PINDROP BLOG

Month: April 2017

April 28, 2017
Chrome Will Label More HTTP Pages Insecure
Google is continuing its assault on the unencrypted web, with a change coming to Chrome later this year that will mark any HTTP page on which a user enters data as “not secure”. In January, Google released Chrome 56, the first version of the browser that included a warning for pages that send confidential data…
Read More →
April 27, 2017
Verizon: Ransomware, Cyberespionage Attacks On the Rise
Ransomware attacks are becoming a larger and larger problem for enterprises, now accounting for nearly 75 percent of malware-related incidents in health care companies, according to new data released by Verizon. The ransomware issue has been a major concern for many companies for several years now, but it has become especially acute for health care companies.…
Read More →
April 26, 2017
Phone Fraud Jumps 113% as Criminals Focus on Call Centers
Criminals are targeting corporate call centers at an unprecedented rate, resulting in a 113 percent spike in the fraud rate in the last year, new data compiled by Pindrop shows. Phone fraud has become one of the favored tactics for criminals as they look for less-risky and more-profitable avenues to get into targeted organizations. The phone…
Read More →
April 26, 2017
Pindrop® Labs Uncovers 113% Increase in Call Center Fraud
Fraudsters are targeting call centers at an unprecedented clip, with one in every 937 calls being fraudulent, according to new data published today in the Pindrop 2017 Call Center Fraud Report. The data, compiled from Pindrop® Labs enterprise customers around the world, shows that the rate of fraudulent calls hitting call centers is continuing to…
Read More →
April 25, 2017
New BrickerBot Variant Compromising IoT Devices
A new, more aggressive version of the BrickerBot malware that has compromised and destroyed the memory of IoT devices is now making the rounds, using a familiar infection vector and going after devices with intense bursts of activity. BrickerBot is a spiritual descendant of Mirai, the IoT-specific malware that has been attacking a variety of…
Read More →
April 24, 2017
Google Patches Unicode Domain Phishing Bug in Chrome
Google has patched a dangerous issue in Chrome that enabled attackers to spoof legitimate domains in the browser by using unicode characters rather than normal ones. That vulnerability is the result of the way that Chrome handles some unicode characters and it’s not necessarily a new issue. Security experts have known about the underlying problem…
Read More →
April 20, 2017
Mastercard Replaces PINs With Fingerprint Sensor on New Cards
Mastercard is rolling out a new payment card that includes a fingerprint sensor built right onto the card, a feature that is meant to eliminate the need for a PIN during in-person transactions. The new card also has a chip embedded in it and it can be used at all of the existing chip-and-PIN terminals.…
Read More →
April 19, 2017
Android Sensor Attack Can Guess PINs with 94% Accuracy
With each new generation of smartphone, manufacturers are adding more and more sensors to enhance the user’s experience, but this also means that more and more apps are asking for blanket permission to use those sensors. This proliferation of sensors and permissions is creating serious privacy and security issues, as researchers at Newcastle University established with a new…
Read More →
April 19, 2017
Hajime Malware Joins Mirai in Targeting IoT Devices
Mirai is no longer the only game in town when it comes to IoT malware. A new piece of malware known as Hajime is infecting some of the same kinds of embedded devices that Mirai has been targeting for several months. The malware has infected thousands of IoT devices in recent weeks and researchers say…
Read More →
April 18, 2017
Facebook Launches Beta of New Account Recovery System
Facebook has opened a beta program for its new Delegated Account Recovery system, which is designed to replace traditional email or SMS-based recovery processes. The Facebook system allows users to connect their Facebook accounts with other services and use that trusted link to recover access to one of the accounts. The company has published an SDK and…
Read More →
Webinar: Call Center Fraud Vectors & Fraudsters Analyzed