Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Hacker's Movie Guide: The Complete List of Hacker and Cybersecurity Movies

Jan 27, 2023 6:36:05 AM By Stu Sjouwerman
Is alert fatigue getting to you? I found a guide that allows you some well-deserved personal downtime, and still has something to do with work so that you can justify getting away with ...
Continue Reading

Stu's Law: "You get the future you ignore"

Jan 26, 2023 9:12:10 AM By Stu Sjouwerman
I have read a lot of Sci-fi. Thousands of books actually. You can't help but start recognizing patterns of how the future might look like. Many Sci-fi books were made into movies. One of ...
Continue Reading

What is a Good Completion Percentage for Security and Compliance Training?

Jan 26, 2023 8:42:33 AM By John Just
Completion percentages on compliance and security training campaigns have become a popular topic of discussion.
Continue Reading

How Does Quantum Impact Passwords?

Jan 25, 2023 4:03:39 PM By Roger Grimes
Yeah, quantum computers are likely to be able to crack passwords from every angle.
Continue Reading

Do Not Get Fooled Twice: Mailchimp's Latest Breach Raises Alarm Bells – Protect Yourself Now!

Jan 25, 2023 1:23:12 PM By Javvad Malik
For the second time in less than a year, Mailchimp has found itself in a precarious situation, having to admit that it has been breached. It appears that a social engineering attack ...
Continue Reading

[Security Masterminds] Breaking It Down to Bits & Bytes: Analyzing Malware To Understand the Cybercriminal

Jan 25, 2023 10:50:54 AM By James McQuiggan
In our latest episode of Security Masterminds, we have the pleasure of interviewing Roger Grimes, Data-Driven Defense Evangelist for KnowBe4, who has held various roles throughout his ...
Continue Reading

Phishing Campaign Impersonates Japanese Rail Company

Jan 25, 2023 10:49:17 AM By Stu Sjouwerman
Researchers at Safeguard Cyber describe a phishing campaign that’s posing as a Japanese rail ticket reservation company.
Continue Reading

2022 Report Confirms Business-Related Phishing Emails Trend [INFOGRAPHIC]

Jan 24, 2023 1:14:53 PM By Stu Sjouwerman
KnowBe4's latest reports on top-clicked phishing email subjects have been released for 2022 and Q4 2022. We analyze 'in the wild' attacks reported via our Phish Alert Button, top subjects ...
Continue Reading

CyberheistNews Vol 13 #04 [Heads Up] Unusual Blank-Image Phishing Attacks Impersonate DocuSign

Jan 24, 2023 9:00:00 AM By Stu Sjouwerman
Continue Reading

New QR Code Phishing Campaign is Impersonating the Chinese Ministry of Finance

Jan 24, 2023 8:36:44 AM By Stu Sjouwerman
Researchers at Fortinet warn that a phishing campaign is impersonating the Chinese Ministry of Finance. The phishing emails contain a document with a QR code that leads to a ...
Continue Reading

Cybercrime The World’s Third Largest Economy After the U.S. and China

Jan 21, 2023 9:23:38 AM By Stu Sjouwerman
Cybersecurity Ventures released a new report that showed cybercrime is going to cost the world $8 trillion USD in 2023.
Continue Reading

Ransomware Has SMBs Reprioritizing Their Cybersecurity Spending to Combat Attacks

Jan 20, 2023 9:57:48 AM By Stu Sjouwerman
New data shows that SMBs can clearly see where they have cybersecurity issues and are taking great strides to put their devoted budget to security technology and services that actually ...
Continue Reading

The Current State of Cybersecurity Should Fear AI Tools Like ChatGPT

Jan 20, 2023 9:57:35 AM By Stu Sjouwerman
Malicious use of the text-based AI has already begun to be seen in the wild, and speculative ways attackers can use ChatGPT may spell temporary doom for cybersecurity solutions.
Continue Reading

Unusual Blank-Image Phishing Attacks Impersonate DocuSign

Jan 20, 2023 8:59:19 AM By Stu Sjouwerman
An unusual phishing technique has surfaced this week. Avanan, a Check Point Software company, released a blog Thursday morning detailing a new attack in which hackers hide malicious ...
Continue Reading

[Eye Popper] Ransomware Victims Refused To Pay Last Year

Jan 20, 2023 7:03:01 AM By Stu Sjouwerman
Finally some good news from the ransomware front!  Despite bad actors launching a number of ransomware campaigns throughout 2022, organizations refused to submit and paid criminals an ...
Continue Reading

How South Africa's Largest Law Firm Was Fined R5.5m for Not Educating Customers

Jan 19, 2023 2:48:36 PM By Javvad Malik
Africa’s largest law firmordered to pay R5.5 million to a woman who fell victim to a hacking syndicate. When Judith Hawarden was buying a house, hackers changed the bank account number in ...
Continue Reading

Phishing For Industrial Control Systems

Jan 19, 2023 8:42:58 AM By Stu Sjouwerman
Mandiant has published a report describing phishing emails that have breached organizations in the industrial sector. Mandiant explains that the majority of phishing attacks are ...
Continue Reading

The Amazing Thing Is that DHL Phishing Campaigns STILL Work

Jan 18, 2023 2:23:24 PM By Stu Sjouwerman
Researchers at Armorblox warn that a phishing campaign is impersonating DHL with fake shipping invoices.
Continue Reading

CyberheistNews Vol 13 #03 [Eye Opener] Password Managers Can Be Hacked Lots of Ways and Yes, You Should Still Use Them

Jan 17, 2023 9:00:00 AM By Stu Sjouwerman
Continue Reading

Spear Phishing Campaign Targets Southeast Asia

Jan 17, 2023 8:52:07 AM By Stu Sjouwerman
Researchers at Group-IB are tracking a previously unknown threat actor dubbed “Dark Pink” that’s using spear phishing attacks to target government, military, and religious organizations. ...
Continue Reading
Subscribe

Search Our Blog


Ransomware Hostage Rescue Manual

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews