Security News

Google has not had any of its 85,000+ employees successfully phished on their work-related accounts since early 2017, when it began requiring all employees to use physical Security Keys in place...

A new phishing scam purports to be MYOB invoices - but really contains a novel banking trojan.

Brent Maher of Johnson Financial Group Offers Real-World Lessons LearnedThe key to lowering the risk of employees becoming victims of phishing is to adopt an "adult learning" approach to training,...

More than half of companies are plagued with phishing emails on a regular basis, and awareness training often isn't enough, according to an IronScales report.

DARPA-funded white hat emits timeless advice AppSec EU IT admins should focus on the fundamentals of network security, rather than worry about sophisticated state-sponsored zero-day attacks,...

When ICANN introduced domain names that can use non-ASCII characters, it created opportunities for phishers. Here's how that can be overcome.

Phishing attacks via email have increased in the past couple months. Here are the latest tactics cybercriminals are using and how to protect yourself.

Empowering your employees to easily notify IT security personnel of a phishing attack requires an Exchange rule. This tutorial explains how to set one up.

IBM Security's Caleb Barlow explained the unintended consequences of the GDPR, and how the regulation removed essential data security professionals rely on to do their job.

But OAuth Attack Defense Remains Tricky, Warns FireEye's Douglas BienstockJust one click: That's all it takes for a victim to inadvertently grant attackers access to their email account via a...