Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

netacea

The Cyberfraud Economy: 1 in 4 Consumers Tempted by 'Refund Hacks'

May 15, 2025 By Netacea In Netacea
Retail fraud is becoming increasingly normalized in the US and UK as ‘refund hacks’ are promoted to consumers by organized crime gangs looking to recruit both knowing and unwitting digital mules. This positioning of fraudulent activity as a ‘refund hack’ deliberately hides its illegal nature. Combined with growing awareness of fraud techniques – both online and offline – it’s driving consumer acceptance of casual fraud. This is bad news for retailers.
Read Post

The MemcycoFM Show: Episode 1 - Disrupting AI-Powered Phishing, What CISOs Must Do Now

May 14, 2025 By Memcyco In Memcyco
Welcome to the inaugural episode of our sparkling new podcast, The MemcycoFM Show. Your new go-to for everything digital deception, brandjacking, and real-time cybersecurity defense. In our first episode, two of our own Memcycans discuss why AI-powered phishing is changing the threat landscape and what CISOs must do to stay ahead. Powered by Memcyco’s mission to protect trust in the digital world.
View Video
fidelis security

Cyber Deception as a Strategic Pillar in Active Defense

May 13, 2025 By Fidelis Security In Fidelis Security
The cat-and-mouse game of cybersecurity never stops, and cyber deception in active defense gives defenders a powerful edge. Sun Tzu’s ancient wisdom “All warfare is based on deception” fits modern cyber defense strategies perfectly. Outsmarting adversaries has become just as crucial as blocking them.
Read Post
tripwire

Report Reveals BEC Cryptocurrency Scams Rose by 344%

May 13, 2025 By Katrina Thompson In Tripwire
APWG's Q4 2024 Phishing Activity Trends Report, published March 19th, revealed that more than eight in ten Business Email Compromise (BEC) attacks last quarter were sent by attackers favoring Google's free webmail service. By comparison, only 10% used Microsoft's free email web app, Outlook.com.
Read Post
centripetal

Security Bulletin: Magecart Skimming Campaign

May 8, 2025 By Anna Balabushko In Centripetal
Magecart is a long-running digital skimming threat attributed to multiple financially motivated cybercriminal groups specializing in the theft of payment card data from e-commerce websites. First identified in 2015, Magecart attacks have continuously evolved, leveraging compromised third-party services, supply chain vulnerabilities, and increasingly sophisticated obfuscation tactics to inject malicious JavaScript skimmers into checkout pages.
Read Post
knowbe4

Warning: Phishing Campaign Impersonates the US Social Security Administration

May 7, 2025 By Cindy Zhou In KnowBe4
Researchers at Malwarebytes warn that phishing emails are impersonating the US Social Security Administration (SSA) to trick users into installing the ScreenConnect remote access tool. ScreenConnect is a legitimate tool used for remote IT management, but it can be abused by hackers to take control of victims’ computers.
Read Post
The Evolving Threat Landscape: How Authentication Management Is Key to Protecting Your Business from Fraud

The Evolving Threat Landscape: How Authentication Management Is Key to Protecting Your Business from Fraud

May 6, 2025 By SecuritySenses In SecuritySenses
As cybercrime continues to evolve, businesses face an increasing number of sophisticated fraud attempts. From identity theft to financial fraud, the digital age has brought about new challenges in maintaining security. One of the most effective ways to mitigate the risks associated with these threats is through strong authentication management. By employing robust authentication measures, companies can significantly reduce the likelihood of fraud, ensuring their operations remain secure and trustworthy.
Read Post
splunk

Imposters at the Gate: Spotting Remote Employment Fraud Before It Crosses the Wire

May 5, 2025 By Alex Orleans In Splunk
Have you ever sat in an interview and felt that something wasn't quite right? Your intuition may have been closer to the truth than you realized. A new kind of adversary has emerged, and they aren’t trying to break through your firewall; instead, they are logging in through your VPN using their freshly issued business credentials.
Read Post
knowbe4

Xfinity Scam Might Explain Similar Scams

May 1, 2025 By Roger Grimes In KnowBe4
Recently, I covered a T-Mobile scam where a friend of mine narrowly avoided losing money. In that scam, the attackers called up pretending to be from T-Mobile offering him a cannot-pass-up 30% discount on future T-Mobile bills. While he was initially suspicious of the unexpected callers, they gained his confidence by repeating the amounts of his last two T-Mobile bills, billing address, and knew that his wife was also on the account.
Read Post

Roger Grimes talks AI Deepfake Threats with theCUBE at RSAC 2025

May 1, 2025 By KnowBe4 In KnowBe4
Roger Grimes, KnowBe4's Data-Driven Defense Evangelist, reveals how autonomous, and AI-powered deepfake malware is transforming the cybersecurity landscape in this eye-opening RSAC 2025 interview with @siliconangle. Discover why organizations must urgently prepare for sophisticated social engineering attacks that leverage AI technology to bypass traditional security measures. KnowBe4 empowers your workforce to make smarter security decisions every day. Over 70,000 organizations worldwide trust the KnowBe4 platform to strengthen their security culture and reduce human risk.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.