Our stories and latest developments.
When conducting social engineering testing as part of an audit or security assessment, should the client provide a listing of employees to test? Doing so is generally termed white box testing, as detailed information is provided to the auditor. The term “white box testing” was ori
Social engineering attacks, or attacks on the human component of security, are a significant threat to businesses. With the proliferation of online tools and resources or attackers, the threat continues to grow. Although a business can sp
The United Nations Office on Drugs and Crime was tasked with conducting a comprehensive study of the problem of cybercrime. The study, Comprehensive Study on Cybercrime, was conducted from February
BAE Systems Detica commissioned a report, Organized Crime In The Digital Age, by the John Grieve Centre for Policing and Security at London Metropolitan University to look in detail at the structure of organized digital crime
Cisco research on targeted phishing attacks explains why email remains the primary attack vector for cyber criminals.
In 2011, Dimensional Research and Check Point conducted a survey of IT Professionals on The Risk Of Social Engineering On Information Security. The report provides some key insights into security professionals concerns related to social engineering risks and what they are doing about such threats.
The report from Kaspersky Labs is on the evolution of phishing attacks from 2011-2013. The information was collected from the Kaspersky Security Network cloud service used to gain a better understanding of the global landscape of phishing threats from a variety
The Symantec Internet Security Threat Report includes vast information on security related issues, including social engineering facts. Spam, phishing, and malware data is captured through a variety of sources. These res
Although a few years old, a survey from Gartner shows the cost of phishing attacks. The threat to business and consumers is substantial. Since the survey was co
