Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

The Pope, Puff Jackets and Money going POOF!

Mar 29, 2023 4:40:39 PM By Stu Sjouwerman
You have probably seen it. Pope Francis in a designer puff jacket. It fooled millions of people. Culture writer Ryan Broderick called it the “first real mass-level AI misinformation ...
Continue Reading

Australian Police Arrest Business Email Compromise (BEC) Operators

Mar 29, 2023 8:43:18 AM By Stu Sjouwerman
The Australian Federal Police (AFP) have arrested four alleged members of an organized crime group known for carrying out business email compromise (BEC) attacks, BleepingComputer ...
Continue Reading

[LIVE DEMO] Are Your Users Making Risky Security Mistakes? Deliver Real-Time Coaching in Response to Risky User Behavior with SecurityCoach

Mar 29, 2023 8:27:20 AM By Stu Sjouwerman
Do you need an easy, automated way to provide real-time feedback the moment your users make risky mistakes to help reinforce the training campaigns you manage today?
Continue Reading

The FBI's Public Service Warning of Business Email Compromise

Mar 29, 2023 8:01:52 AM By Stu Sjouwerman
The US FBI is warning of business email compromise (BEC) attacks designed to steal physical goods. While BEC attacks are typically associated with stealing money, criminals can use the ...
Continue Reading

[Eyes Only] New Deepfake Pr0n Site Visits Skyrocket

Mar 28, 2023 10:39:31 AM By Stu Sjouwerman
This is a disgusting topic. It's also a very high social engineering risk. I will keep this post safe-for-work, which is not easy. NBC news just reported on the deepfake economy surging ...
Continue Reading

CyberheistNews Vol 13 #13 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks

Mar 28, 2023 9:00:00 AM By Stu Sjouwerman
CyberheistNews Vol 13 #13  |   March 28th, 2023 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks Users need to adapt to an evolving threat landscape in which attackers can ...
Continue Reading

Confessions of a Former 'The Inside Man' Skeptic

Mar 28, 2023 8:59:04 AM By John Just
I remember sitting in Stu Sjouwerman’s office with Perry Carpenter and myself being pitched a drama series about cyber security by Jim Shields (Creative Director - Twist & Shout) and ...
Continue Reading

KnowBe4 Debuts Season 5 of Netflix-Style Security Awareness Series - ‘The Inside Man’

Mar 28, 2023 8:00:00 AM By Stu Sjouwerman
We’re thrilled to announce the long-awaited fifth season of the award-winning KnowBe4 Original Series - “The Inside Man” is now available in the KnowBe4ModStore!
Continue Reading

Oversharing Is a Risk to Information Security

Mar 27, 2023 1:54:56 PM By Stu Sjouwerman
Younger employees need to be wary of oversharing company information on social media, according to John Karabin, senior director of cybersecurity at NTT Ltd. In an article for ...
Continue Reading

Stay Ahead of the Game: Protect Yourself From Trojanized Chat Apps Targeting WhatsApp and Telegram Users

Mar 27, 2023 8:00:00 AM By Javvad Malik
It seems that once again bad actors have found a new way to infect our devices with malware. This time, they are using a devious little trick to spread trojanized versions of popular chat ...
Continue Reading

New Vendor Email Compromise Attack Seeks $36 Million

Mar 24, 2023 11:03:14 AM By Stu Sjouwerman
The details in this thwarted VEC attack demonstrate how the use of just a few key details can both establish credibility and indicate the entire thing is a scam.
Continue Reading

Ransomware Data Theft Extortion Goes up 40% to 70% From ‘21 to ’22

Mar 24, 2023 8:15:00 AM By Stu Sjouwerman
A report from Palo Alto Networks’ Unit 42 found that data theft extortion occurred in 70% of ransomware attacks in 2022, compared to 40% in 2021. The researchers examined the four most ...
Continue Reading

The Dangers of Vishing Campaigns and How To Protect Yourself

Mar 24, 2023 8:00:00 AM By Javvad Malik
In recent years, cybercrime has evolved to become more sophisticated than ever before. One of the up and coming methods used by criminals is vishing (voice phishing). This is where an ...
Continue Reading

[Live Demo] Customizing Your Compliance Training to Increase Effectiveness

Mar 23, 2023 10:52:07 AM By Stu Sjouwerman
Linking compliance training to specific outcomes is hard. Compliance training has a reputation for being challenging for organizations to offer, difficult to do right and employees are ...
Continue Reading

[Security Masterminds] Unlock Maximum Cybersecurity: 3 Crucial Steps to Enhance Your Capabilities, Coverage, and Culture

Mar 23, 2023 10:44:37 AM By James McQuiggan
Do you ever feel like you are always playing catch up regarding cybersecurity? That it is a never-ending game; no matter what you do, you are always one step behind. You are not alone. ...
Continue Reading

Users Clicking on Multiple Mobile Phishing Links Increases 637% in Just Two Years

Mar 23, 2023 8:13:58 AM By Stu Sjouwerman
New data shows that phishing mobile devices as an attack vector is growing in popularity – mostly because it’s increasingly working... in exponential terms.
Continue Reading

Cyber Insurers Quietly Remove Coverage for Social Engineering and Fraudulent Instruction Claims

Mar 23, 2023 8:13:56 AM By Stu Sjouwerman
As cyber insurers become more experienced in what kinds of claims are being presented, and the threat action details therein, specific types of coverages are no longer being included.
Continue Reading

Half of Organizations Report at Least Monthly Outages from Cyberattacks

Mar 23, 2023 8:13:51 AM By Stu Sjouwerman
New data on the current state of cybersecurity shows that organizations are experiencing challenges, falling behind, and seeing the impact of all this post-attack.
Continue Reading

Facebook and Microsoft Top the List of Most Impersonated Brands in 2022

Mar 23, 2023 8:13:49 AM By Stu Sjouwerman
As scammers continue to see massive returns on their phishing attacks, the use of impersonation with well-known brands continues to circle around the dominant players.
Continue Reading

When a USB Flash Drive is Actually a Bomb

Mar 22, 2023 9:52:30 AM By Stu Sjouwerman
A journalist based in Ecuador recently used a USB flash drive that was actually a legitimate bomb.
Continue Reading
Subscribe

Search Our Blog


Free Phishing Security Resource Kit

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews