More than 90% of phishing intrusions between July and September have been aimed at Microsoft Outlook and Gmail inboxes, with threat actors increasingly weaponizing trusted platforms to facilitate compromise, according to GBHackers News.
AI was the constant background hum at the OWASP Global AppSec conference last week, but the scene-stealer was a keynote talk telling us that managing risk is pointless.
BleepingComputer reports that the threat group CryptoChameleon sends phishing emails to LastPass users requesting access to their password vaults by uploading death certificates.
Pakistan-linked threat operation Transparent Tribe, also known as APT36, has targeted Indian government organizations' Linux-based systems with the new DeskRAT malware as part of a cyberespionage campaign that commenced in June, Infosecurity Magazine reports.
CyberScoop reports that suspected Iranian state-linked hackers infiltrated former U.S. national security adviser John Bolton's personal email account in 2021 and threatened to leak its contents, according to an indictment unsealed Thursday.
Phishing emails generated with artificial intelligence are 4.5 times more likely to fool recipients, achieving 54% click-through rates compared to 12% for conventional phishing attempts, and AI could make phishing scams up to 50 times more profitable, according to The Register.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
