Phishing Attack Topologies
Phishing threats are not homogeneous in nature. Malicious actors use several different phishing attack topologies to execute their campaigns – each of which require a different approach to detect and mitigate the threat.
Phishing is a “scam” and form of internet fraud, in which bad actors attempt to deceive internet users into unveiling sensitive personal information. In its original and most common form, the attack is initiated via an email purporting to be from a reputable or legitimate source. Inside the email, the attacker urges the victim to act in some way and includes (“hides”) a malicious link. When clicked, that link takes the victim to a fraudulent or compromised webpage. From there, the victim is prompted to enter sensitive personal information (i.e. username, email, password, credit card information, etc.). Phishing webpages can appear nearly identical to their authentic counterparts – often requiring advanced phishing detection solutions to identify the fake. Mobile phishing attacks that take advantage of simplified user interfaces and design choices intended to improve “usability” on smaller devices have become particularly effective.
zvelo’s phishing detection solution delivers maximum protection against active and emerging phishing threats in the wild. Advanced AI-based, proprietary technology detects unique phishing threats earlier and more accurately than other providers, to neutralize emerging threats when they are most dangerous.
Ransomware as a Service (RaaS): The Business of Ransomware
Soaring profits and easy targets are driving cyber criminals to capitalize on the business of Ransomware-as-a-Service (RaaS).
Cybercrime Trends 2019
The emerging cybercrime trend of diversifying attack targets demonstrates how criminals are increasingly able to detect and exploit new vulnerabilities.
Securing Your Email – Tips for Web Mail Alternatives
When it comes to web mail alternatives for securing your email, here are a few “go-to” services combining rich user experiences and no-nonsense security.
The Cost of a Data Breach: What’s Really at Stake?
The cost of a data breach goes well beyond remediation and recovery. Know your risks. Go below the surface layer to assess what’s actually at stake.
The Rise of Single-Use Phishing URLs and the Need for Zero-Second Detection
The adoption of single-use phishing URLs is driving new demand for zero-second detections to keep up with the dwindling lifespan of phishing sites.
Phishing Website Detections Down, Financial Industry Biggest Target
The Anti-Phishing Working Group (APWG) released their quarterly Phishing Attack Trends Report for the first quarter of 2013. Payment Services were reported as the most phished industry sector, followed by Financial Services.
Anti-Phishing Working Group (APWG) 2011 eCrime Researchers Summit Highlights
The 2011 Anti-Phishing Working Group (APWG) eCrime Researchers Summit, out of San Diego, California, moved fast with a number of interesting presentations and fascinating people. The APWG is a non-profit global pan-industrial and law enforcement association focused on eliminating the fraud, crime and identity theft that results from phishing, pharming, malware and e-mail spoofing of all types. The eCrime Researchers Summit brings together malware researchers, counter-eCrime developers and responders, and includes the 2011 Fall General Meeting. Here are some highlights from the event.
Fraudulent Websites: Spammers Shift Tactics
Viagra’s days may be numbered, at least when it comes to being the drug-of-choice on fraudulent pharmacy websites. Recently, zveloLABS™ noticed a strong shift to another lifestyle drug named Adipex–a brand name alternative to the weight-loss drug phentermine.
Pharma-Fraud Continues to Dominate Spam
Have you taken a look inside your Spam folder recently? Without a doubt you’ll find the folder full of pharmacy Spam, pitching everything from Cialis and Viagra to Vicodin and Hydrocodone. The problem is almost none of the linked web sites are legitimate certified pharmacies.