Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Your KnowBe4 Fresh Content Updates from November 2021

Check out the 28 new pieces of training content added in November, alongside the always fresh content update highlights.
Continue Reading

[Heads Up] First Omicron Phishing Attack Spotted In The UK

Bleepingcomputer had the scoop. Phishing actors have quickly started to exploit the emergence of the Omicron COVID-19 variant and now use it as a lure in their malicious email ...
Continue Reading

Morgan Stanley Warns Against “Brushing Scam”

Morgan Stanley has outlined several common scams everyone should be on the lookout for during the holiday season. The first involves phony delivery notifications. These scams are common ...
Continue Reading

Ingenious New Attack Technique Uses Windows Store to Install Malware

Just when you thought threat actors couldn’t find another way to launch a dropper, a new method has surfaced that takes advantage of native functionality found in Windows 10.
Continue Reading

91% of All Baiting Attacks Use Gmail to Collect Intel on Potential Victims

This rudimentary form of phishing contains no malicious links or attachments but serves a very important purpose for cybercriminals and scammers looking to better target victims.
Continue Reading

When Cybercriminals Hide in Plain Sight: Hacking Platforms You Know and Trust

Today’s hackers are concealing their attacks in places you wouldn’t expect… utilizing tools your users know and trust to deliver their malicious payloads. From hijacked single sign-on ...
Continue Reading

Holiday Shopping and Phishing-as-a-Service

Researchers at Egress observed a massive increase in phishing kits in the run-up to Black Friday, particularly those impersonating Amazon.
Continue Reading

Bitcoin Scam Videos on Instagram are Part of an Elaborate Account Takeover Scam

This elaborate scam uses social engineering to trick victims into sending the hacker Bitcoin while holding Instagram accounts hostage.
Continue Reading

Phishing Attacks Smash All Records in Q3 2021 With the Highest Monthly Number of Attacks Ever

New data shows the business of phishing is moving “up and to the right” in nearly every way measurable, indicating a serious problem as threat actors continue to see growing success.
Continue Reading

Mobile Phishing Attacks Surge 161% in the Energy Industry

The need for increased mobile security in the Energy sector has become evident with new data highlighting why these phishing attacks are occurring and effective ways to stop them.
Continue Reading

Data Breach Costs Increase by $1 Million When Remote Workers Are Involved

You already knew remote workers increase the risk of cyberattack. New data spells out exactly what the impact of a remote workforce is on data breaches and the cost to remediate.
Continue Reading

Spear Phishing Campaign Targets North Korean Defectors

A state-sponsored threat actor is sending spear phishing emails to North Korean defectors and also to journalists who cover matters related to North Korea, according to researchers at ...
Continue Reading

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

Join us for a live demo on Security Awareness Training and phishing in action!
Continue Reading

Phishing Reported in IKEA’s Internal Email System

IKEA has been working to contain a continuing phishing campaign that’s afflicting the furniture and houseware chain’s internal email system. BleepingComputer describes it as a ...
Continue Reading

John Scimone, SVP and Chief Security Officer at Dell Technologies, says “security is everyone's job.”

Organizations need to build a culture of security in order to defend themselves against cyberattacks, according to John Scimone, Senior Vice President and Chief Security Officer at Dell ...
Continue Reading

FBI: Cyber Attacks Target Organizations Involved in Mergers and Acquisitions

A new notification from the FBI warns organizations of attacks at the perfect time when organizations are spending money, new people are being introduced, and operations are in flux.
Continue Reading

Email Classified as ‘Malicious’ by Employees Has Increased by 35% in the Last Year

New data shows Phishing, Vishing, Social Media attacks, and Microsoft 365 credential attacks are all on the rise as more users are demonstrating savviness around identifying malicious ...
Continue Reading

Phishing Attacks Impersonating Amazon Continue, Raising Concerns on the Cusp of Black Friday and the Holidays

New phishing attacks in the form of impersonated Amazon order confirmation emails cause potential victims to make phone calls and give up credit card details.
Continue Reading

Planning on Relaxing During the Holiday? Think Again – Ransomware Attacks May Have You Working Over a Holiday Break!

New data shows a majority of organizations experience ransomware attacks during holiday breaks, disrupting operations and your time away from work!
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews