Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Threat Actors Add ".Zip" Domains to Phishbait

Jul 19, 2023 9:54:36 AM By Stu Sjouwerman
Cybercriminals are exploiting the introduction of “.ZIP” as a new generic Top-Level Domain (gTLD) to launch phishing attacks, according to researchers at Fortinet.
Continue Reading

[INFOGRAPHIC] KnowBe4’s Content Library by the Numbers

Jul 19, 2023 9:27:35 AM By Stu Sjouwerman
KnowBe4 offers the world’s largest library of always-fresh security awareness and compliance training content that includes assessments, interactive training modules, videos, games, ...
Continue Reading

CyberheistNews Vol 13 #29 [Heads Up] Phishing Attacks Now Use QR Codes to Steal Your User Credentials

Jul 18, 2023 9:00:00 AM By Stu Sjouwerman
Continue Reading

WormGPT, an "ethics-free" Cyber Crime text generator

Jul 17, 2023 1:26:05 PM By Stu Sjouwerman
A new generative AI model called “WormGPT” is being offered on cybercrime forums, according to researchers at SlashNext. While other AI tools, such as ChatGPT, have safeguards in place ...
Continue Reading

[LIVE DEMO] Are Your Users Making Risky Security Mistakes? Deliver Real-Time Coaching in Response to Risky User Behavior with SecurityCoach

Jul 14, 2023 4:05:43 PM By Stu Sjouwerman
Do you need an easy, automated way to provide real-time feedback the moment your users make risky mistakes to help reinforce the training campaigns you manage today?
Continue Reading

KnowBe4 Wins 2023 Top Workplaces for Technology Award

Jul 14, 2023 10:24:51 AM By Stu Sjouwerman
KnowBe4 ranks number one overall on the 2023 Technology Top Workplaces list for the third consecutive year and earns national recognition as an employer of choice!
Continue Reading

Ransomware Crypto Payments Are on the Rise While the Rest of Crypto Crime is on the Decline

Jul 14, 2023 8:14:35 AM By Stu Sjouwerman
New insight from blockchain analysis company, Chainalysis, shows that activity involving known ransomware crypto addresses has grown over the last 18 months, despite a downfall of other ...
Continue Reading

Nearly One-Quarter of All Emails Are Considered to be Malicious

Jul 14, 2023 8:14:31 AM By Stu Sjouwerman
The quantity of emails involved in scams and cyber attacks continues to grow as credential theft and response-based phishing persist as top attack variants.
Continue Reading

Banking Detail Malvertising Attack Disguises Itself as a Foolproof USPS Google Ad

Jul 14, 2023 8:14:27 AM By Stu Sjouwerman
A new scam aimed at stealing your credit card and banking information has reared its’ ugly head as a completely legitimate ad that is likely to be clicked based on the corresponding ...
Continue Reading

[Discovered] An evil new AI disinformation attack called 'PoisonGPT'

Jul 13, 2023 4:39:42 PM By Stu Sjouwerman
PoisonGPT works completely normally, until you ask it who the first person to walk on the moon was.
Continue Reading

Tailgating Through Physical Security Using Social Engineering Tactics

Jul 13, 2023 9:00:47 AM By Stu Sjouwerman
Researchers at Check Point outline various forms of tailgating attacks. These attacks can allow threat actors to bypass physical security measures via social engineering.
Continue Reading

Two-Thirds of Ransomware Attacks Against Manufacturing Resulted in Encrypted Data

Jul 12, 2023 10:11:59 AM By Stu Sjouwerman
As the rate of ransomware attacks steadily increased over time, there are clear indicators as to how these attacks are starting and, therefore, what can be done to stop them.
Continue Reading

Phishing Attacks Employing QR Codes Are Capturing User Credentials

Jul 12, 2023 10:11:56 AM By Stu Sjouwerman
Using a new twist to bypass detection from security solutions, cyber attacks are now employing QR codes that your users will not recognize as anything suspicious.
Continue Reading

Launch Of New Meta Thread App Spawns Hundreds Of Spoof Domains

Jul 12, 2023 8:56:35 AM By Stu Sjouwerman
Researchers at Veriti have observed hundreds of spoofed domains following Meta’s launch of its Threads social media platform.
Continue Reading

Three Key Takeaways From the Newly Adopted EU-US Data Privacy Framework You Need To Know

Jul 12, 2023 8:00:00 AM By Lecio DePaula
On July 10th, the EU Commission adopted anadequacy decision for the proposed EU-U.S. Data Privacy Framework. This is exciting news for organizations, as many have been stuck in privacy ...
Continue Reading

Phishing Campaigns Are Now Targeting the Hospitality and Tourism Ponds

Jul 11, 2023 9:01:05 AM By Stu Sjouwerman
A phishing campaign is targeting the tourism and hospitality industries, according to researchers at Votiro.
Continue Reading

CyberheistNews Vol 13 #28 [Beware] Microsoft Teams Exploit Uses Social Engineering to Spread Malware

Jul 11, 2023 9:00:00 AM By Stu Sjouwerman
Continue Reading

Australia’s National Anti-Scam Centre: Prevention Is Better Than the Cure

Jul 10, 2023 10:56:48 AM By Jacqueline Jayne
Australia officially launched their National Anti-Scam Centre this week. With more than AUD $3.1 billion lost each year, Australians need support.
Continue Reading

Job Recruitment Scams Rising Due to Social Engineering

Jul 10, 2023 10:52:29 AM By Stu Sjouwerman
Job scams are a rising form of socially engineered cybercrime. And while it’s easy to imagine the trouble they cause individuals who innocently fall for them (lost opportunities, identity ...
Continue Reading

New Phishing Benchmarks Unlocked: Is Your Organization Ahead of the Curve in 2023

Jul 10, 2023 10:51:29 AM By Stu Sjouwerman
Cybercriminals continue to rely on proven attack methods while developing new ways to infiltrate digital environments and break through your human defense layer.
Continue Reading
Subscribe

Search Our Blog


Free Phishing Security Resource Kit

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews