As these threats continue to grow in volume and sophistication, it is imperative that organisations implement a people-centric security approach.

More organisations were affected by all types of social engineering attacks (phishing, spear phishing, sms phishing, voice phishing, and USB drops) year-over-year.

The Australian Taxation Office (ATO) recently warned of a sophisticated phone scam, manipulating Australians for a reported $830,000 in November.

Proofpoint researchers have looked ahead at the trends and events likely to shape the threat landscape in the year to come.

The 2018 CrowdStrike Services Cyber Intrusion Casebook reveals IR strategies, lessons learned, and trends derived from more than 200 cases.

Phishing attacks or social-engineering attacks are on the rise, where cybercriminals trick people into divulging details and participating in scams.

Individual contributors and lower level management account for nearly two thirds (60%) of highly targeted attacks within an organisation.

Alongside the migration to the cloud has been the rise of application programming interfaces (APIs) and artificial intelligence (AI).

“Between August 2010 and August 2016, New Zealanders reported almost 28,500 online incidents involving $35million in direct financial losses."

It can take hackers less than an hour to steal data from an organisation, and most of the time their targets don’t even detect the attacks.

Criminals will exploit known vulnerabilities; social engineering will craft sophisticated networks; supply chain targeting will target third parties..

PhishLine’s social engineering simulation and training platform expands Barracuda solutions to protect against email-borne targeted attacks.

Contemporary cybercrime is as much about psychology as technology.