Security News > 2021 > August > Increase in credential phishing and brute force attacks causing financial and reputational damage
Key findings 32.5% of all companies were targeted by brute force attacks in early June 2021.
73% of all advanced threats were credential phishing attacks.
Credential phishing and brute force attacks surging.
Over the course of the quarter, researchers saw a significant increase in credential phishing, as well as brute force attacks, which are used to obtain personal information such as passwords, passphrases and usernames through a string of continuous, automated attempts.
"Socially-engineered attacks are dramatically rising within enterprises, worldwide, creating unprecedented financial and reputational risks," said Evan Reiser, CEO, Abnormal Security.
"These never-before-seen attacks are becoming more sophisticated with every passing day. They don't contain indicators of compromise, such as links, attachments and reputational risks, so they evade secure email gateways and other traditional email infrastructure, landing in inboxes where unsuspecting employees fall victim to their schemes, which include ransomware. In order to effectively protect against these attacks, we can no longer rely only upon established threat intelligence."
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/w-TiwC5TThk/
Related news
- VPN vulnerabilities, weak credentials fuel ransomware attacks (source)
- Phishing-as-a-Service "Rockstar 2FA" Targets Microsoft 365 Users with AiTM Attacks (source)
- North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks (source)
- GenAI makes phishing attacks more believable and cost-effective (source)
- CERT-UA Warns of Phishing Attacks Targeting Ukraine’s Defense and Security Force (source)
- Inside the incident: Uncovering an advanced phishing attack (source)
- Ongoing phishing attack abuses Google Calendar to bypass spam filters (source)