Fortinet researchers are seeing a pivot in the spear-phishing and phishing lures used by cybercriminals, to entice potential job candidates as businesses open up.
Cybercriminals cashed in on the surge of COVID-19 earlier this year, with email lures purporting to be from healthcare professionals offering more information about the pandemic. However, as the year moves forward, bad actors are continuing to swap up their attacks with savvy lures that match top-of-mind current events, said Derek Manky, Chief of Security Insights & Global Threat Alliances at Fortinet’s FortiGuard Labs.
In the third quarter of 2020, cybercriminals sent spear phishing emails pretending to be about economic incentives, as governments offered financial aid to those affected by the pandemic. And researchers are seeing ongoing email based attacks that tap into new job opportunities – as businesses start to open up – with job candidates lures.
“As jobs started to be recreated in the industry we saw lures targeting candidates for jobs – in fact, man-in-the-middle attacks were intercepting emails based on job offers,” he said.
Manky talks to Threatpost host Cody Hackett about the rise of web-based threats, the continuance of low-volume, high-risk, targeted ransomware attacks (particularly in the healthcare space) and other security threats of this quarter, in this week’s sponsored podcast episode.
Experts Weigh in on E-Commerce Security Amid Snowballing Threats. How a retail sector reeling from COVID-19 can lock down their online systems to prevent fraud during the upcoming holiday shopping spike. ... But experts are warning retailers not to focus only on one threat or on protecting one particular system.
Veracode's Chris Eng discusses the cyber threats facing shoppers who are ... Holiday Shopping Craze, COVID-19 Spur Retail Security Storm.
Mismanagement of multi-cloud expense costs an arm and leg to business and its management has become a major pain point. Here we break down some crucial tips to take some of the management challenges off your plate and help you optimize your cloud spend.
A recently uncovered, active campaign called "Duri" makes use of HTML smuggling to deliver malware.
COVID-19 pandemic spurs spoofing preference changes, plus a surge in email-based attacks.