Phishing news, analysis, research, how-to, opinion, and video.

URL-spoofing bug in Safari could enable phishing attacks

Researcher develops code that can trick Safari into showing a different URL in its address bar than the one currently loaded

careless workers security

Premera, Anthem data breaches linked by similar hacking tactics

Security analysts last year saw a fake domain spoofing Premera's name

Google error leaks website owners' personal information

Privacy breach involves whois database that contains contact information for people who've bought domain names

Dangerous IE vulnerability opens door to powerful phishing attacks

The flaw can be used to steal authentication cookies and inject rogue code into websites

security phishing hook

Prevent phishing attacks with OpenDNS, 'Minority Report'-style

The use of big data analytics means potential threats can be blocked before your traditional malware defenses even know they exist

cyber security lock glow data

4 positive predictions for security in 2015

Sick of the constant drumbeat of data breaches and destructive exploits? There's no magic bullet, but these four measures may help in the coming year

electronic mail wpt037

The beginning of the end of the private mail server

Thanks to overzealous filtering by mail relays, the small mail server is becoming an endangered species

Cyber espionage group launches sophisticated phishing attacks against Outlook Web App users

Pawn Storm attacks target military agencies, embassies, defense contractors, and media organizations, Trend Micro says


The human OS: Overdue for a social engineering patch

There is no way to plant a chip in employees to make them invulnerable to social engineering attacks, but training can make them much more difficult to 'hack'

Celebrities get phished, but the cloud gets blamed

No system is perfectly secure, but the fact is the cloud is more secure than on-premises systems

State-of-the-art spear phishing and defenses

Likelihood and severity of phishing attacks support paying upfront for that ounce of prevention

Google Chrome's experiment with killing URLs appears to be on hold

For several months, Google toyed with the idea of hiding full Web addresses from users in Chrome

U.S. charges Chinese Army members with cyber espionage

Five members of the Chinese Army have been indicted for allegedly hacking U.S. firms and stealing trade secrets

Anti-phishing feature fails in beta Chrome browser

Google's 'Origin Chip' feature doesn't display long URLs, undermining its anti-phishing intentions, security company says

Phishing scams increasingly using mobile apps to bait victims

Phishers typically use spam email to try and lure victims, but Kaspersky report says the new trend is exploiting users' love of gadgets

Web apps and point-of-sale were leading hacker targets in 2013

Verizon's annual data breach report says finance was the leakiest industry, followed by the public sector and retail

Google patches Android icon permissions attack

FireEye found malware that could change other icons, sending victims to phishing sites

Phishing campaign targets Google Docs, Drive users

A fake log-in page looks legitimate since it is served up by Google over SSL, Symantec said

IRS warns of 'Dirty Dozen' tax scams for 2014

Identity theft, phone scams, and phishing lead the dirty list of tax scams

Load More