Your organization’s leadership is 12 times more likely to be the target of a security incident and nine times more likely to be the target of a data breach than they were last year. Find out how they can be protected.
Read the Datasheet
Gift Cardsharks: The Massive Threat Campaigns Circling Beneath the Surface
Learn about the attack group primarily targeting gift card retailers and the monetization techniques they use.
Get the Report
Threat Hunting Workshop Series
Join one of our security threat hunting workshops to get hands-on experience investigating and remediating threats.
Attend an Upcoming Workshop
Inside Magecart: New RiskIQ & Flashpoint Research Report
Learn about the groups and criminal underworld behind the front-page breaches.
Threat Hunting Guide: 3 Must-Haves for the Effective Modern Threat Hunter
The threat hunting landscape is constantly evolving. Learn the techniques, tactics, and tools needed to become a highly-effective threat hunter.
It’s income tax season in the United States, which means it’s income tax threat season—and the threats are out in force. Already, crafty schemes and dangerous threat campaigns that have fooled individual tax filers, and even businesses, are making headlines.
With the IRS again expecting that more than nine out of ten tax returns will be prepared electronically, cybercriminals are expecting a windfall of potential victims. People eager and emotionally invested in getting their hands on a tax return make attractive targets, and criminals are happy to exploit the convenience of popular e-filing systems such as H&R Block and TurboTax via phishing pages, domain infringement, and fake mobile apps.
With Tax Day less than a week away, RiskIQ is seeing a spike in these outside-the firewall-threats with attacks fooling consumers into downloading malware, using compromised sites, or giving up their login credentials and credit card information. To analyze the methods cyber threat actors are employing this tax season and where they’re targeting their malicious efforts, RiskIQ ran a keyword query of the RiskIQ Global Blacklist and mobile app database looking for instances of terms related to the IRS and the brand names of ten of the leading tax filing software.
Download our research to find out how cyber threat actors are using these well-known brands specifically to exploit tax season via both web and mobile, including:
To get more information about Tax Day threats, schedule a demo, and find out how RiskIQ can help give you visibility into your organization’s attack surface, contact us today. To learn more about RiskIQ research or the data used in this report, visit our blog or contact the RiskIQ research team at firstname.lastname@example.org.
What’s in a #malvertisement? We found more #magecart and a 186% spike in drive-by delivery https://t.co/rsl9GGiRUZ
.@TechCrunch's @zackwhittaker found that thousands of MoviePass customer card numbers were exposed because a critical server was left unsecured. With @ydklijnsma and RiskIQ data in @passivetotal, he discovered the exposure began all the way back in May https://t.co/blde3p21dU
Can you spot the phish? In tomorrow's PassiveTotal Thursday, we’ll take a real-life #phishing page targeting a popular brand and break it down to show how it differs from the genuine. Register today: https://t.co/EP2q6On5vE #ThreatHunting
We're thrilled to welcome Dean Ćoza, who will lead our product and technology teams as RiskIQ Chief Product Officer. Read more about Dean's appointment here:
Check out the brand new @RiskIQ Threat Hunting course on @CybraryIT
Manage Your Attack Surface Management using the "Mark of the Web"
https://t.co/ZGDBGyecJr #cybersecurity #magecart #course #cybrary