Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Save $200 on Your Security Awareness and Culture Professional (SACP) Certification

Jul 21, 2023 11:21:07 AM By Stu Sjouwerman
H Layer Credentialing is launching an updated exam form with new content and they need YOUR help! They are looking for professionals interested in earning their SACP Certification to ...
Continue Reading

Microsoft was the Most Impersonated Brand in Q2, 2023

Jul 20, 2023 3:25:44 PM By Stu Sjouwerman
Microsoft was the most impersonated brand in phishing attacks during Q2, 2023, according to Check Point’s latest Brand Phishing Report.
Continue Reading

European Union Healthcare Sees the Number of Cyber Incidents Double in 2023

Jul 20, 2023 3:25:40 PM By Stu Sjouwerman
A new report focused on the healthcare sector sheds light on the state of cyber attacks in the European Union, including the types of attacks, who’s targeted, motivations, and who’s ...
Continue Reading

Business Email Compromise Now Has a $50 Billion Price Tag

Jul 20, 2023 3:25:36 PM By Stu Sjouwerman
The latest data from the FBI’s Internet Crime Complaint Center (IC3) ups the estimate for the cost of losses and exposure through business email compromise (BEC) attacks from 2013 through ...
Continue Reading

The Number of Data Compromises Jumps 50% in H1 2023, Outpacing Every Year on Record

Jul 20, 2023 3:25:33 PM By Stu Sjouwerman
New data from the Identity Theft Resource Center (ITRC) covering the first half of this year shows a significant rise in the number of successful cyber attacks focused on stealing ...
Continue Reading

Kevin David Mitnick  (Aug 6, 1963 - July 16, 2023)

Jul 20, 2023 7:16:25 AM By Stu Sjouwerman
The only constant is change. That is true for physics, for organizations, and for us humans. People join and leave teams, and of course also join and leave life. But it's always a shock ...
Continue Reading

Threat Actors Add ".Zip" Domains to Phishbait

Jul 19, 2023 9:54:36 AM By Stu Sjouwerman
Cybercriminals are exploiting the introduction of “.ZIP” as a new generic Top-Level Domain (gTLD) to launch phishing attacks, according to researchers at Fortinet.
Continue Reading

[INFOGRAPHIC] KnowBe4’s Content Library by the Numbers

Jul 19, 2023 9:27:35 AM By Stu Sjouwerman
KnowBe4 offers the world’s largest library of always-fresh security awareness and compliance training content that includes assessments, interactive training modules, videos, games, ...
Continue Reading

CyberheistNews Vol 13 #29 [Heads Up] Phishing Attacks Now Use QR Codes to Steal Your User Credentials

Jul 18, 2023 9:00:00 AM By Stu Sjouwerman
Continue Reading

WormGPT, an "ethics-free" Cyber Crime text generator

Jul 17, 2023 1:26:05 PM By Stu Sjouwerman
A new generative AI model called “WormGPT” is being offered on cybercrime forums, according to researchers at SlashNext. While other AI tools, such as ChatGPT, have safeguards in place ...
Continue Reading

[LIVE DEMO] Are Your Users Making Risky Security Mistakes? Deliver Real-Time Coaching in Response to Risky User Behavior with SecurityCoach

Jul 14, 2023 4:05:43 PM By Stu Sjouwerman
Do you need an easy, automated way to provide real-time feedback the moment your users make risky mistakes to help reinforce the training campaigns you manage today?
Continue Reading

KnowBe4 Wins 2023 Top Workplaces for Technology Award

Jul 14, 2023 10:24:51 AM By Stu Sjouwerman
KnowBe4 ranks number one overall on the 2023 Technology Top Workplaces list for the third consecutive year and earns national recognition as an employer of choice!
Continue Reading

Ransomware Crypto Payments Are on the Rise While the Rest of Crypto Crime is on the Decline

Jul 14, 2023 8:14:35 AM By Stu Sjouwerman
New insight from blockchain analysis company, Chainalysis, shows that activity involving known ransomware crypto addresses has grown over the last 18 months, despite a downfall of other ...
Continue Reading

Nearly One-Quarter of All Emails Are Considered to be Malicious

Jul 14, 2023 8:14:31 AM By Stu Sjouwerman
The quantity of emails involved in scams and cyber attacks continues to grow as credential theft and response-based phishing persist as top attack variants.
Continue Reading

Banking Detail Malvertising Attack Disguises Itself as a Foolproof USPS Google Ad

Jul 14, 2023 8:14:27 AM By Stu Sjouwerman
A new scam aimed at stealing your credit card and banking information has reared its’ ugly head as a completely legitimate ad that is likely to be clicked based on the corresponding ...
Continue Reading

[Discovered] An evil new AI disinformation attack called 'PoisonGPT'

Jul 13, 2023 4:39:42 PM By Stu Sjouwerman
PoisonGPT works completely normally, until you ask it who the first person to walk on the moon was.
Continue Reading

Tailgating Through Physical Security Using Social Engineering Tactics

Jul 13, 2023 9:00:47 AM By Stu Sjouwerman
Researchers at Check Point outline various forms of tailgating attacks. These attacks can allow threat actors to bypass physical security measures via social engineering.
Continue Reading

Two-Thirds of Ransomware Attacks Against Manufacturing Resulted in Encrypted Data

Jul 12, 2023 10:11:59 AM By Stu Sjouwerman
As the rate of ransomware attacks steadily increased over time, there are clear indicators as to how these attacks are starting and, therefore, what can be done to stop them.
Continue Reading

Phishing Attacks Employing QR Codes Are Capturing User Credentials

Jul 12, 2023 10:11:56 AM By Stu Sjouwerman
Using a new twist to bypass detection from security solutions, cyber attacks are now employing QR codes that your users will not recognize as anything suspicious.
Continue Reading

Launch Of New Meta Thread App Spawns Hundreds Of Spoof Domains

Jul 12, 2023 8:56:35 AM By Stu Sjouwerman
Researchers at Veriti have observed hundreds of spoofed domains following Meta’s launch of its Threads social media platform.
Continue Reading
Subscribe

Search Our Blog


Free Phishing Security Resource Kit

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews