Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Stu Sjouwerman

Recent Posts

80% of Ransomware Victim Organizations Experience a Second Attack

The impact of ransomware attacks is much more than just the sensationalized cost of ransoms. New data spells out how victim organizations have suffered at the hands of ransomware.
Continue Reading

Leaked Copies of Windows 11 Could Be Tempting Phishbait for Techies

The latest anticipated release of Windows should be a reminder that even IT folks can be driven into a frenzy enough to miss the signs of a malicious campaign.
Continue Reading

Why Phishing Attacks Are So Easy, Successful and Profitable – and What to do About It

With phishing attacks being thought to have started literally 25 years ago, what makes this age-old method so continually valuable as a tool for cybercriminals and scammers?
Continue Reading

The Number of Phishing Sites in March Was Twice That of the Previous Year

With the number of phishing sites in Q1 overall up 47%, according to new data from Phishlabs, the bad guys are starting their year off letting you know… they mean business.
Continue Reading

KnowBe4 Makes eSecurity Planet's Best Security Awareness Training for Employees 2021 List

Security awareness training has made leaps and bounds in the last couple of years. With the old-school approach, a few bagels and long, boring powerpoint presentations can only get you so ...
Continue Reading

Credential Stuffing in the Travel and Retail Sectors

The travel and retail sectors are the top targets for credential stuffing attacks, according to Auth0’s State of Secure Identity report. Credential stuffing is a type of brute-force ...
Continue Reading

[Heads Up] If You're an Amazon Prime Shopper, Heed This Prime Day Phishing Alert

Amazon Prime Day is approaching on June 21st with special promotions. This also mean cybercriminals are ready to strike with leveraging 'special deals' on the online days that they will ...
Continue Reading

Bad Security Habits During the Pandemic

56% of IT workers believe employees have acquired poor security habits while working remotely, according to Tessian’s Back to Work Security Behaviors report.
Continue Reading

Ragnar Locker Ransomware Finds Its Next Victim in Taiwan Computer Memory Manufacturer ADATA

The ransomware attack occurring in late-May required the maker of consumer and industrial memory products to take systems offline, causing them to recover and upgrade affected systems.
Continue Reading

The Number of Phishing Websites Hits an All-Time High Reaching Nearly 350% Growth

According to the newly released data from the Anti-Phishing Working Group, every metric measuring phishing attacks is up this year over last, spelling trouble for organizations.
Continue Reading

Tax Organizations Need to Focus on Cybersecurity

Tax preparation companies and tax agencies are increasingly facing scams, fraud, and other attacks, according to Robert Capps, Vice President of Marketplace Innovation at NuData Security. ...
Continue Reading

New BEC Phishing Attack Steals Office 365 Credentials and Bypasses MFA

Leveraging Microsoft Exchange’s Basic Authentication support, scammers were able to use harvested online credentials and bypass any MFA in place, giving them access to mailboxes.
Continue Reading

Bad Cyber Hygiene: 54% Of Employees Admit They Use the Same Passwords Across Multiple Work Accounts

It appears that working from home causes employees to develop some very bad cyber habits, demonstrating that cybersecurity hygiene went from bad to worse mid-pandemic.
Continue Reading

EA Got Social Engineered via Slack Channel and Lost 780 GB valued Millions

Hackers gained access to the networks of video game giant Electronic Arts (EA) via social engineering, Motherboard reports. The hackers claim to have stolen 780 GB of data, including the ...
Continue Reading

New “Ransomware Update” Phishing Attack Seeks to Enjoy the Same Successes as the Recent Pipeline Attack

When your users receive a realistic-looking helpdesk email informing them they should update their system to prevent ransomware attacks, what could possibly go wrong?
Continue Reading

Fax/Scan Phishing Attacks Jump Nearly 500% as Workers Return to the Office

The bad guys take advantage of any major event as the source of a new phishing campaign. According to new data from Avanan, this latest campaign aligns with heading back to the office.
Continue Reading

KnowBe4 Earns 2021 Top Rated Award from TrustRadius

We are proud to announce that TrustRadius has recognized KnowBe4 with a 2021 Top Rated Award.
Continue Reading

Insights Into Credential Phishing

Cybercriminals are quick to put hacked accounts to use, according to Agari by Help Systems. The researchers found that 91% of compromised accounts are accessed by attackers within one ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews