Malware, Security and Social - Information Technology Zone

Are Your Firewalls and VPNs the Weakest Link in Your Security Stack?

Network World

OCTOBER 21, 2024

Zero Trust architecture was created to solve the limitations of legacy security architectures. Recent critical vulnerabilities in VPNs and firewalls have exposed the risks associated with perimeter-based security measures. Security requires an adaptive model that understands the fluidity and dynamism of the modern digital landscape.

Firewall

Firewall Security Architecture Strategy

Cybercriminals Deploy New Malware to Steal Data via Android’s Near Field Communication (NFC)

Tech Republic Security

AUGUST 23, 2024

A new malware called NGate allows cybercriminals to steal near field communication data from Android phones via sophisticated social engineering. The data is relayed to the fraudsters before being used to steal cash.

Malware

Malware Data Social Engineering

Cybersecurity: Attacker uses websites’ contact forms to spread BazarLoader malware

Tech Republic Security

MARCH 14, 2022

A new social engineering method is spreading this malware, and it’s very easy to fall for. The post Cybersecurity: Attacker uses websites’ contact forms to spread BazarLoader malware appeared first on TechRepublic. Here’s what it’s doing and how to avoid it.

Malware

Malware Social Engineering How To

Webinars

Maximizing Profit and Productivity: The New Era of AI-Powered Accounting

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Malware Response Checklist

Tech Republic Security

FEBRUARY 15, 2024

Whether an infection is the result of a disgruntled employee, hardware vulnerability, software-based threat, social engineering penetration, robotic attack or human error, all organizations must be prepared to immediately respond effectively to such an issue if the corresponding damage is to be minimized.

Malware

Malware Hardware Social Engineering

Chinese cyber espionage growing across all industry sectors

CIO Business Intelligence

MARCH 4, 2025

Security researchers are warning of a significant global rise in Chinese cyber espionage activity against organizations in every industry. The report also highlighted that Chinese groups continue to share malware tools a long-standing hallmark of Chinese cyber espionage with the KEYPLUG backdoor serving as a prime example.

Industry

Industry Malware Telecommunications Groups

Human firewalls: The first line of defense against cyber threats in 2025

CIO Business Intelligence

MARCH 14, 2025

But even as AI lends more attacking power to cyber criminals and cybersecurity professionals likewise incorporate AI into their threat-fighting arsenals , the single most powerful factor that can help fend off attacks is what was once the weakest link in security: human behavior. In the past few months, infostealer malware has gained ground.

Firewall

Firewall Malware Training Security

IBM X-Force Report: Grandoreiro Malware Targets More Than 1,500 Banks in 60 Countries

Tech Republic Security

MAY 23, 2024

Find out how Grandoreiro banking trojan campaigns work and the countries targeted, as well as how to mitigate this malware threat.

Malware

Malware Banking IBM Report

Dulling the impact of AI-fueled cyber threats with AI

CIO Business Intelligence

OCTOBER 24, 2024

While poised to fortify the security posture of organizations, it has also changed the nature of cyberattacks. From prompt injections to poisoning training data, these critical vulnerabilities are ripe for exploitation, potentially leading to increased security risks for businesses deploying GenAI.

Dell

Dell Artificial Intelligence Training Security

DeepSeek and AI-Generated Malware Pose New Danger for Cybersecurity

SecureWorld News

MARCH 13, 2025

A recent report from Tenable highlights how DeepSeek R1, an open-source AI model, can generate rudimentary malware, including keyloggers and ransomware. While the AI-generated malware required manual debugging to function properly, its mere existence signals an urgent need for security teams to adapt their defenses.

Malware

Malware Security Tools Report

Chinese cyber espionage growing across all industry sectors

CIO Business Intelligence

MARCH 4, 2025

Security researchers are warning of a significant global rise in Chinese cyber espionage activity against organizations in every industry. The report also highlighted that Chinese groups continue to share malware tools a long-standing hallmark of Chinese cyber espionage with the KEYPLUG backdoor serving as a prime example.

Industry

Industry Malware Telecommunications Groups

8 major IT disasters of 2024

CIO Business Intelligence

DECEMBER 24, 2024

Microsoft in February launched an investigation of its Copilot AI chatbot after reports on social media of it taunting users who suggested they were considering suicide. One glitch blocked parents without Social Security numbers from filling out the form. It seems like there were a combination of mistakes.

Financial

Financial Malware Microsoft Airlines

Malware response checklist

Tech Republic Security

JANUARY 22, 2023

Whether an infection is the result of a disgruntled employee, hardware vulnerability, software-based threat, social engineering penetration, robotic attack or human error, all organizations must be prepared to immediately respond effectively to such an issue if the corresponding damage is to be minimized.

Malware

Malware Hardware Social Engineering

For security leaders, AI is a mounting peril and an emerging shield

CIO Business Intelligence

JULY 25, 2024

The already heavy burden born by enterprise security leaders is being dramatically worsened by AI, machine learning, and generative AI (genAI). In the hands of adversaries, AI exploits two attack vectors: It makes a range of existing attacks – such as social engineering, phishing, deep fakes, and malware – faster and much more effective.

Security

Security Malware Enterprise Enterprise

Document Security is More than Just Password-Protection

CIO Business Intelligence

OCTOBER 4, 2023

From embedding malware or a phishing link in a document to manipulated or outright forged documents and other types of cyber fraud, the increase in document-related attacks cannot be ignored, especially if your company handles tax forms, business filings, or bank statements–the three types of most frequently manipulated documents.

Security

Security Disaster Recovery Malware Authentication

CrowdStrike Security Report: Generative AI Powers Social Engineering Attacks

Tech Republic

FEBRUARY 27, 2025

Trends in cybersecurity across 2024 showed less malware and phishing, though more social engineering. CrowdStrike offers tips on securing your business.

Engineering

Engineering Social Security Malware

INE Security Enables CISOs to Secure Board Support for Cybersecurity Training

CIO Business Intelligence

MAY 27, 2024

If there is a single theme circulating among Chief Information Security Officers (CISOs) right now, it is the question of how to get stakeholders on board with more robust cybersecurity training protocols. Human error remains one of the leading causes of security breaches. million compared to those with lower levels.

Training

Training Security Case Study Study

SpyCloud’s 2025 Identity Exposure Report Reveals the Scale and Hidden Risks of Digital Identity Threats

CIO Business Intelligence

MARCH 19, 2025

Holistic Identity: The New Cyber Battleground Organizations have traditionally focused on securing individual account credentials, but SpyClouds research indicates that cybercriminals have expanded their tactics beyond conventional account takeover. Consumer exposure averages 27 unique emails and 227 credential pairs per user.

Report

Report Malware Security Data

Copilot: an indispensable tool for banking security teams

CIO Business Intelligence

FEBRUARY 22, 2024

These can be via social engineering, known as ‘hacking the human’, or via unsecured technology like apps, data and networks. In essence, banks are only as secure as their least protected device. Leveraging AI for cyber defences Microsoft Security Copilot is one tool that uses generative AI in such a way.

Banking

Banking Tools Security Malware

Game Change: Three Reasons Why #SonyHack Will Change Security

CTOvision

DECEMBER 19, 2014

The White House declares it’s a national security issue and leaks intelligence that North Korea is behind the attack. See the interview here: Tactics Not Malware Are the Story. The hackers captured and exfiltrated hundreds of terabytes of data then torched the network with wiper malware. Game Change. They will be all ears.

Security

Security Malware Meeting Media

2025 SecureWorld Theme: Once Upon a Time in Cybersecurity

SecureWorld News

JANUARY 7, 2025

Just as these cautionary fables have guided generations, modern stories now light our path through the complex security landscape. Be mindful of the dangers of poisoned gifts (malware), and stay vigilant against these sweet but dangerous schemes. Welcome to SecureWorld's theme for 2025: Once Upon a Time in Cybersecurity.

Malware

Malware Social Security Engineering

What is AI’s current impact on cybersecurity?

CIO Business Intelligence

OCTOBER 25, 2023

Sikorski discusses where attackers benefit from AI and how it will supercharge social engineering attacks. As Sikorski aptly puts it, “Lowering the bar for social engineering attacks means attackers are less likely to be caught due to language inconsistencies.” Cyberattacks, Security

Artificial Intelligence

Artificial Intelligence Malware Engineering CTO

Securing 5G for 2023 and beyond

CIO Business Intelligence

FEBRUARY 24, 2023

By Anand Oswal, Senior Vice President and GM at cyber security leader Palo Alto Networks While mobile technology has been around for decades, the current generation, 5G, is increasingly being recognized for the exciting new benefits it brings to enterprises, SMBs, and public sector organizations. Security needs to keep up.

Security

Security Network Virtualization Applications

Why endpoint security will be a renewed priority for businesses of all sizes in 2023

CIO Business Intelligence

NOVEMBER 23, 2022

A recent spate of high-profile security breaches at some of the largest enterprises in Australia has reminded everyone of the importance of security. The biggest challenge when it comes to cyber crime is that there are so many different security risks to manage. vPro also boosts security for virtualised environments.

Security

Security Intel Malware Training

3 ways to deter phishing attacks in 2023

CIO Business Intelligence

OCTOBER 20, 2022

In fact, CIO has reported that it takes only a few minutes for experienced hackers to set up a social engineering attack against enterprises (and their managed service providers) that consider themselves to be secure and protected. This helps in early identification of attacks and increasing overall security hygiene.

Training

Training Banking Social Malware

Omni Hotels was hit by point-of-sale malware

Network World

JULY 10, 2016

Omni Hotels & Resorts has reported that point-of-sale systems at some of its properties were hit by malware targeting payment card information. The malware was designed to collect certain payment card information, including cardholder name, credit/debit card number, security code and expiration date,” Omni said.

Hotels

Hotels Malware Retail System

Add brand security to your workload

CIO Business Intelligence

DECEMBER 7, 2022

Social media security has just risen to be a top priority for not only CISOs, but CMOs, CFOs, and CEOs. As a result, we can expect it to play a more prominent role in malware attacks, security breaches, and identity verification hoaxes. Strengthening identity on social media More of these attacks could be coming.

Security

Security Media Social System

CrowdStrike 2024 Global Threat Report: 6 Key Takeaways

Tech Republic Security

FEBRUARY 26, 2024

Identity-based and social engineering attacks still take center stage, according to the CrowdStrike 2024 Global Threat Report.

Report

Report Engineering Social Malware

Security attacks and countermeasures

Cloud Musings

DECEMBER 14, 2014

Johnson Cyber security is rapidly becoming a significant issue in the C-suite as well as the population at large. The results of Dell’s Global Technology Adoption Index(GTAI) [1] show that security is a top concern for most of the 2000 global small and medium businesses surveyed. by Sandra K. For example, recent breaches include 3.65

Security

Security Malware Internet Dell

Mobile Malware Uses Deepfakes, Social Engineering to Bypass Biometric Authentication

SecureWorld News

FEBRUARY 15, 2024

A sophisticated form of mobile malware dubbed "GoldPickaxe" has been uncovered, which collects facial recognition data to produce deepfake videos, enabling hackers to bypass biometric authentication protections on banking apps. The malware has been active since 2023, specifically targeting victims in Vietnam and Thailand.

Malware

Malware Authentication Mobile Engineering

FBI Provides An Update On #SonyHack Investigation Including Some Tech Details On Attribution

CTOvision

DECEMBER 19, 2014

The FBI has determined that the intrusion into SPE’s network consisted of the deployment of destructive malware and the theft of proprietary information as well as employees’ personally identifiable information and confidential communications. Analysis CTO Cyber Security Cyberwar FBI sonyhack' The FBI stands ready to assist any U.S.

Malware

Malware Analysis Government Network

The hidden costs of your helpdesk

CIO Business Intelligence

AUGUST 29, 2024

Then there are the potential security vulnerabilities that go hand-in-hand with frequent lockouts, password resets, and re-verifications. Most authentication methods are actually quite easy to get around, and in many cases were never intended to be security factors. All of these delays and interruptions can lead to lost revenue.

Authentication

Authentication Social Security Engineering

Facebook, LinkedIn, Twitter: The New Cyberweapons Of Choice

Forrester IT

MAY 18, 2016

New social media scams and marketing #fails are common fodder for water cooler banter today - even a recent episode of HBO's Veep ran a joke where the President blames a Chinese cyberattack for sending an ill-advised tweet. But social media cybersecurity issues are far from a laughing matter, and it's time we all take notice.

Media

Media Social Malware Engineering

Social Engineering and Phishing

CTOvision

JUNE 28, 2016

Social engineering is one of the most problematic attack techniques to combat. User education is most effective at stopping a social engineer. Users who are aware of the potential for social engineering attacks and learn to recognize them can use simple methods to thwart these attacks successfully. Stu Sjouwerman.

Engineering

Engineering Social Banking Malware

Don’t gamble with your identity verification practices

CIO Business Intelligence

OCTOBER 16, 2023

I also emphasized that companies need to urgently review their employee access protocol, writing that companies must “ make it a point to do continuous employee training to help your teams avoid being duped by phishing and malware tactics.” IBM Security pegged that same number higher, to 95%.

Authentication

Authentication Social Engineering Security

AI-assisted cybersecurity: 3 key components you can’t ignore

Network World

SEPTEMBER 12, 2024

AI is really a toolkit made up largely of machine learning and LLMs, many of which have been applied for over a decade to tractable problems like novel malware detection and fraud detection. Let’s dig into three aspects at the interface of cybersecurity and AI: the security of AI, AI in defense, and AI in offense.

Security

Security Applications Malware Government

SquareX Discloses “Browser Syncjacking”, a New Attack Technique that Provides Full Browser and Device Control, Putting Millions at Risk

CIO Business Intelligence

JANUARY 30, 2025

Browser extensions have been under the spotlight in enterprise security news recently due to the wave of OAuth attacks on Chrome extension developers and data exfiltration attacks. This revelation suggests that virtually any browser extension could potentially serve as an attack vector if created or taken over by an attacker.

Security

Security Enterprise Enterprise Authentication

Google warns of ‘novel social engineering method’ used to hack security researchers

The Verge

JANUARY 26, 2021

Government-backed hackers based in North Korea are targeting individual security researchers through a number of means including a “novel social engineering method,” Google’s Threat Analysis Group is reporting. The campaign is the latest incident of security researchers being targeted by hackers.

Research

Research Social Engineering Google

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

Experts warn that organizations must act decisively to protect against this growing threat by implementing Zero Trust architectures, patching vulnerabilities, and strengthening identity security. Even the most secure device from a decade ago is likely quite vulnerable to a modern-day attack.

SMB

SMB Security Network Strategy

Claim: DeepSeek AI can be hacked to generate malware

Dataconomy

FEBRUARY 13, 2025

Experts warn that DeepSeek, a generative AI developed in China, has failed multiple security tests, raising concerns about the risks for users. The Silicon Valley security provider AppSOC discovered significant vulnerabilities, including the ability to jailbreak the AI and generate malware. Members of the U.S.

Malware

Malware Government Applications Security

The changing face of cybersecurity threats in 2023

CIO Business Intelligence

SEPTEMBER 29, 2023

While the group’s goals were unclear and differing – fluctuating between amusement, monetary gain, and notoriety – at various times, it again brought to the fore the persistent gaps in security at even the biggest and most informed companies. Let’s revisit the most prevalent security threats and see how they’re evolving in 2023.

Network

Network Authentication Firewall Malware

Proofpoint Exposes Sophisticated Social Engineering Attack on Recruiters That Infects Their Computers With Malware

Tech Republic Big Data

DECEMBER 12, 2023

Recruiters and anyone else involved in hiring processes should be knowledgeable about this social engineering attack threat. Get the details.

Engineering

Engineering Social Malware Big Data

Starting zero trust without spending a dime

Network World

SEPTEMBER 12, 2024

Even though everyone within the IT and security industries sees the need for zero trust to combat today’s malware and ransomware threats, not everybody has the resources or the business backing to do it full-scale. VIPs and execs especially won’t like this, but they must consider themselves targets of attacks and abide by this policy.

Policies

Policies Firewall Resources Network

6 Internet Security Tips For 2020

Galido

NOVEMBER 24, 2019

Information Technology Blog - - 6 Internet Security Tips For 2020 - Information Technology Blog. There are many other things that people need to adhere to in order to make sure that they keep themselves and their systems safe from harmful malware threats. Let’s take a look at some popular internet security tips for 2020.

Internet

Internet Security Malware Banking

Why You Need to Get on the Zero Trust Network Access Express Lane

CIO Business Intelligence

JUNE 23, 2022

Today’s work from anywhere culture, escalating ransomware, and an explosion of Internet of Things (IoT) devices are among the trends that are driving enterprises to rethink their approach to secure network access. Virtual Private Networks (VPNs) have long been the go-to method for providing remote users secure access to the corporate network.

Network

Network Malware Authentication Enterprise

Are Your Firewalls and VPNs the Weakest Link in Your Security Stack?

Cybercriminals Deploy New Malware to Steal Data via Android’s Near Field Communication (NFC)

Webinars

Trending Sources

Cybersecurity: Attacker uses websites’ contact forms to spread BazarLoader malware

Webinars

Malware Response Checklist

Chinese cyber espionage growing across all industry sectors

Human firewalls: The first line of defense against cyber threats in 2025

IBM X-Force Report: Grandoreiro Malware Targets More Than 1,500 Banks in 60 Countries

Dulling the impact of AI-fueled cyber threats with AI

DeepSeek and AI-Generated Malware Pose New Danger for Cybersecurity

Chinese cyber espionage growing across all industry sectors

8 major IT disasters of 2024

Malware response checklist

For security leaders, AI is a mounting peril and an emerging shield

Document Security is More than Just Password-Protection

CrowdStrike Security Report: Generative AI Powers Social Engineering Attacks

INE Security Enables CISOs to Secure Board Support for Cybersecurity Training

SpyCloud’s 2025 Identity Exposure Report Reveals the Scale and Hidden Risks of Digital Identity Threats

Copilot: an indispensable tool for banking security teams

Game Change: Three Reasons Why #SonyHack Will Change Security

2025 SecureWorld Theme: Once Upon a Time in Cybersecurity

What is AI’s current impact on cybersecurity?

Securing 5G for 2023 and beyond

Why endpoint security will be a renewed priority for businesses of all sizes in 2023

3 ways to deter phishing attacks in 2023

Omni Hotels was hit by point-of-sale malware

Add brand security to your workload

CrowdStrike 2024 Global Threat Report: 6 Key Takeaways

Security attacks and countermeasures

Mobile Malware Uses Deepfakes, Social Engineering to Bypass Biometric Authentication

FBI Provides An Update On #SonyHack Investigation Including Some Tech Details On Attribution

The hidden costs of your helpdesk

Facebook, LinkedIn, Twitter: The New Cyberweapons Of Choice

Social Engineering and Phishing

Don’t gamble with your identity verification practices

AI-assisted cybersecurity: 3 key components you can’t ignore

SquareX Discloses “Browser Syncjacking”, a New Attack Technique that Provides Full Browser and Device Control, Putting Millions at Risk

Google warns of ‘novel social engineering method’ used to hack security researchers

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

Claim: DeepSeek AI can be hacked to generate malware

The changing face of cybersecurity threats in 2023

Proofpoint Exposes Sophisticated Social Engineering Attack on Recruiters That Infects Their Computers With Malware

Starting zero trust without spending a dime

6 Internet Security Tips For 2020

Why You Need to Get on the Zero Trust Network Access Express Lane

Stay Connected