CyberheistNews Vol 14 #42 [Heads Up] Majority of U.S. Execs Now Rank Cyber Threats as #1 Risk

Oct 15, 2024 9:00:00 AM By Stu Sjouwerman

KnowBe4 Named a Leader in the Fall 2024 G2 Grid Report for Security Awareness Training

Oct 15, 2024 8:33:19 AM By Stu Sjouwerman

We are thrilled to announce that KnowBe4 has been named a leader in the latest G2 Grid Report that compares security awareness training (SAT) vendors based on user reviews, customer ...

What Spending 3 Hours in IKEA Taught Me About Cybersecurity Awareness

Oct 15, 2024 8:07:05 AM By Javvad Malik

It was a Saturday morning, and I had grand plans. By "grand plans," I mean sitting on the sofa, watching reruns of "The IT Crowd," and pretending I didn't hear the lawn mower calling my ...

44% of U.S. Organizations Experienced One or More Ransomware Attacks in the Last Year

Oct 15, 2024 8:07:02 AM By Stu Sjouwerman

As ransomware becomes more pervasive, new data provides insight into how well organizations are responding and the attack vector being used most.

Meet SmartRisk Agent™: Unlock Your New Human Risk Management

Oct 14, 2024 10:33:00 AM By Stu Sjouwerman

Depending on who you ask, between 70 and 90 percent of cyber risk has human error as the root cause. That's why Human Risk Management (HRM) is so important. And here is the next major ...

"Operation Kaerb" Takes Down Sophisticated Phishing-as-a-Service Platform “iServer”

Oct 14, 2024 8:51:36 AM By Stu Sjouwerman

A partnering of European and Latin American law enforcement agencies took down the group behind the mobile phone credential theft of 483,000 victims.

Sextortion Scammers Attempt to Hit “Close to Home”

Oct 14, 2024 8:51:32 AM By Stu Sjouwerman

We live in a world where, despite the sharing of information online, we feel like those interactions will never reach home. But a new scam – covered on WTSP Tampa Bay’s Channel 10 news – ...

Trinity Ransomware Targets the Healthcare Sector

Oct 11, 2024 8:37:56 AM By Stu Sjouwerman

The Trinity ransomware gang is launching double-extortion attacks against organizations in the healthcare sector, according to an advisory from the US Department of Health and Human ...

Google App Scripts Become the Latest Way to Establish Credibility and Automate Phishing Attacks

Oct 11, 2024 8:37:52 AM By Stu Sjouwerman

Cybercriminals have found a new way of leveraging legitimate web services for malicious purposes, this time with the benefit of added automation of campaign actions.

Hurricane Deepfakes Flood Social Media

Oct 9, 2024 6:32:39 AM By Stu Sjouwerman

As the recent hurricane Helene caused major damage and as hurricane Milton has left a path of destruction across Florida, deepfakes are spreading misinformation on social media.

Attackers Abuse URL Rewriting to Evade Security Filters

Oct 8, 2024 10:19:48 AM By Stu Sjouwerman

Attackers continue to exploit URL rewriting to hide their phishing links from email security filters, according to researchers at Abnormal Security.

[Cybersecurity Awareness Month] Keeping Your Mobile Devices Secure from the ‘Inside’ Out

Oct 8, 2024 10:19:44 AM By James McQuiggan

As remote work and connecting while traveling has become the norm, mobile device security responsibilities have also increased.

CyberheistNews Vol 14 #41 [Wake-Up Call] Senator Falls Victim to Deepfake Scam. Are Your Users Next?

Oct 8, 2024 9:00:00 AM By Stu Sjouwerman

Free Phishing Platform Has Created More than 140,000 Spoofed Websites

Oct 7, 2024 2:00:22 PM By Stu Sjouwerman

A free phishing-as-a-service (PhaaS) platform named Sniper Dz has assisted in the creation of more than 140,000 phishing sites over the past year, according to researchers at Palo Alto ...

What Bletchley Park Can Teach Us About Building a Strong Security Culture

Oct 7, 2024 2:00:20 PM By Javvad Malik

During World War II, a group of brilliant minds led by Alan Turing gathered at Bletchley Park in England to crack the German Enigma code. This wasn't just a technological challenge, it ...

North Korea's Secret IT Army and How to Combat It

Oct 7, 2024 8:00:00 AM By Stu Sjouwerman

Organizations around the world are unknowingly recruiting and hiring fake employees and contractors from North Korea. These sophisticated operatives aim to earn high salaries while ...

Financial Services Industry Experiences a Massive Increase in Brand Abuse

Oct 4, 2024 3:37:43 PM By Stu Sjouwerman

Industry analysis of the domains used behind phishing and brand impersonation attacks show financial institutions are being leveraged at an alarming rate.

Infostealer Threat Group “Marko Polo” Evolving Into an “Empire”

Oct 4, 2024 3:37:40 PM By Stu Sjouwerman

New research by Recorded Future provides insight into how advanced and sophisticated the threat group Marko Polo has become since launching in 2022.

Cybercriminal Gang Targeting SMBs Using Business Email Compromise

Oct 3, 2024 11:58:20 AM By Stu Sjouwerman

Researchers at Todyl have published a report on a major cybercriminal group that’s conducting business email compromise (BEC) attacks against small and medium-sized businesses. Todyl ...

Don’t Put Real Answers Into Your Password Reset Questions

Oct 3, 2024 11:58:15 AM By Roger Grimes

This recent article on how a hacker used genealogy websites to help better guess victims' password reset answers made it a great time to share a suggestion: Don’t answer password reset ...

Security Awareness Training Blog

View Topics