Stu Sjouwerman

Please Vote For KnowBe4: Computing Security Awards

Aug 22, 2019 3:14:38 PM By Stu Sjouwerman

We're excited to be a finalist for the 2019 Computing Security Awards in the UK! They are inviting everyone to vote for their favorite vendors. It would be highly appreciated if you could ...

Lateral Phishing Affects One in Seven Organizations

Aug 22, 2019 6:58:11 AM By Stu Sjouwerman

A survey by Barracuda found that one in seven organizations experienced lateral phishing attacks over the course of seven months, and that 42% of these attacks were not reported by ...

Social Engineering Used To Establish Shady Bulletproof Hosting

Aug 22, 2019 6:49:31 AM By Stu Sjouwerman

Brian Krebs has reported that a dubious Internet provider, “Resnet,” was renting out tens of thousands of residential IP addresses to be used as proxies by fraudsters and spammers. ...

Ransomware Hits Fortnite Players

Aug 21, 2019 4:21:42 PM By Stu Sjouwerman

DarkReading reports: "Ransomware masquerading as game "cheats" is hitting Fortnite players. Fortunately, there are ways to recover without paying a ransom." Similar to phishing attacks on ...

Employee Error Behind Half of Industrial Network Incidents

Aug 21, 2019 2:17:38 PM By Stu Sjouwerman

A new report by Kaspersky shows that employee mistakes are the leading cause of industrial cybersecurity incidents. Last year, 52% of such incidents were the result of human error.

Is The Ransomware Debate Over? To Pay Or Not To Pay, The Conference Of Mayors Made Up Their Mind

Aug 21, 2019 6:59:56 AM By Stu Sjouwerman

The long-standing argument over whether or not to pay may have come to an end, with a resolution from the U.S. Conference of Mayors calling on cities to not pay up.

Gift Cards Are Now the #1 Business Email Compromise Cash-Out Mechanism for Fraudsters

Aug 20, 2019 5:03:24 PM By Stu Sjouwerman

Overtaking wire transfers and payroll diversion, gift cards have taken a material lead as one of the easiest and least recoverable ways to cash out of a fraud scam.

U.S. Government Stresses the Need for Cybersecurity Awareness and Education in Light of Ransomware Attacks on Government Entities

Aug 20, 2019 4:59:30 PM By Stu Sjouwerman

In light of the recent string of attacks that seem to be targeting government agencies and municipalities, a new multi-agency press release provides guidance on how to be resilient.

Game Phishing Scams Steal Steam Accounts

Aug 20, 2019 4:56:43 PM By Stu Sjouwerman

A phishing scam is stealing Steam accounts by promising free games to victims if they log in to a website with their Steam credentials, according to a recent post by BleepingComputer.

KnowBe4 Applauds Proposed Legislation for Cybersecurity Training Requirement for U.S. House Members

Aug 20, 2019 4:48:48 PM By Stu Sjouwerman

On May 10, 2019, U.S. Representative Kathleen Rice (D-NY) introduced legislation that will require House Members to partake in annual cybersecurity training. At this time, elected ...

[LIVE WEBINAR] How to Prevent 81% of Phishing Attacks With DMARC

Aug 20, 2019 3:12:58 PM By Stu Sjouwerman

Only ~20% of companies use DMARC, SPF, and DKIM, global anti-domain-spoofing standards, which could significantly cut down on phishing attacks. But even when they are enabled and your ...

CyberheistNews Vol 9 #34 [Heads Up] The Unusual Activity Would Be the Microsoft Warning Itself

Aug 20, 2019 10:11:27 AM By Stu Sjouwerman

Blank Emails Come Before BEC Fraud Attack

Aug 19, 2019 4:59:03 PM By Stu Sjouwerman

Business email compromise (or CEO fraud) has its reconnaissance phase, too. Researchers at Agari say they’ve found that blank, unsolicited emails are often an early sign that a BEC gang ...

The Wall Street Journal Just Published An Interview with Kevin Mitnick, KnowBe4's Chief Hacking Officer

Aug 17, 2019 7:46:14 AM By Stu Sjouwerman

August 16, 2019 - Randy Maniloff wrote about Kevin in the WSJ "Weekend Interview". It's a great article that covers his start as a teenage hacker, how he wound up in jail, and how he ...

Are Local Government and Municipalities Part of a Coordinated Attack on the U.S.?

Aug 15, 2019 3:17:12 PM By Stu Sjouwerman

There are too many ransomware attacks to ignore the similarities. It’s either government networks are easy prey, or someone is trying to cash out on the U.S., one attack at a time.

Social Engineering Testing is Necessary to Fend off Phishing Attacks

Aug 15, 2019 3:14:23 PM By Stu Sjouwerman

The success of social engineering as part of phishing and spear phishing attacks has caused organizations to realize they need an effective tactic to make employees vigilant.

The Unusual Activity Would be the Warning Itself

Aug 15, 2019 7:01:40 AM By Stu Sjouwerman

BleepingComputer has come across a phishing campaign that’s spoofing “Unusual sign-in” warnings from Microsoft to steal users’ credentials. The emails look nearly identical to Microsoft’s ...

Even when your users don't click...

Aug 14, 2019 10:40:34 AM By Stu Sjouwerman

...they can still be helping the bad guys compromise your organization. Sad but true.

Report: Data Breach in Biometric Security Platform Affecting Millions of Users

Aug 14, 2019 7:22:48 AM By Stu Sjouwerman

Led by internet privacy researchers Noam Rotem and Ran Locar, vpnMentor’s team recently discovered a huge data breach in biometrics security platform BioStar 2. Once stolen, fingerprint ...

BYOD Really Means Bring Your Own Risk

Aug 14, 2019 7:04:03 AM By Stu Sjouwerman

A new survey by Nationwide Insurance found that while 83 percent of small businesses let their employees work from home when necessary, one-fifth of these companies don’t provide ...

Security Awareness Training Blog

View Topics

Stu Sjouwerman

Recent Posts

Please Vote For KnowBe4: Computing Security Awards

Lateral Phishing Affects One in Seven Organizations

Social Engineering Used To Establish Shady Bulletproof Hosting

Ransomware Hits Fortnite Players

Employee Error Behind Half of Industrial Network Incidents

Is The Ransomware Debate Over? To Pay Or Not To Pay, The Conference Of Mayors Made Up Their Mind

Gift Cards Are Now the #1 Business Email Compromise Cash-Out Mechanism for Fraudsters

U.S. Government Stresses the Need for Cybersecurity Awareness and Education in Light of Ransomware Attacks on Government Entities

Game Phishing Scams Steal Steam Accounts

KnowBe4 Applauds Proposed Legislation for Cybersecurity Training Requirement for U.S. House Members

[LIVE WEBINAR] How to Prevent 81% of Phishing Attacks With DMARC

CyberheistNews Vol 9 #34 [Heads Up] The Unusual Activity Would Be the Microsoft Warning Itself

Blank Emails Come Before BEC Fraud Attack

The Wall Street Journal Just Published An Interview with Kevin Mitnick, KnowBe4's Chief Hacking Officer

Are Local Government and Municipalities Part of a Coordinated Attack on the U.S.?

Social Engineering Testing is Necessary to Fend off Phishing Attacks

The Unusual Activity Would be the Warning Itself

Even when your users don't click...

Report: Data Breach in Biometric Security Platform Affecting Millions of Users

BYOD Really Means Bring Your Own Risk

Search Our Blog

Subscribe To Our Blog

Posts By Topic

Get the latest about social engineering

Subscribe to CyberheistNews

Products & Services

About Us

Free Tools

Contact Us

Contact Support

Search

Search