Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Stu Sjouwerman

Recent Posts

Executives are Out and Employees are In as Cybercriminals Change Their Primary Targets for Cyberattack

Phishing and Social Engineering scammers are shifting tactics, focusing efforts on low-level employees using a variety of methods as a means to cast a wider net within a targeted ...
Continue Reading

Phishing Attacks See Massive Increases and Improvements in Execution with Social Engineering at the Helm

With 98% of malicious emails that hit inboxes containing no malware, the evolution and future of the phish lies squarely in the hands of effective social engineering.
Continue Reading

Manufacturing giant Aebi Schmidt hit by ransomware

Aebi Schmidt, a European manufacturing giant with operations in the U.S., has been hit by a ransomware attack, TechCrunch has learned.
Continue Reading

PayPal receives patent for ransomware detection technology

The United States Patent and Trademark Office has granted this week a patent to online payments company PayPal for a technique for detecting and stopping ransomware attacks.
Continue Reading

Evil TeamViewer Attacks Under the Guise of the U.S. State Department

A targeted, email-borne attack against embassy officials and government finance authorities globally is making use of a malicious attachment disguised as a top-secret U.S. document. It ...
Continue Reading

Is Managing Your Vendor Risk Taking Up Too Much of Your Time?

You told us you have challenging compliance requirements, and keeping up with risk assessments is a continuous hassle.
Continue Reading

Why Ransomware Continues to Be an Immensely Profitable Business for Bad Actors

Ransomware, arguably the most efficient malware used by cybercrooks in recent years, continues to wreak havoc on a global scale, affecting everyone and everything, from regular Internet ...
Continue Reading

Spearphishing Boils Down to Basic Social Engineering

While spearphishing attacks may employ various tactics and tools, they all rely on the same underlying human weaknesses to achieve their goals, according to Asaf Cidon from Barracuda ...
Continue Reading

Social Engineers Earn a First

A study by nonprofit research company Jisc and the UK’s Higher Education Policy Institute (HEPI) found that 100 percent of spear phishing tests against universities were able to gain ...
Continue Reading

Florida Spearphishing: Meddle Globally, Phish Locally

Russian intelligence services sent spearphishing emails to more than 120 email accounts used by Florida election officials in November 2016, according to Special Counsel Robert Mueller’s ...
Continue Reading

The Cost of Paying in a Ransomware Attack Nearly Doubles While Downtime Also Increases

The latest data from Coveware shows increases across the board in ransoms, downtime, and average cost of an attack, mostly due to the increased use of the Ryuk ransomware variant.
Continue Reading

U.K. Government: "80% Of Organizations Experience Phishing Attacks"

Despite maintaining an improved security posture over last year, 2019 brings additional attacks with a higher price tag, causing the U.K. government to urge organizations to do more.
Continue Reading

Ohio Becomes the Third U.S. State to Adopt the NAIC’s Insurance Data Security Model Law

Ohio joins South Carolina and Michigan to create cybersecurity legislation modeled after the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law.
Continue Reading

Phishing Continues to be the Source of Health Data Breaches Totaling Over 1M Breached Records

The beginning of 2019 has proven that data breaches in the health industry aren’t going anywhere. And from the intel on the breaches, phishing is playing a predominant role.
Continue Reading

[InfoGraphic] 56 Must Know Data Breach Statistics for 2019

Varonis spent a lot of time compiling a whole bunch of data breach stats that are very good ammo for budget requests. They also created an infographic with a quick executive summary. Did ...
Continue Reading

New Articles And Templates From The KnowBe4 Tech Content Team

Hi everyone, we wanted to send a quick note about the major items the Tech Content Team has added to our knowledge base and KMSAT product in the last month.
Continue Reading

Here are few Game of Thrones phishing scams you should know about and how to avoid them

With the Game of Thrones (GoT) Season 8 finally airing, bad guys are using a variety of social engineering tactics to trick your end-users.
Continue Reading

A Mystery Agent Is Doxing Iran's Hackers And Dumping Their Code

Alyssa Foote at WIRED wrote: "NEARLY THREE YEARS after the mysterious group called the Shadow Brokers began disemboweling the NSA's hackers and leaking their hacking tools onto the open ...
Continue Reading

[Heads-up] A GA County School System Only Just Escaped A 2 Million Dollar Cyber Attack

Armor, a leading global cloud security solutions provider, read the news about a recent cyberattack, where hackers targeted the payroll department of the city of Tallahassee, FL and ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews