KnowBe4 Blog

CyberheistNews Vol 15 #02 [HEADS UP] Credential Phishing Increased by 703% in H2 2024

Phishing Campaign Abuses Legitimate Services to Send PayPal Requests

A phishing campaign is abusing Microsoft 365 test domains to send legitimate payment requests from PayPal, according to Fortinet’s CISO Dr. Carl Windsor.

Malicious WordPress Plugin Assists in Phishing Attacks

Researchers at SlashNext warn that cybercriminals are using a WordPress plugin called “PhishWP” to spoof payment pages and steal financial information.

[BUDGET AMMO DEPT] WSJ: "Cybersecurity Is the King of Business Worries"

Kim S. Nash, the Deputy Bureau Chief at the Wall Street Journal who owns the cybersecurity beat wrote in her newsletter today: "Forget trade wars and turnovers in national leadership. ...

Phishing for Gamers: Fake Offers Invite Gamers to Test New Gaming Titles

A phishing campaign is targeting users with phony offers to beta test new video games, according to researchers at Malwarebytes.

CyberheistNews Vol 15 #01 [No Time to Waste] The 2025 Cybersecurity Tightrope: What's Next for The World?

Credential Phishing Increased by 703% in H2 2024

Credential phishing attacks surged by 703% in the second half of 2024, according to a report by SlashNext. Phishing attacks overall saw a 202% increase during the same period.

Tax-Themed Phishing Campaign Delivers Malware Via Microsoft Management Console Files

Securonix warns that tax-themed phishing emails are attempting to deliver malware via Microsoft Management Console (MSC) files.

FTC Warns Immigrants About Rising Social Media Immigration Scams

The Federal Trade Commission (FTC) has issued an urgent warning about a surge in immigration scams targeting immigrants and their families on social media platforms like Facebook.

CyberheistNews Vol 14 #52 [Heads Up] Bad Actors Use Voice Phishing in Microsoft Teams To Spread Malware