Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Massive 13,467% Growth in WhatsApp Phishing URLs Seen as Top Impersonated Domains Are on the Decline

The latest data from email security vendor Vade Secure shows drastic shifts in domain impersonation trends cybercriminals are using to carry out phishing attacks.
Continue Reading

Ransomware Attack Leaves 43,000 Employees Without Email

The recent attack on facilities management company ISS has created a significant disruption in their operations, communication, and services worldwide.
Continue Reading

The Real-life Email You Never Want To Get From Your CEO Because The Feds Called...

From The Desk Of Mark *********, CEO, ********* Corporation
Continue Reading

Here Is A Real-life Bank Phone Scam Blocked By A Security Awareness Trained Employee

Brad Mathis at our partner Keller Schroeder sent me the following real-life story from Matt, a KnowBe4 Security Awareness Training client...
Continue Reading

Emotet Malware Shows Up in SMiShing Attacks Disguised as Bank Notifications

A newly discovered attack looks to try to make a victim of mobile device holders using a two-pronged attack that uses Emotet and, perhaps, Trickbot.
Continue Reading

Most Organizations Stick to Legacy Password Security Practices Despite Experiencing Cyberattacks

In a surprising twist, new data sheds light on the lack of proper security around passwords and authentication by IT at a time when cyberattacks are all but an absolute given.
Continue Reading

Courts: Banks $2 Million in Losses from a BEC Attack Aren’t Covered by Cyberinsurance

Using emails impersonating the wife of a senior executive at Crown Bank, cybercriminals were able to take the bank for $2 million – an amount the courts held the bank responsible for.
Continue Reading

Phishing URLs Increase 640% as Organizations (Finally!) Embrace Security Awareness Training

The latest data from security vendor Webroot shows how cybercriminals are changing their attack methods and targets – and how Security Awareness Training makes the difference.
Continue Reading

New Spear Phishing Campaign Targets 27 Famous Brands With Malicious SLK Files

A new spear phishing campaign is targeting twenty-seven companies around the world with malicious SLK (Symbolic Link) files, according to BleepingComputer. The attackers pose as a real ...
Continue Reading

5 Ways to Improve Your Security Awareness Training Program

In today’s world, it’s essential to implement security awareness training in the workplace. Without security awareness training, how would your employees know how to stay safe? A lot of ...
Continue Reading

Addressing the Challenge of Third-Party Vendor Risk: Securing Your Supply Chain

Your customer data, intellectual property, and financials are the lifeblood of your organization. If lost or leaked, there could be significant implications to the viability of your ...
Continue Reading

Catphish and Honey Traps

Hundreds of Israeli soldiers had their phones compromised by malware after falling for catfishing attacks purportedly launched by Hamas, Forbes reports. The Israel Defense Forces (IDF) ...
Continue Reading

A U.S. Natural Gas Operator Shuts Down For 2 Days After A Phishing Attack Infects It With Ransomware

Dan Goodin at Ars Technica reported something worrisome: "A US-based natural gas facility shut down operations for two days after sustaining a ransomware infection that prevented ...
Continue Reading

Over 500 Browser Extensions Secretly Stealing Millions of Users Private Data Yanked From Chrome Store

Unfortunately, cyber criminals never stop their innovation. Now they have come up with a novel method to both poison Google's extension ecosystem, combined with  social engineering ...
Continue Reading

New Convincing Verizon Smishing Scam Makes SIM Swaps A Breeze

Cybercriminals intent on using a mobile device as a second factor of authentication are now using texts and very realistic-looking mobile sites to steal details needed to perform SIM ...
Continue Reading

The Good Taxi Driver

A taxi driver in Roseville, California saved an elderly passenger from being scammed out of $25,000, CNN reports. Rajbir Singh, the owner of Roseville Cab, recently picked up a ...
Continue Reading

[World Premiere] KnowBe4's New Season 2 of Security Awareness Video Series - 'The Inside Man'

We’re excited to announce Season 2 of the award-winning KnowBe4 Original Series - ‘The Inside Man’. This network-quality video training series delivers an entertaining learning experience ...
Continue Reading

[Heads-up] The World Health Organization Warns of New Coronavirus Phishing Attacks. Inoculate Your Employees!

The World Health Organization (WHO) is putting out an alert about ongoing Coronavirus-themed phishing attacks that impersonate the WHO and try to steal confidential information and ...
Continue Reading

Texas Ranks Second in Number of Ransomware Attacks on Health Care Organizations

According to new data from Comparitech, since 2016 Texas has experienced 14 ransomware attacks impacting a total of 483,000 patients, and costing as much as nearly $20 Million in damages.
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews