%term

Protect Yourself: Vishing Attacks Are Growing More Sophisticated

Jun 16, 2025 By KnowBe4 Team In KnowBe4

Researchers at Google’s Mandiant have published a report on voice phishing (vishing) attacks, noting that these attacks have served as initial access points for recent waves of ransomware incidents. Threat actors often perform reconnaissance before launching social engineering attacks, collecting publicly available information in order to craft tailored, realistic scenarios.

Read Post

KnowBe4

Read more about Protect Yourself: Vishing Attacks Are Growing More Sophisticated

Types of Password Attacks

Jun 15, 2025 By Keeper Security In Keeper

Some of the most common types of password attacks include password cracking, password spraying, dictionary attacks, credential stuffing, brute force and rainbow table attacks. Watch this video to learn more about why they’re dangerous and what you can do to protect yourself against password-related attacks.

View Video

Keeper

Read more about Types of Password Attacks

How Browser-Level Signals Help Prevent Credential Stuffing Attacks

Jun 13, 2025 By Arthur Zavalkovsky In Memcyco

Credential stuffing attacks are one of the most persistent and damaging account-based threats facing security teams – and one of the hardest to detect. In 2024, Akamai, a global leader in content delivery and cybersecurity, reported more than 26 billion credential stuffing attempts globally every month – a staggering volume that’s not slowing down. Most enterprises rely on server-side, post-login detection, which captures only successful login attempts.

Read Post

Memcyco

Read more about How Browser-Level Signals Help Prevent Credential Stuffing Attacks

What is SESSION HIJACKING?

Jun 13, 2025 By VISTA InfoSec In VISTA InfoSec

Explained In this video, we go deep into the concept of Session Hijacking—a common security threat that can compromise your online accounts and data. Whether you're a beginner or looking to strengthen your cybersecurity knowledge, this video provides clear explanations and practical tips.

View Video

VISTA InfoSec

Read more about What is SESSION HIJACKING?

A Guide to Staying Cyber-Safe While Learning Online

Jun 13, 2025 By SecuritySenses In SecuritySenses

Online education has grown to be a significant aspect of college life. The internet serves as your classroom, whether you're using Zoom for lectures, Google Classroom for assignments, or Microsoft Teams for group projects. The problem is that as people spend more time online, the likelihood of cyberattacks is increasing. So, how can you learn online without being hurt? Without requiring a degree in computer science, let's explore a comprehensive guide that can help you safeguard your digital identity, gadgets, and personal information.

Read Post

SecuritySenses

Read more about A Guide to Staying Cyber-Safe While Learning Online

What is a Man-in-the-Middle (MITM) Attack in Cybersecurity?

Jun 12, 2025 By miniOrange In miniOrange

A hacker intercepts or alters data between two parties in man-in-the-middle attacks, which account for 19% of breaches. Data, money and reputation are at stake in the MITM attacks.

Read Post

miniOrange

Read more about What is a Man-in-the-Middle (MITM) Attack in Cybersecurity?

What To Know About the UNFI Cyber Attack

Jun 11, 2025 By Ashley D'Andrea In Keeper

On June 9, 2025, United Natural Foods, Inc. (UNFI) – a major organic food distributor and the main grocery supplier for Whole Foods Market – reported a cyber attack. UNFI first discovered unauthorized activity in its IT systems on June 5 and immediately took some systems offline. At the time of this writing, the investigation is ongoing as officials assess the full impact of the breach.

Read Post

Keeper

Read more about What To Know About the UNFI Cyber Attack

OpenAI Report Describes AI-Assisted Social Engineering Attacks

Jun 11, 2025 By KnowBe4 Team In KnowBe4

OpenAI has published a report looking at AI-enabled malicious activity, noting that threat actors are increasingly using AI tools to assist in social engineering attacks and influence operations. In one case, the company banned ChatGPT accounts that were likely being used in North Korean attempts to fraudulently obtain jobs at US companies. “Similar to the threat actors we disrupted and wrote about in February, the latest campaigns attempted to use AI at each step of the employment process.

Read Post

KnowBe4

Read more about OpenAI Report Describes AI-Assisted Social Engineering Attacks

AI-Powered Attacks and Lack of Cyber Readiness. How Mexico Can Respond

Jun 11, 2025 By Katrina Thompson In Tripwire

The threat landscape in Mexico is a precarious one.

Read Post

Tripwire

Read more about AI-Powered Attacks and Lack of Cyber Readiness. How Mexico Can Respond

Stealth Cyberattacks at Night: How Librarian Ghouls Are Exploiting Trusted Tools to Evade Detection

Jun 10, 2025 By Foresiet In Foresiet

The cyber threat landscape is rapidly evolving. Among the most recent and concerning trends is the use of stealth attacks that bypass traditional defenses by abusing legitimate tools. One such campaign, led by a group called Librarian Ghouls, is targeting organizations across Russia with cleverly disguised phishing emails, cryptominers, and remote-access software—often operating undetected in the middle of the night.

Read Post