In The News

Fake Zoom meeting invitation harvests Microsoft credentials Initially targeting Zoom users; the phishing scam aims for Outlook and Office365 credentials. As the digital world deals with the added responsibility of hosting more and more meetings online, popular video conferencing apps like Zoom and Microsoft Teams have increasingly come under fire from cybercriminals.
Read More
Anti-phishing startup INKY raises $20M to ramp up enterprise adoption Anti-phishing startup Inky has raised $20 million in its Series B round of funding, led by Insight Partners .
Read More
Majority of COVID phishing attacks coming from US IP addresses An anti-phishing firm discovered that most of the malicious coronavirus emails were coming from the United States. COVID-19 phishing emails have been bombarding inboxes since the virus began to spread in December and January. Cybercriminals have tried to push all kinds of scams to the masses using coronavirus-related topics, headers and organizations to get people to open malicious emails, files, or links. Complaints about phishing attacks have tripled since the concerns about COVID-19 became widespread, according to the FBI's Internet Crime Complaint Center. Cybersecurity company INKY pored through the months of coronavirus-themed phishing emails and compiled a report on where most of them were coming from, finding that the majority of IP addresses found in email headers originated from the United States. Dave Baggett, CEO of INKY, acknowledged that these IP addresses might be easily spoofed by more skilled attackers but explained that there were a number of reasons most attackers would be in the US. "The majority of our users are American. Phishers prefer to target victims within their own geography because it's easier to research and impersonate since it's the same culture and language," he said in an email interview, adding that non-American attackers may also want to spoof a US origin to evade geographical filters.
Read More
Phishing spoofs US Federal Reserve to steal online bank accounts Scammers have been sending out emails that impersonate the U.S. Federal Reserve and lure recipients with financial relief options through the Payment Protection Program.
Read More
Phishing emails impersonate the White House and VP Mike Pence Phishing scammers have started to impersonate President Trump and Vice President Mike Pence in emails that distribute malware or perform extortion scams.
Read More
Phishers Try 'Text Direction Deception' Technique to Bypass Email Filters With COVID-19 concerns running high, attackers are trying new tactics to get to users.
Read More
Office 365 Phishing Uses CSS Tricks to Bypass Email Gateways A phishing campaign using Office 365 voicemail lures to trick them into visiting landing pages designed to steal their personal information or infect their computers with malware.
Read More
Coronavirus pandemic creates 'perfect storm' for cybercriminals As the country grapples with the burgeoning coronavirus pandemic, cybersecurity experts are warning that employees working from home are increasingly being targeted by aggressive cybercriminals trying to capitalize on their unfamiliarity with remote work.
Read More
NYC names winners of small-business cybersecurity challenge Three companies were on Tuesday selected as winners in a New York City competition designed to promote the development of affordable, cutting-edge cybersecurity tools for small businesses.
Read More
Beware of Black Friday email scams, say experts Fake websites, fake products and fake apps are ready and waiting to snag shoppers this holiday season, according to experts. “Every year at this time, email-based scams rise to a fever pitch,” Dave Baggett, co-founder and CEO of the anti-phishing startup INKY, told Fox News. One reason scams are so prolific is, Baggett said, bad guys keep churning out lots of fake web domains. For example, they might register a website with a URL such as “amazon-black-friday-deals,” then send out authentic-looking Amazon emails, he explained.
Read More