A newly discovered, sophisticated threat group that targets organizations without DMARC implemented and relies on business email compromise is heralding what researchers call "a new age" of business email compromise.
The group, called Cosmic Lynx, is the first reported Russian BEC cybercriminal ring, and it's bringing the once run-of-the-mill email scam attack vector to the next level. The group has been associated with more than 200 BEC campaigns targeting senior-level executives in 46 countries since last July. It uses clear, articulate emails -- with vocabulary like "accretive" and "synergistic" -- that purport to be related to an a "merger and acquisition," keeping with a sensitive theme that targeted employees likely won't discuss.
Inside the Hackers’ Toolkit
Being prepared for adversarial attacks
The State of Secrets Sprawl
The Truth Behind ‘Mythical’ MacOS Malware – Podcast
A Blockchain Primer and a Bored Ape Headscratcher – Podcast
Cyberattackers Put the Pedal to the Metal – Podcast
Top 3 Attack Trends in API Security – Podcast
Reporting Mandates to Clear Up Feds' Hazy Look into Threat Landscape – Podcast
Staff Think Conti Group Is a Legit Employer – Podcast
Multi-Ransomwared Victims Have It Coming
Russia Leaks Data From a Thousand Cuts–Podcast
Securing Data With a Frenzied Remote Workforce–Podcast
The Art of Non-boring Cybersec Training–Podcast
Killing Cloud Risk by Bulletproofing App Security: Podcast
Former FBI Gumshoe Nabs Cybercrooks Using Proven Behavioral Clues
How to Buy Precious Patching Time as Log4j Exploits Fly
Attackers Will Flock to Crypto Wallets, Linux in 2022: Podcast
Podcast: Could the Zoho Flaw Trigger the Next SolarWinds?
Podcast: 67% of Orgs Have Been Hit by Ransomware at Least Once
DDoS Attacks Are a Flourishing Business for Cybercrooks – Podcast
Create your
podcast in
minutes
It is Free
WSJ Tech News Briefing
gm! crypto
CyberWire Daily
Cyber Security Headlines
The WAN Show