The FBI believes that the massive Yahoo! breach started with either a social engineering or spear phishing attack on privileged users according to Ars Technica. “Malcom Palmore, the FBI special agent in charge of the bureau’s Silicon Valley office, told Ars in an interview that the initial breach that led to the exposure of a […]
Read the Blog Post
It’s tax season. That means cyber attacks are in high gear. A trend that started last year and has increased in frequency involves attacks focused on stealing employee W-2 information. The hackers then go on and submit false tax returns, open home equity lines of credit and commit other fraud. No business owner wants to […]
Read the Blog Post
People are your weakest link. That is what the data tell us about cybersecurity risk today. Every day there are more great tools to protect your network, endpoints and applications. Still others expose threat intelligence, more accurately report intrusion attempts and even identify nefarious behavior by insiders. Cyber criminals know this and are fueling the […]
Read the Blog Post
There are many differences between phishing, spear phishing and social engineering attacks, but they are often used interchangeably and incorrectly. That creates some confusion when people are describing attacks and planning for defense. Understanding these attack types is important. Download: Spear Phishing White Paper In our review of the 5 Agonies of Cyber Attacks, we […]
Read the Blog Post
BBC reported recently that Facebook and Google separately wired over $100 million to a single hacker in Lithuania. While these are global corporate giants, there are lessons for everyone about cybersecurity in 2017. Cyber Criminals Posing as a Supplier Facebook and Google really aren’t that special in falling for this type of scam. Not long […]
Read the Blog Post
Verizon’s analysis of 1600 cybersecurity incidents and 800 breaches found that phishing was involved in 90% of successful attacks. Despite years of phishing awareness training, employees are still getting fooled. Verizon even included a section in this year’s Data Breaches Investigations Report (DBIR) called, “Attack the Humans.” Why? Humans are your weakest link. You can […]
Read the Blog Post
Trend Micro reported last month that Ransomware attacks increased 752% in 2016. Ransomware families grew to 247 last year from just 29 in 2015. Why the rapid growth? Well, ransomware attacks work and attackers are getting paid. The report suggests that ransomware is now a $1 billion business. The trend has continued into 2017. The […]
Read the Blog Post
Today Graphus is pleased to announce a new channel partnership with the Intelligence Systems Group (ISG). ISG is a Service Disabled Veteran-Owned Small Business that provides cyber security software and services to the Intelligence Community. The company will initially offer the Graphus solution to its corporate and governmental client’s using G-Suite by Google to detect, […]
Read the Blog Post
While there is debate about how the WannaCry ransomware attack in May was spread, it seems fairly clear that yesterday’s Goldeneye attack was delivered via spear phishing. Reuters reported: An adviser to Ukraine’s interior minister said earlier in the day that the virus got into computer systems via “phishing” emails written in Russian and Ukrainian […]
Read the Blog Post
The New York Times reported last week that spear phishing attacks have escalated recently targeting nuclear power plants, utilities and manufacturers. The article focused specifically on the threat to nuclear facilities where “spear phishing” was the common cyber attack technique. Hackers wrote highly targeted email messages containing fake résumés for control engineering jobs and sent […]
Read the Blog Post
