Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

The Wall Street Journal Just Published An Interview with Kevin Mitnick, KnowBe4's Chief Hacking Officer

Aug 17, 2019 7:46:14 AM By Stu Sjouwerman
August 16, 2019 - Randy Maniloff wrote about Kevin in the WSJ "Weekend Interview". It's a great article that covers his start as a teenage hacker, how he wound up in jail, and how he ...
Continue Reading

Are Local Government and Municipalities Part of a Coordinated Attack on the U.S.?

Aug 15, 2019 3:17:12 PM By Stu Sjouwerman
There are too many ransomware attacks to ignore the similarities. It’s either government networks are easy prey, or someone is trying to cash out on the U.S., one attack at a time.
Continue Reading

Social Engineering Testing is Necessary to Fend off Phishing Attacks

Aug 15, 2019 3:14:23 PM By Stu Sjouwerman
The success of social engineering as part of phishing and spear phishing attacks has caused organizations to realize they need an effective tactic to make employees vigilant.
Continue Reading

The Unusual Activity Would be the Warning Itself

Aug 15, 2019 7:01:40 AM By Stu Sjouwerman
BleepingComputer has come across a phishing campaign that’s spoofing “Unusual sign-in” warnings from Microsoft to steal users’ credentials. The emails look nearly identical to Microsoft’s ...
Continue Reading

Even when your users don't click...

Aug 14, 2019 10:40:34 AM By Stu Sjouwerman
...they can still be helping the bad guys compromise your organization. Sad but true.
Continue Reading

Report: Data Breach in Biometric Security Platform Affecting Millions of Users

Aug 14, 2019 7:22:48 AM By Stu Sjouwerman
Led by internet privacy researchers Noam Rotem and Ran Locar, vpnMentor’s team recently discovered a huge data breach in biometrics security platform BioStar 2. Once stolen, fingerprint ...
Continue Reading

BYOD Really Means Bring Your Own Risk

Aug 14, 2019 7:04:03 AM By Stu Sjouwerman
A new survey by Nationwide Insurance found that while 83 percent of small businesses let their employees work from home when necessary, one-fifth of these companies don’t provide ...
Continue Reading

Still Dodging that Sextortion Bullet

Aug 13, 2019 5:27:18 PM By Stu Sjouwerman
It has long been true that sextortionists really had nothing on their intended victims. No video, no screen captures, nothing at all beyond shame and an uneasy conscience. Unfortunately ...
Continue Reading

Security warning for software developers: You are now prime targets for phishing attacks

Aug 13, 2019 11:25:00 AM By Stu Sjouwerman
Danny Palmer at ZDNet wrote: "Software developers are the people most targeted by hackers conducting cyberattacks against the technology industry, with the hackers taking advantage of the ...
Continue Reading

CyberheistNews Vol 9 #33 Bad Guys Exploit CapitalOne Breach to Push Backdoor Trojan

Aug 13, 2019 10:04:28 AM By Stu Sjouwerman
Continue Reading

[August Live Demo] Simulated Phishing and Security Awareness Training

Aug 12, 2019 11:06:56 AM By Stu Sjouwerman
Old-school awareness training does not hack it anymore. Your email filters have an average 10-15% failure rate; you need a strong human firewall as your last line of defense. Join us ...
Continue Reading

Scam Of The Week: See Jeffrey Epstein Last Words On Video

Aug 12, 2019 8:47:51 AM By Stu Sjouwerman
This weekend, news broke that Jeffrey Epstein was found dead in his cell, apparently a suicide. This is a celebrity death that the bad  guys are going to be exploiting in a variety of ...
Continue Reading

3 Important Facts to Take Away From the New Data Security Law

Aug 12, 2019 6:59:37 AM By Stu Sjouwerman
By Lecio De Paula, Jr., Director of Data Privacy, KnowBe4. New Hampshire joins Ohio, South Carolina, and Michigan in enacting a new data security law directed at insurers modeled after ...
Continue Reading

Three Lessons from a Recent MegaCortex Ransomware Phishing Attack

Aug 12, 2019 6:55:16 AM By Stu Sjouwerman
The MegaCortex strain of ransomware has been used in criminal campaigns targeting businesses as opposed to private individuals. The QuickBooks cloud-hosting firm iNSYNQ, has sustained ...
Continue Reading

Varieties of Extortion Experience

Aug 10, 2019 11:26:07 AM By Stu Sjouwerman
We are all familiar with ransomware and its increasingly dangerous cousin, wiper malware. The first encrypts your files and demands ransom payments in exchange for the decryption key. The ...
Continue Reading

Here Are Some Interesting Headlines I Found During Black Hat

Aug 10, 2019 10:45:01 AM By Stu Sjouwerman
Black Hat 2019 - The Craziest, Most Terrifying Things We Saw: I ran into Neil Rubenking when I went to the Qualys party which was in the Foundation Room all the way on top of the ...
Continue Reading

Business Email Compromise Doubles in Incidents and Triples in Cost

Aug 9, 2019 5:54:07 PM By Stu Sjouwerman
The latest data from the U.S. government’s Financial Crimes Enforcement Network (FinCEN) shows fraud via business email is changing tactics and becoming more effective.
Continue Reading

Email Attacks are Having A Major Impact on Business with Employees Seen as a Major Weak Link

Aug 9, 2019 5:38:08 PM By Stu Sjouwerman
With 82% of organizations facing an attempted email-based security threat in the past year, the impacts of these attacks are material and potentially harmful to the organization.
Continue Reading

CEO Fraud hits B.C. lawyers for $2 million

Aug 9, 2019 3:12:16 PM By Stu Sjouwerman
Two B.C. law firms were targets of so-called social engineering frauds causing almost $2 million in real estate and investment funds to be wired to people other than clients the firms ...
Continue Reading

KnowBe4 Fresh Content & Features Updates - July 2019

Aug 9, 2019 11:01:40 AM By Stu Sjouwerman
Check out the content and feature updates in the KnowBe4 platform for the month of July!
Continue Reading
Subscribe

Search Our Blog


New call-to-action

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews