News & Blog

Our stories.

A new post by the Microsoft security team warns about a new type of phishing attack vector targeting users. Consent Phishing, as they refer to it as, targets users by asking for an egregious amount of permissions from Single-Sign-On applications.

GitLab Employees Had a 59% Failure Rate in a Recent Phishing Test

59% of GitLab employees who were tested in a recent phishing campaign and clicked on a suspicious link failed by putting in credentials. Even highly tech focused companies such as GitLab have a severe failure rate that can have a significant impact.

User Credential Theft Prevention

Social engineering is the process of attacking the human, or employee, rather than the technology directly. Through social tactics, an employee is tricked into performing an action, such as installing malicious software or performing a transaction.

Anti-Phishing Security Control Checklist

This anti-phishing checklist outlines key controls that help to prevent phishing, improve phishing detection, and minimize the impact from phishing.

Verizon Data Breach Investigations Report (DBIR) - 2019

The Verizon Data Breach Investigations Report (DBIR) provides valuable information on the threats facing organizations today. The DBIR is produced by Verizon with a collaboration of many security entities.

Ten Steps to Creating a Phishing Awareness Campaign

The following slideshare, authors Christopher Hadnagy and Michele Fincher outline ten steps to creating a phishing awareness campaign for an organization. PhishingBox provides the tools needed to easily implement such a program.

Social Tactics Remain a Significant Threat

Social tactics includes phishing and other related social engineering activities. Basically, social tactics are methods used to penetrate an organization’s cybersecurity defenses by attacking the human.

What is the phishing failure rate by industry?

Employee security awareness should include phishing prevention training. This training should include phishing simulation. However, what is an expected phishing failure rate? The following article outlines phishing failure rates by industry.

Internet Security Threat Report (ISRT) - 2019

The Symantec Internet Security Threat Report (ISRT) for 2019 is continues to provide valuable information for the security professional. This annual security report provides key statistics that outline cybersecurity risks experienced by various orga

Presbyterian Healthcare Services Data Breach Impacts 183,000 Patients

New Mexico-based Presbyterian Healthcare Services is notifying approximately 183,000 patients and health plan members that some of their protected health information (PHI) has been exposed in a recent security breach.

Here’s how to make sure you’re safe after the Capital One hack

The personal information of about 100 million U.S. customers was compromised.

FTC Announces Major Crackdown on Vishing

The Federal Trade Commission and law enforcement plan to file charges against several companies and individuals as part of a major government clampdown on illegal robocalls.

Scammers plant links in Google Calendar

Have you received a calendar invite recently and something just did not feel right, Phishing Scammers are now accessing your calendar. Do not accept suspicious invites. Read some tips and find a link to the full article blow.

Indiana Pacers Basketball team falls for Phishing Attack

"The Indiana Pacers franchise, Pacers Sports & Entertainment (PSE), fell victim to a phishing attack which resulted in unauthorized gaining access to emails containing personal information related to a limited number of individuals."

EY Global Information Security Survey - 2018

EY is a global leader in in assurance and advisory services. For several decades EY has been conducting a Global Information Security Survey (GISS). The 2018 security survey from EY provides some valuable insight into the cybersecurity threat. Cyb

Verizon Data Breach Investigations Report - 2018

In its eleventh edition, the Verizon Data Breach Investigations Report (DBIR) continues to be a wealth of information for security professionals. Email threats, such as phishing, continue to be a problem.

Check Point Research 2018 Security Report Summary

Check Point Research has released their 2018 Security Report. This information security report provides insight into today’s threat landscape, including email-borne threats such as phishing.