Phishing

Expired Driver’s Licenses Open Lane for Cybercriminals

Fraudsters send out texts or emails falsely warning that the target’s license needs to be updated, is missing information or is expiring.

Survey: Nearly 3 in 4 Organizations Suffered Data Breaches Due to Phishing

More than half of respondents indicated concerns about hybrid work environments and defending against malicious emails. 

Report: Mobile Phishing to Steal Government Credentials Increased 67% in 2020

State and local governments are more exposed than federal agencies in the new teleworking age, but threats have increased across the board.

CISA Warns of Vulnerabilities in Cloud Use, Shares Solutions List

Basic cyber hygiene isn’t so basic when it comes to remote environments.

CISA, FBI Warn that U.S. Think Tanks Are in Hackers’ Crosshairs

The agencies share guidance for shoring up defenses in a remote work environment that can disguise attackers.

To Achieve Cyber Agility, Think Long-Term

Agencies must instead invest in cyber platforms to become more agile and responsive to adversaries.

Foreign Hackers Cripple Texas County’s Email System, Raising Election Security Concerns

The malware attack, which sent fake email replies to voters and businesses, spotlights an overlooked vulnerability in counties that don’t follow best practices for computer security.

Foreign Hacker Sentenced in $1M Scam Targeting Federal Employees and Contractors

The criminal ring used phishing emails and fake websites to get almost $1 million worth of printer toner to sell on black markets.

How Good Is Your Phishing Training? NIST Launched a Tool to Figure That Out.

Researchers are looking to pool more data from outside organizations to further refine it.

Subj: This Email Could Wreak Havoc on the 2020 Election

Beware of COVID-related phishing threats that target local voting.

Interior Struggles to Secure IT Systems Amid Pandemic, IG Says

Interior is one of many agencies trying to meet new challenges posed by an explosion of increased remote work.

CIA Report Prompts Call for DHS Cyber Authority Over Intelligence Agencies

Senator asks the director of national intelligence why his office hasn’t implemented a basic anti-phishing tool like the rest of the government.

Why We Adopt and Then Ditch Online Security Tips

“It can be challenging to follow through with a particular piece of advice, and sometimes experts conflict with each other in providing advice,” a researcher said.

CISA, U.K. Agency Issue Alert on Spike in Coronavirus-Themed Cyber Activity

It’s not just phishing and malware. Malicious actors also target known bugs in virtual private networks and other networking tools.