As the country grapples with the burgeoning coronavirus pandemic, cybersecurity experts are warning that employees working from home are increasingly being targeted by aggressive cybercriminals trying to capitalize on their unfamiliarity with remote work.
Working from home is the new reality for hundreds of millions of Americans and their companies. That means lots of workers in their studies or kitchen tables are in far more vulnerable cyber environments. And there’s ample evidence the bad guys are out in force.
The Maryland Department of Commerce is joining a delegation of Maryland cybersecurity companies, federal agencies, and economic development partners this week at RSA™ 2020. The annual conference, which is taking place in San Francisco, is the nation’s premier information security event and draws more than 40,000 attendees to the Moscone Center. For the ninth consecutive year, Maryland’s cybersecurity strengths will be on display with Maryland-based cybersecurity companies and experts among conference speakers and exhibitors. “As we continue to brand Maryland as the top global location for cybersecurity, it is important for us to be in front of key businesses as well as investors to highlight our unparalleled assets, highly-educated workforce, and our Open for Business commitment,” said Maryland Commerce Secretary Kelly M. Schulz, who is attending the conference. “We are also proud to support the 15 Maryland cyber companies that are exhibiting this year, and help connect them with new opportunities and partners.”
As email security providers strengthen their defenses, attackers develop new ways to work around them. A new report from Inky sheds light on how these techniques are evolving to become more complex and difficult to detect by unsuspecting targets.
Fake websites, fake products and fake apps are ready and waiting to snag shoppers this holiday season, according to experts. “Every year at this time, email-based scams rise to a fever pitch,” Dave Baggett, co-founder and CEO of the anti-phishing startup INKY, told Fox News. One reason scams are so prolific is, Baggett said, bad guys keep churning out lots of fake web domains. For example, they might register a website with a URL such as “amazon-black-friday-deals,” then send out authentic-looking Amazon emails, he explained.
It’s that time of year! We’re all having fun planning our Halloween costumes. What’s not so fun? Cybercriminals are doing the same thing. Just as you can put on a Dracula outfit and look the part, criminals can camouflage their emails to present a perfect facade, too — of a brand you trust. But crooks don’t have to buy their costumes: a phisher — let’s call him Vlad the Impaler — can just take a real email from, say, Apple, save its HTML content, and modify a few links. Vlad can then resend a perfect-looking Apple mail from a plausible sounding server like “apple-mail-gateway.com” and … trick or treat.