Featured

How the Coronavirus Enabled the Twitter Hack (*and others too)

The recent hack of Twitter demonstrates how the hacking community targets high-profile users on high-profile networks not only for fraud, but also for attacks on their privacy and attacks aimed at “piggybacking” off their identity and celebrity. While the identity of the hackers is still under active investigation, there are a few things we know (and more that we suspect) about how and why the hack occurred. And part of the problem is COVID-19…

AI Biometric Spoofing

By Mark Rasch For more than 40 years, information security professionals have argued for stronger authentication (and access control) protocols. For most, this has meant some form of multi-factor authentication (MFA). Some combination of something you ARE (biometric), something you HAVE (token or device) and something you KNOW (password, passphrase, PIN). Certainly, a combination of […]

Featured

Black Market White Washing: Why You Shouldn’t Take Legal Advice From Criminals

By Allison Nixon Fraudsters who operate shops in criminal marketplaces are constantly massaging their marketing pitches to assure prospective customers (and lurking law enforcement) that their service is legal. It’s become clear recently that some infosec professionals can’t seem to identify these services as bad, so these marketing efforts may have succeeded for one audience. […]