentials, underscoring the durability of this tactic. Even strong authentication is not immune. Techniques like pass-the-cookie and adversary-in-the-middle phishing allow attackers to replay tokens and sidestep MFA.

Read Post

Memcyco

Read more about How SOC Teams Operationalize Real-Time Defense Against Credential Replay Attacks

Report: Deepfake Attacks Have Targeted Nearly Two-Thirds of Organizations

Oct 3, 2025 By KnowBe4 Team In KnowBe4

A survey by Gartner found that 62% of organizations have been hit by a deepfake attack in the past twelve months, Infosecurity Magazine reports. Akif Khan, senior director at Gartner Research, told Infosecurity Magazine that deepfakes are currently being used in social engineering attacks to impersonate executives and trick employees into transferring money. “That’s trickier because social engineering is a perpetually reliable thing for attackers to use,” Khan said.

Read Post

KnowBe4

Read more about Report: Deepfake Attacks Have Targeted Nearly Two-Thirds of Organizations

API Attack Awareness: Injection Attacks in APIs - Old Threat, New Surface

Oct 3, 2025 By Wallarm In Wallarm

Injection attacks are among the oldest tricks in the attacker playbook. And yet they persist. The problem is that the core weakness, trusting user inputs too much, keeps resurfacing in new forms. As organizations have shifted to API-driven architectures and integrated AI systems that consume unstructured input, the attack surface has expanded dramatically.

Read Post

Wallarm

Read more about API Attack Awareness: Injection Attacks in APIs - Old Threat, New Surface

API Attack Awareness: Broken Object Level Authorization (BOLA) - Why It Tops the OWASP API Top 10

Oct 1, 2025 By Wallarm In Wallarm

For this Cybersecurity Awareness Month, we thought it important to draw attention to some of the most common and dangerous API vulnerabilities. This week, we’re starting with Broken Object Level Authorization (BOLA). BOLA vulnerabilities top the OWASP API Top Ten. And for good reason: they’re startlingly prevalent, remarkably easy to exploit, and can have devastating consequences. So, let’s explore what they are, why they matter, and how you can mitigate them.

Read Post