Large companies should consider being tougher on careless employees as a way of fighting cyber crime, an expert has claimed. (Business Reporter)
Nearly 1 in 5, or 19%, of U.S. employees working in offices admit they’ve opened an email at work they suspected to be fake or a phishing scam — without notifying the IT department. (Investor’s Business Daily)
Recycled account IDs released by Yahoo could represent a security risk for their former users, according to a report on InformationWeek. At least one user who benefited from the move to return abandoned email addresses into active use has reported receiving emails containing confidential information meant for the former account owner. (FierceCIO)
IT and security experts have their work cut out for them. We already know that average users are far from diligent. In the past, I’ve told you about easily guessable passwords, for example, not to mention phishing attacks that rely on social components for greater success rates. But sometimes it seems like the bad guys can win without even trying. (MoneyWatch)
A new type of ransomware that obviously concentrates on targeting organizations instead of home users has been spotted by Emsisoft researchers. (Net-Security.org)
Email accounts of some Regional Ten Community Services Board employees were hacked in July, and Region Ten wants to let the public know about the security problem. (The Daily Progress)
Spam volumes took a usual seasonal drop in August, but phishing spiked, including a noticeable interest in hijacking Apple accounts. (PCworld)
While the energy industry may fear the appearance of another Stuxnet on the systems they use to keep oil and gas flowing and the electric grid powered, an equally devastating attack could come from a much more mundane source: phishing.