A newly discovered, sophisticated threat group that targets organizations without DMARC implemented and relies on business email compromise is heralding what researchers call "a new age" of business email compromise.
The group, called Cosmic Lynx, is the first reported Russian BEC cybercriminal ring, and it's bringing the once run-of-the-mill email scam attack vector to the next level. The group has been associated with more than 200 BEC campaigns targeting senior-level executives in 46 countries since last July. It uses clear, articulate emails -- with vocabulary like "accretive" and "synergistic" -- that purport to be related to an a "merger and acquisition," keeping with a sensitive theme that targeted employees likely won't discuss.
Verizon Data Breach Report: Web Application Attacks Skyrocket, Espionage Dips
News Wrap: New Ransomware Extortion Tactics, Contact-Tracing App Security Worries
Sponsored Podcast: Shifting Left With Infrastructure-as-Code
News Wrap: Microsoft Sway Phish, Malicious GIF and Spyware Attacks
Troves of Zoom Credentials Shared on Hacker Forums
News Wrap: Nintendo Account Hacks, Apple Zero Days, NFL Security
Work From Home Networks Plagued By Malware, Exposed Services
Bypassing Fingerprint Scanners With 3D Printing
News Wrap: Coronavirus Scams, Work From Home Security Woes, Pwn2Own
IoT Device Security: The Good, The Bad and The Ugly
RSA Conference 2020 Preview
News Wrap: Valentine's Day Scams and Emotet's Wi-Fi Hack
Katie Moussouris: The Bug Bounty Conflict of Interest
Critical Cisco ‘CDPwn’ Flaws Break Network Segmentation
WhatsApp Hacks Point to Sophisticated Mobile Cyberattacks
Vivin Nets Thousands of Dollars Using Cryptomining Malware
News Wrap: PoC Exploit Controversy, Cable Haunt & Joker Malware
NSA Detects Major Microsoft Windows Flaw: What It Means
CCPA's Biggest Challenge: Where's The Data?
The Roadblocks and Opportunities For Women in Cybersecurity
Create your
podcast in
minutes
It is Free
WSJ Tech News Briefing
The 404 Media Podcast
Rebel Tech
CyberWire Daily
Click Here