%term

Warning: Crooks Are Using Vishing Attacks to Compromise Salesforce Instances

Jun 9, 2025 By KnowBe4 Team In KnowBe4

A criminal threat actor tracked as “UNC6040” is using voice phishing (vishing) attacks to compromise organizations’ Salesforce instances, according to researchers at Google’s Threat Intelligence Group. After gaining access, the attackers exfiltrate the victim’s data and hold it for ransom.

Read Post

KnowBe4

Read more about Warning: Crooks Are Using Vishing Attacks to Compromise Salesforce Instances

Is Your Rented Server Safe Enough?

Jun 9, 2025 By SecuritySenses In SecuritySenses

We get it-you've rented a server. Whether it's for your business, your app, your game, or just that brilliant startup idea you're nurturing, renting a server feels like leveling up. It's exciting, empowering... and terrifying. Because the moment that server is online, it's visible to the entire internet. Including the bad guys. Hackers, bots, DDoS armies, and other digital troublemakers don't care that it's "just a test project." If it's online, it's fair game. So, how do you protect it?

Read Post

SecuritySenses

Read more about Is Your Rented Server Safe Enough?

Client-Side Exploitation Attack Path

Jun 6, 2025 By CrowdStrike In CrowdStrike

Client-side exploit delivery methods like malicious documents or browser-based attacks are among the most common ways adversaries gain initial access. But without visibility into these entry points, many attack paths go undetected. This demo shows how Falcon Exposure Management identifies and maps attack paths that begin with client-side exploitation. By combining exploit visibility with real network context and asset criticality, security teams can uncover hidden lateral movement risks and take action fast.

View Video

CrowdStrike

Read more about Client-Side Exploitation Attack Path

How Falcon Next-Gen SIEM Protects Enterprises from VMware vCenter Attacks

Jun 5, 2025 By Tony Gore - Adrian Godoy In CrowdStrike

Internet-facing assets are targeted for many reasons, such as to establish persistence, evade defensive capabilities, and access sensitive networks. According to the search engine Shodan, approximately 1,600 VMware vSphere instances are directly accessible via the internet, representing a significant attack surface.

Read Post

CrowdStrike

Read more about How Falcon Next-Gen SIEM Protects Enterprises from VMware vCenter Attacks

The Rising Tide: Understanding the Surge in Cyber Attacks in India

Jun 3, 2025 By Kirsten Doyle In Tripwire

Over the past year, India witnessed a steep rise in cyberattacks. While news focused on big-ticket data breaches and mainstream ransomware attacks, it ignored how the overall threat landscape has become more sophisticated and ingrained. India detected over 369 million malware events between October 2023 and September 2024, at a rate of 702 potential threats per minute on average.

Read Post

Tripwire

Read more about The Rising Tide: Understanding the Surge in Cyber Attacks in India

The Most Concerning CyberSecurity Statistics From Recent Data

Jun 3, 2025 By SecuritySenses In SecuritySenses

If you've been paying attention to cybersecurity lately, it's hard not to notice just how fast the landscape is shifting. Threats that were once rare a few years ago are now occurring weekly-sometimes daily-and they're targeting larger targets with more severe consequences. It's not just about data theft anymore. Whole systems are being locked up, leaked, or dismantled in hours. The most recent statistics show just how aggressive and sophisticated these attacks have become, and 2025 is shaping up to be a pivotal year for digital security.

Read Post

SecuritySenses

Read more about The Most Concerning CyberSecurity Statistics From Recent Data

INE Security Alert: $16.6 Billion in Cyber Losses Underscore Critical Need for Advanced Security Training

Jun 2, 2025 By INE Security

New FBI Data Reveals Organizations Need Deeper Technical Expertise to Detect, Contain, and Remediate Advanced Attacks.

Read Post

Read more about INE Security Alert: $16.6 Billion in Cyber Losses Underscore Critical Need for Advanced Security Training

The Evolution of Phishing Attacks: Why Traditional Detection Methods Are Failing

Jun 2, 2025 By Isla Sibanda In Tripwire

If they weren't so harmful to both businesses and consumers, the sophistication of modern phishing would be quite impressive. Today's most invasive cybercriminals have moved beyond the old strategies of generic mass-email scams. They're now leveraging advanced technologies like Artificial Intelligence (AI,) deepfake media, and real-time behavioral analytics to craft highly personalized and nearly undetectable attacks.

Read Post

Tripwire

Read more about The Evolution of Phishing Attacks: Why Traditional Detection Methods Are Failing

How To Prevent Man-in-the-Middle Attacks

May 30, 2025 By Keeper Security In Keeper

Man-in-the-Middle (MITM) attacks are a type of cyber attack in which cybercriminals intercept data sent between two businesses or individuals. It’s a major threat to both individuals and businesses. Watch this video to learn how you can protect yourself from Man-in-the-Middle attacks.

View Video

Keeper

Read more about How To Prevent Man-in-the-Middle Attacks

Fullscreen BitM Attack Discovered by SquareX Exploits Browser Fullscreen APIs to Steal Credentials in Safari

May 29, 2025 By SquareX

Today, SquareX released new threat research on an advanced Browser-in-the-Middle (BitM) attack targeting Safari users. As highlighted by Mandiant, adversaries have been increasingly using BitM attacks to steal credentials and gain unauthorized access to enterprise SaaS apps. BitM attacks work by using a remote browser to trick victims into interacting with an attacker-controlled browser via a pop-up window in the victim's browser.

Read Post