A picture of a London newsstand on Saturday, May 13, 2017, the day after the WannaCry ransomware cyberattack struck. (Picture by Jason Steer, Menlo Security, Inc.)
A picture of a London newsstand on Saturday, May 13, 2017, the day after the WannaCry ransomware cyberattack struck. (Picture by Jason Steer, Menlo Security, Inc.)
Tags: ransomware, Wana Decryptor, WCry, phishing scams, anti-phishing, phishing prevention, spear-phishing, ETERNALBLUE, Windows security update, MS17-010
The day started out as normally as any Friday in May around the world could.
Tags: ransomware, Wana Decryptor, WCry, phishing scams, anti-phishing, phishing prevention, spear-phishing, ETERNALBLUE, Windows security update, MS17-010
In the past, an attacker looking to steal credentials would craft a convincing email and landing page that did not trigger any red flags to the user. Attackers could be certain that at least 11% of people, even those who’d had phishing awareness training, would click malicious email links. Looking to up this percentage, attackers have evolved phishing exploits to use novel techniques, and OAuth is an important part of this evolution. This new approach is making it more challenging than ever for users to know when it is safe to click.
Tags: phishing, phishing prevention, phishing scams, Google Docs email scam, Eugene Pupov, isolation
