Saturday's attack is the biggest on Saudi oil infrastructure since Saddam Hussein's invasion of Kuwait in 1990.Energyread more
Saudi Aramco is aiming to restore by Monday about a third of its crude output that was disrupted after drone attacks on two key oil facilities, The Wall Street Journal...Marketsread more
"Blaming Iran won't end disaster. Accepting our April '15 proposal to end war & begin talks may," Zarif said on Twitter.Energyread more
Oil prices are expected to jump as much as $10 per barrel after a coordinated drone strike hit Saudi Arabia's largest oil field, forcing the kingdom to cut its oil output in...Marketsread more
Apple's new iPhones can still send texts, download apps, and make video calls, but the company spends a lot of time and effort marketing its new phones as powerful photography...Technologyread more
The trucking industry is worth hundreds of billions of dollars per year. Uber is going after this market with Uber Freight, an online platform that matches truckers with...Technologyread more
Some U.S. manufacturers say tariffs, if targeted, will help address longstanding unfair trade practices like intellectual property theft.Traderead more
Supporters of a $15 minimum wage ballot initiative in Florida argue the state's inflation-tied pay hikes have not gone far enough.2020 Electionsread more
Saudi Arabia shut down half its oil production Saturday after drone strikes hit the world's largest oil processing facility in an attack claimed by Yemen's Houthi rebels.Politicsread more
Trusii's hydrogen water machines were supposed to help users with their health problems, but customers claim the company is involved in a giant scam.Technologyread more
The decoupling of the world's two weightiest economies seems as inescapable as its extent and global impact remains incalculable.Politicsread more
Google's head fraud-fighter wants you to know you might be a much more valuable target than you think.
Scammers target people regardless of how prominent they are, said Mark Risher, who oversees the company's initiatives to protect Gmail and other Google properties against cyberattacks.
"It could just be a case of mistaken identity or guilt by association. They could be using someone who seems to be low value to pivot toward somebody considered a higher value target, like somebody political in nature," he told CNBC. "Or maybe they saw that you were discussing Bitcoin on a public message board."
In any of these scenarios, attackers can use your social profile or email account to fish out valuable information, or break into your email account to do a password reset on your valuable financial accounts or cryptocurrency wallets.
Here's some of what Risher warned us about.
Risher said there has been uptick in attacks against people who hold cryptocurrencies in digital wallets. These attacks can often be traced back to a post by the victim on a public message board, which is then quickly followed by criminal attempts on their email accounts.
The reason is simple: Some cryptocurrency wallet providers allow users to reset their access to the wallet through email. Attackers can then use the email reset to open the wallet and steal cryptocurrency.
It's a mistake to associate decades-old email scams — like the once-prolific "Nigerian Prince" scam — with today's criminals, he said. The newer crop of email attacks often come across as indistinguishable from personal messages you could receive from friends or family.
"You might think of this generic 'Dear Sir or Madam, I am contacting you to ask you for a favor,' but the truth is many of these attackers have done some serious research on their victims," he said. "So you might get what we call 'social truth' in your message."
Finding this "social truth" — personal details about your life that make a scam message seem authentic — is getting easier as the amount of data we share grows. People tend to contribute to this growth by creating then forgetting about email addresses, message board posts and social media accounts. Information seldom disappears from the internet, even if we forget about it.
"Our data is all over the place," he said.
Criminals are also becoming much better at gaining access to "high-value targets," like executives at prominent businesses or political figures, by taking a circuitous route through people who work with them or are loosely connected to them. If you've ever volunteered for a political campaign, gone to a dinner party hosted by a CEO or worked for a well-known technology company, that person could be you.
Criminals have also shown they can wend their way into anyone's email account by going through a chain of password resets through a long-forgotten account.
For email threats like these, which are often more persistent and backed by nation-states, Google sends an alert to customers that government-based hackers may be trying to steal their password. Risher said it matters because people who are aware that they may be on the wrong end of a particularly effective and powerful type of attack may take additional security steps if they have that information.
Other tips, Risher said, include making note of all the email addresses associated with your financial accounts and being mindful of the security associated with those addresses, and limiting the amount of information you share through social media networks.
Google has been rolling out several security measures for security-minded Gmail users, including the Advanced Protection Program, which requires the use of third-party physical security keys — a solution Google has said significantly cut down on email scams internally. The company is also launching a USB-based security key called Titan for consumers.