News & Analysis as of May 5, 2025

Cybersecurity › Social Engineering

+ Follow

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now. less -

Sophisticated Crypto Theft Targeting High-Net-Worth Individuals

Holland & Knight LLP on 4/16/2025

A recent court case has unveiled a new level of sophistication in attacks targeting high-net-worth cryptocurrency holders. In a meticulously orchestrated scheme, hackers managed to steal more than $40 million in bitcoin from...more

Tax Season = Phishing Season

Goldberg Segalla on 4/9/2025

Most professionals are aware of the April 15 tax deadline. We know that fraudsters certainly are! As Tax Day approaches in the U.S., we encourage all to be mindful of several phishing campaigns that Microsoft has observed...more

Phishing Attacks – Anyone Can Get Pwned

Robinson+Cole Data Privacy + Security Insider on 3/28/2025

HaveIBeenPwned is a website that allows users to check whether their data has been involved in data breaches. The website’s creator, Troy Hunt, was the subject of a phishing attack earlier this week....more

Privacy Tip #435 – Threat Actors Go Retro: Using Snail Mail for Scams

Robinson+Cole Data Privacy + Security Insider on 3/14/2025

We have educated our readers about phishing, smishing, QRishing, and vishing scams, and now we’re warning you about what we have dubbed “snailing.” Yes, believe it or not, threat actors have gone retro and are using snail...more

Social Engineering + Stolen Credential Threats Continue to Dominate Cyber-Attacks

Robinson+Cole Data Privacy + Security Insider on 3/7/2025

CrowdStrike recently published its 2025 Global Threat Report, which among other conclusions, emphasized that social engineering tactics aimed to steal credentials grew an astounding 442% in the second half of 2024....more

Confronting social engineering in the age of artificial intelligence

Hogan Lovells on 2/20/2025

AI-enabled technology enhances threat actors’ ability to engage in advanced and difficult-to-detect forms of social engineering to deceive employees and circumvent companies’ security controls. Companies may consider new...more

Data Privacy Insights Part 2: The Most Common Types of Data Breaches Businesses Face

Ward and Smith, P.A. on 2/3/2025

As part of Data Privacy Awareness Week, Ward and Smith is spotlighting the most common types of data breaches that businesses encounter. In Part 1, we explored the industries most vulnerable to cyberattacks, highlighting the...more

AI versus MFA

Jackson Lewis P.C. on 1/9/2025

Ask any chief information security officer (CISO), cyber underwriter or risk manager, or cybersecurity attorney about what controls are critical for protecting an organization’s information systems, you’ll likely find...more

Dechert Cyber Bits - Issue 65

Dechert LLP on 11/8/2024

Four Companies Settle SEC Allegations for “Misleading Cyber Disclosures” Regarding SolarWinds - On October 22, 2024, the Securities and Exchange Commission (“SEC”) announced settlements with four companies for alleged...more

New York State Department of Financial Services Issues Guidance Concerning Cybersecurity Risks Posed by Artificial Intelligence

Baker Botts L.L.P. on 11/6/2024

Last month, the New York State Department of Financial Services (“DFS”), which has broad regulatory powers over financial services-related entities and insurance companies operating in New York State, published guidance...more

[Webcast Transcript] Anatomy of a Business Email Compromise

HaystackID on 11/6/2024

Editor’s Note: This webcast brings together some of HaystackID’s top experts to dissect the intricacies of Business Email Compromise (BEC) attacks—a rapidly growing threat impacting organizations globally. During the...more

NYDFS Issues AI Industry Letter

Paul Hastings LLP on 11/4/2024

On October 16, 2024, the New York Department of Financial Services (NYDFS) issued an industry letter entitled “Cybersecurity Risks Arising from Artificial Intelligence and Strategies to Combat Related Risks” in response to...more

New York Department of Financial Services Issues New Guidance on Cybersecurity Risks Arising from Artificial Intelligence

Troutman Pepper Locke on 10/31/2024

On October 16, the New York State Department of Financial Services (NY DFS) issued an industry letter to entities regulated by NY DFS (covered entities) providing guidance addressing the cybersecurity risks associated with...more

Cybersecurity in the Age of Industry 4.0 - Part 1

Foley & Lardner LLP on 9/13/2024

As the manufacturing sector continues to embrace the hyper-connected era of Smart Manufacturing, known as Industry 4.0, more and more organizations are integrating advanced automation, artificial intelligence (AI), the...more

Benefits of a vCISO in the Age of AI-Driven Cyberattacks

J.S. Held on 9/4/2024

Cyberattacks powered by artificial intelligence have become more sophisticated as bad actors utilize machine learning to analyze vulnerabilities, automate exploits, and outpace traditional security measures. Through the use...more

HHS Warns Health Care Sector of AI-Driven Phishing, Social Engineering Attacks on IT Help Desks

Carlton Fields on 4/26/2024

The Department of Health and Human Services recently issued a health sector alert through the Health Sector Cybersecurity Coordination Center (HC3)....more

Health Law Diagnosis - April 2024

Robinson & Cole LLP on 4/17/2024

Additional States Implement Notice Requirements for Healthcare Transactions - In a prior blog post, we noted the trend of states enacting legislation implementing reporting requirements for certain healthcare transactions....more

Business Email Compromise: The Most Prevalent – and Preventable – Cyber Risk

Bradley Arant Boult Cummings LLP on 1/25/2024

Ransomware attacks that shut business down to zero and data breaches that disclose the personal information of customers, vendors and employees justifiably strike fear in the hearts of executives everywhere. Organizations can...more

AI Phishing Attacks Illustrate the Importance of Employee Awareness

Robinson+Cole Data Privacy + Security Insider on 9/29/2023

Retool, a software development firm offering modular code for customizable enterprise software, recently notified 27 customers that a threat actor had accessed their accounts. The attacker was able to navigate through...more

Recommendations for Managing Cybersecurity Threats in the Manufacturing Sector

Foley & Lardner LLP on 9/25/2023

In the hyper-connected era of smart manufacturing, accelerated by “Industry 4.0,” the manufacturing sector is undergoing a digital revolution. By leveraging technologies such as advanced automation, artificial intelligence,...more

Data Privacy + Cybersecurity Insider - February 2023

Robinson & Cole LLP on 2/9/2023

CYBERSECURITY - World Economic Forum’s Global Cybersecurity Outlook for 2023 Is Bleak - Sorry to be the bearer of bad news but remember that I am only the messenger. According to the World Economic Forum’s Global...more

Social Media Enables Social Engineering Scams

Robinson+Cole Data Privacy + Security Insider on 2/3/2023

The more one uses and shares on social media, the more information is publicly available for cyber attackers to use to exploit users’ personal and professional information....more

Social engineering in tax season: Form W-2 exploits

Constangy, Brooks, Smith & Prophete, LLP on 1/31/2023

This year’s deadline for filing individual tax returns is April 18. Malicious actors routinely target human resources professionals, certified public accountants, and individual employees with social engineering attacks...more

Court Holds Social Engineering Fraud Does Not Trigger Computer Fraud Coverage

Wiley Rein LLP on 8/24/2022

The United States District Court for the District of Minnesota, applying Minnesota law, has held that an insured’s loss resulting from the insured’s payment of fraudulent invoices received from a bad actor who hacked into the...more

Privacy Tip #340 – Smishing Scams Reminder

Robinson+Cole Data Privacy + Security Insider on 8/12/2022

The Twilio and Cloudfare smishing attacks [view related post] provide a timely reminder of how sophisticated smishing attacks are and how they can affect businesses and their customers. But threat actors don’t just attack...more

47 Results

View per page

Page: of 2

Cybersecurity › Social Engineering

"My best business intelligence, in one easy email…"