Stu Sjouwerman

MetaMask Crypto Wallet Phishing

Jun 27, 2022 9:56:17 AM By Stu Sjouwerman

A phishing campaign attempting to steal credentials for MetaMask cryptocurrency wallets, according to Lauryn Cash at Armorblox.

Pre-Hijacking of Online Accounts are the Latest Method for Attackers to Impersonate and Target

Jun 23, 2022 11:21:31 AM By Stu Sjouwerman

Rather than run a complex credential harvesting phishing scam, attackers use existing information about their victim and hijack a popular web service account *before* it’s created.

“Failure to Authenticate” Wire Transaction at the Heart of a Cyber Insurance Appeal Case

Jun 23, 2022 11:21:24 AM By Stu Sjouwerman

Lawsuits over denied cyber insurance claims provide insight into what you should and shouldn’t expect from your policy – and that actions by your own users may make the difference.

Phishing Scammers Leverage Telegraph’s Loose Governance to Host Crypto and Credential Scams

Jun 23, 2022 11:21:18 AM By Stu Sjouwerman

The free and unmonitored webpage publishing platform has been identified as being used in phishing scams dating back as early as mid-2019, as a key part to bypass security solutions.

Vendor Impersonation Competing with CEO Fraud

Jun 23, 2022 9:09:21 AM By Stu Sjouwerman

Researchers at Abnormal Security have observed an increase in vendor impersonation in business email compromise (BEC) attacks.

[Heads Up] Russia has increased the cyber attacks against countries that help Ukraine

Jun 23, 2022 7:05:35 AM By Stu Sjouwerman

The Wall Street Journal just reported that Russian intelligence agencies have increased the pace of cyberattacks against nations that have provided aid to Ukraine, according to new ...

Spear Phishing Campaign Targets the US Military

Jun 22, 2022 8:59:46 AM By Stu Sjouwerman

Researchers at Zscaler warn that a spear phishing campaign is targeting the US military and other sectors with phishing emails that purport to be voicemail notifications. The emails ...

FBI Warns of Fraudsters on LinkedIn

Jun 21, 2022 9:15:06 AM By Stu Sjouwerman

The US FBI has warned that scammers on LinkedIn are a “significant threat,” CNBC reports. Sean Ragan, the FBI’s special agent in charge of the San Francisco and Sacramento field offices, ...

CyberheistNews Vol 12 #25 [Heads Up] Facebook Phishing Scam Steals Millions of Credentials

Jun 21, 2022 9:08:17 AM By Stu Sjouwerman

KnowBe4 June 2022 Perspective

Jun 21, 2022 8:52:10 AM By Stu Sjouwerman

Information Security is mission-critical today. The global risk situation is higher than ever. Your employees are still your largest attack vector. New-school security awareness training ...

Smishing Text Scams Have Doubled in the Last Three Years

Jun 20, 2022 10:12:52 AM By Stu Sjouwerman

New data shows a rise in the use of text messages as an effective vehicle to connect with potential victims for social engineering scams as Americans increase their preference of the ...

New PDF-Based Phishing Attack Demonstrates that Office Docs Aren’t Passé – They are Just Obfuscated!

Jun 20, 2022 10:12:11 AM By Stu Sjouwerman

Security researchers have discovered a cunning PDF-based phishing attack that leverages social engineering and PDF prompt specifics to trick users into opening malicious Office docs.

Over 2000 Social Engineering Scammers Arrested in Multi-Country Crackdown on Fraud, BEC, and Money Laundering

Jun 20, 2022 10:12:04 AM By Stu Sjouwerman

Thousands of members of cybercriminal groups were arrested in a sting that lasted 2 months and involved coordinated efforts of the law enforcement departments of 76 countries.

Vishing Attacks Increase 550% Over Last Year as the Financial Sector Continues to be a Primary Target

Jun 20, 2022 10:11:58 AM By Stu Sjouwerman

Cybercriminals are continuing to bypass the use of malware in favor of response-based and credential-centric social engineering attacks, according to new data from Agari and PhishLabs.

142 Million Customer Records From MGM Resorts Leaked for Free Download

Jun 20, 2022 10:11:30 AM By Stu Sjouwerman

The availability of such a massive number of records at no cost to any cybercriminal interested is a recipe for countless phishing campaigns using the data itself as a means of ...

New Phishing Campaign Uses ChatBot Functionality to Build Trust and Steal Credit Card Details

Jun 20, 2022 10:11:18 AM By Stu Sjouwerman

Rather than go for the phishing jugular and point the victim immediately to a webpage to steal credentials or personal details, a new phishing campaign uses a chatbot to lower victim ...

The Next Evolution in Cyberattacks You Need to Worry About: AI

Jun 20, 2022 10:11:02 AM By Stu Sjouwerman

New testimony to U.S. Senate Armed Services Committee Subcommittee on Cybersecurity by Microsoft’s Chief Scientific Officer sheds light on AI-powered cyberattacks.

Less Than 40% of Asia-Pacific Organizations Are Confident to Stop Cyber Threats as 83% Experience At Least One Ransomware Attack a Year

Jun 20, 2022 10:10:51 AM By Stu Sjouwerman

With exactly half of cybersecurity incidents caused by organizations having an outdated security posture, the ability to stop breaches involves some re-investment in measures that really ...

Anna Collard, SVP Content Strategy & Evangelist, KnowBe4 Africa Has Been Acknowledged as a Global Influencer in Cyber

Jun 16, 2022 9:54:29 AM By Stu Sjouwerman

IFSEC Global recently acknowledged our very own Anna Collard as a IFSEC Global Influencer in Security for 2022! She was one of the few nominated by a panel of highly respected judges, and ...

A Closer Look at HR Scams: Does Niceness Have a Downside?

Jun 16, 2022 8:43:51 AM By Stu Sjouwerman

Threat actors are targeting HR employees who are looking to hire new people, according to Lisa Vaas at Contrast Security. As part of their job, HR employees frequently interact with ...

Security Awareness Training Blog

View Topics

Stu Sjouwerman

Recent Posts

MetaMask Crypto Wallet Phishing

Pre-Hijacking of Online Accounts are the Latest Method for Attackers to Impersonate and Target

“Failure to Authenticate” Wire Transaction at the Heart of a Cyber Insurance Appeal Case

Phishing Scammers Leverage Telegraph’s Loose Governance to Host Crypto and Credential Scams

Vendor Impersonation Competing with CEO Fraud

[Heads Up] Russia has increased the cyber attacks against countries that help Ukraine

Spear Phishing Campaign Targets the US Military

FBI Warns of Fraudsters on LinkedIn

CyberheistNews Vol 12 #25 [Heads Up] Facebook Phishing Scam Steals Millions of Credentials

KnowBe4 June 2022 Perspective

Smishing Text Scams Have Doubled in the Last Three Years

New PDF-Based Phishing Attack Demonstrates that Office Docs Aren’t Passé – They are Just Obfuscated!

Over 2000 Social Engineering Scammers Arrested in Multi-Country Crackdown on Fraud, BEC, and Money Laundering

Vishing Attacks Increase 550% Over Last Year as the Financial Sector Continues to be a Primary Target

142 Million Customer Records From MGM Resorts Leaked for Free Download

New Phishing Campaign Uses ChatBot Functionality to Build Trust and Steal Credit Card Details

The Next Evolution in Cyberattacks You Need to Worry About: AI

Less Than 40% of Asia-Pacific Organizations Are Confident to Stop Cyber Threats as 83% Experience At Least One Ransomware Attack a Year

Anna Collard, SVP Content Strategy & Evangelist, KnowBe4 Africa Has Been Acknowledged as a Global Influencer in Cyber

A Closer Look at HR Scams: Does Niceness Have a Downside?

Search Our Blog

Subscribe To Our Blog

Posts By Topic

Get the latest about social engineering

Subscribe to CyberheistNews

Get the latest about social engineering

Subscribe to CyberheistNews

Products & Services

About Us

Free Tools

Contact Us

Contact Support

Search