How to Defend Against AI Spam Email?

So have you been assuming all spam to have spelling mistakes? Or just bad grammar? What if the email has impeccable grammar? How to defend against the bad guys using AI in their spam emails? NIST (National Institute of Science and Technology) has a definition of phishing:  https://csrc.nist.gov/glossary/term/phishing Phishing Definition: ”  A technique for attempting … Read more

Cybersecurity Practitioners Must Get More Boring?

DanielMiessler.com website Unsupervised Learning has a post SEC vs Solar Winds Cybersecurity’s Enron moment.     The problem is that Cybersecurity is still ‘magic’ to many people and it should not be. It has to be made into a boring endeavor which will make the defense of a company more likely. Making a company secure … Read more

How Fast to Disclose a Breach?

What are the rules (or regulations) that state how fast to disclose and where? SC Magazine has an article on the new rule by the SEC that says a public company should make a disclosure. SEC’s 4-day breach disclosure rule hits opposition in Congress One of the problems was that there was an attacker that … Read more

Browser Update Scam Improved and Re-issued

KrebsonSecurity has a story from October 18th: “The Fake Browser Update Scam Gets a Makeover” Do you get a message saying you need to update your browser?  Do you know what the message “Should” look like? Is it this after you click on your browser and trying to get somewhere on the Internet? This image … Read more

SpyNote app can take over your Android Phone and Hide

There is an interesting post at f-secure blog: “Take A Note of SpyNote” Malware may install itself on your phone (if you allow it) and then it will ask you all kinds of questions like:  “When you want to install the application, a notification appears asking for permission to access phone calls, photos and videos, … Read more