Develop a strong security mindset with articles focused on security awareness principles, social engineering defense, safe browsing habits, password hygiene, and recognizing manipulation tactics used by attackers targeting human vulnerabilities.
posts
In January 2024, a finance employee at a multinational firm in Hong Kong wired $25 million to threat actors after a video call with what appeared to be the company's CFO. It was a deepfake. The attack started with a single phishing email. If your phishing definition still
In January 2024, a finance employee at Arup — a multinational engineering firm — joined a video call with what appeared to be the company's CFO and several colleagues. Every person on that call was a deepfake. The employee transferred $25 million to accounts controlled by threat actors. The attack
In March 2024, a finance employee at a multinational firm in Hong Kong wired $25 million to threat actors after joining a video call that turned out to be entirely deepfake — triggered by a single phishing link in an email. That link didn't contain a virus. It didn&
In January 2024, a finance employee at a multinational firm in Hong Kong transferred $25.6 million to criminals after attending a deepfake video call where every other "participant" — including the CFO — was an AI-generated impersonation. That single incident redefines what phishing looks like today. If you still
In 2023, the FBI's Internet Crime Complaint Center received over 880,000 complaints with potential losses exceeding $12.5 billion — a 22% increase in losses from the year before. That's not a theoretical number. Those are real businesses shuttered, real retirement accounts emptied, and real hospitals
In March 2024, a Change Healthcare breach exposed the protected health information of tens of millions of Americans and disrupted pharmacy operations nationwide. A single set of stolen credentials — no multi-factor authentication in place — gave a threat actor the keys to one of the largest healthcare payment processors in the
In March 2024, a ransomware attack on Change Healthcare — one of the largest health payment processors in the U.S. — disrupted claims processing for pharmacies and hospitals nationwide. Patients couldn't fill prescriptions. Providers couldn't get paid. A single breach paralyzed a massive chunk of American healthcare
The Word Everyone Uses But Few Can Explain In March 2024, the FBI's Internet Crime Complaint Center (IC3) released its 2023 annual report showing $12.5 billion in reported cybercrime losses — a 22% jump from the year before. Politicians, news anchors, and boardroom executives all toss around the
In January 2024, a finance employee at engineering firm Arup wired $25 million to threat actors after a deepfake video call that impersonated the company's CFO. That attack didn't start with a mass spam blast. It started with a carefully researched, individually targeted spear phishing email.
In February 2024, the FBI warned that threat actors stole over $10 billion through internet-enabled fraud in 2023 — and SMS-based phishing, commonly called smishing, was one of the fastest-growing attack vectors cited in the FBI IC3 annual report. If you think smishing is just a nuisance text from a fake
