Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Stu Sjouwerman

Recent Posts

New scary good deepfake videos of Tom Cruise show the threat to society is very real

InputMag wrote: "We are entering scary times. New deepfake videos of actor Tom Cruise have made their way onto TikTok under the handle  @deeptomcruise, and boy do they look real.
Continue Reading

[Heads Up] Ransomware and Phishing Attacks Are Not Going Away in 2021

According to three reports published last week, the bad guys have improved their popular tactics with phishing and ransomware attacks. The attacks involving fake COVID-19 scams and remote ...
Continue Reading

The Dilemma: Best-of-Breed Stand-Alone or a Bundled Suite of tools?

Over the last few decades, survey after survey has shown that if IT Administrators had their way, the vast majority of them prefer a hand-picked set of best-of-breed point solutions over ...
Continue Reading

Phishing Targets Industrial Control Systems

Phishing continues to be a primary initial access vector in cyberattacks against industrial control systems, according to researchers at Dragos. Out of the fifteen threat groups tracked ...
Continue Reading

Bogus FedEx and DHL Phishbait

Researchers at Armorblox describe an ongoing phishing campaign that’s using phony FedEx and DHL shipping notifications as phishing lures.
Continue Reading

More NHS-Themed COVID-19 Vaccine Phishing

A phishing campaign spoofing the UK’s National Health Service has surged its output, Infosecurity Magazine reports. Researchers at Mimecast warn that the attackers behind the campaign are ...
Continue Reading

[HEADS UP] Texas Electric Company Warns of Scam Involving Losing Power

With the recent weather crisis in Texas, victims are afraid their power could be cut off. One electric utility company in Texas warns of scams that are threatening customers that their ...
Continue Reading

The First Documented Russian Hack in...1981?

I'm reading "Active Measures: The Secret History of Disinformation and Political Warfare" by Thomas Rid and wanted to share this story with you which was new to me! It's warmly ...
Continue Reading

U.K. Phishing Attack Targets Those Seeking the COVID-19 Vaccine

This latest phishing scam impersonates the UK’s National Health Service, telling recipients that are eligible for the vaccine in order to collect valuable banking and credit card details.
Continue Reading

Be on the Watch for W-2 Phishing Scams!

With tax season just around the corner, this simple, yet effective social engineering theme is perfect to get users to respond to phishing attacks exactly the way the bad guys want.
Continue Reading

The Cybersecurity Book You Should Read

Recently Cyber Defense Magazine released the top 100 cybersecurity books and the top recommended book is one of our Top Faves as well.
Continue Reading

Popular Car Company Becomes Next Target in $20 Million Dollar Ransomware Attack

In an unfortunate situation popular car company Kia Motors America recently made headlines of a possible ransomware attack and the company was demanded to pay $20 Million ransom from a ...
Continue Reading

KnowBe4 Named a January 2021 Gartner Peer Insights Customers’ Choice for Security Awareness Computer-Based Training Across Three Categories

KnowBe4 is excited to announce that we have been recognized as a Customers’ Choice across three categories in the January 2021 Gartner Peer Insights ‘Voice of the Customer’: Security ...
Continue Reading

KnowBe4 Adds New Language Localization Options to its Security Awareness Training and Simulated Phishing Platform

We are excited to announce the availability of KnowBe4’s new localization options for the Admin Console and Learner Experience. You can now set your default language for three ...
Continue Reading

The DOJ Charged Two Alleged Members of North Korea’s Military Intelligence Services With a Scheme That Included Attempts to Steal $1.3 Billion Over the Past Half-Decade for Pyongyang

Two alleged members of North Korea's military intelligence services were accused of hacking banks and companies in the U.S. and several other countries. The grand total for this scheme is ...
Continue Reading

Redirection to Zero Days

Malvertisers exploited a zero-day vulnerability in the browser engine used by Safari and other iOS apps, according to Eliya Stein at Confiant. The vulnerability, which was patched earlier ...
Continue Reading

Does Your Domain Have an Evil Twin? Find Out for a Chance to Win!

Discover dangerous look-alike domains that could be used against you!
Continue Reading

Bogus Bug Reports as Phishbait, Scams

Some bug bounty seekers are using extortionist or fear-mongering tactics in an effort to get paid for reporting trivial flaws, according to Chester Wisniewski at Sophos. He calls them ...
Continue Reading

Microsoft Finds 80% of Organizations Encounter an Increase in Security Threats Due to Remote Workers

Learning from last year’s shift to a remote workforce can help dictate how operations should evolve. New data from Microsoft points at the need to better secure remote workers.
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews