Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Stu Sjouwerman

Recent Posts

See Ridiculously Easy Security Awareness Training and Phishing

Join us for a live demo on Security Awareness Training and phishing in action!
Continue Reading

[On-Demand Webinar] Malicious Browser Notifications: The New Phishing Attack Not Blocked by Your Current Cyber Defense

Cybercriminals have added a devious weapon to their attack arsenals - malicious browser notifications. And the worst part is they’re not blocked by any current cyber defense. These ...
Continue Reading

2020 Phishing Attack Report Shows Over Half of Respondents Noticed Increase in Attacks

Cybersecurity Insiders released a report on the 2020 Phishing Attack Landscape Report, which noted the increase of phishing attacks in 2020 due to the COVID-19 pandemic.
Continue Reading

Signs of Inbound Ransomware

Organizations need to monitor for common signs of imminent ransomware attacks, according to Peter Mackenzie from Sophos. In an article for the Saudi Gazette, Mackenzie outlines five ...
Continue Reading

Securing Remote Employees is the Top 2021 Cybersecurity Challenge for Organizations

Security vendor CheckPoint provides insight into what are the organizational cybersecurity priorities for next two years, as well as where cybersecurity is going to be challenging.
Continue Reading

Phobos Ransomware Is Alive and Well, Targeting SMBs and Asking for Ransoms of $19K

In celebrating its two-year birthday this month, experts take a look at the Phobos ransomware in detail and offer up suggestions on how to avoid infection.
Continue Reading

Scammers Use a $100 Amazon Gift Card to Deliver the Banking Trojan Dridex to Their Victims

It appears the holidays aren’t without a cyber-grinch, as attackers use the lure of free money in the form of a gift card as an easy means to trick victims into infecting their own ...
Continue Reading

Beware of Puppy Scams

Researchers at Anomali have discovered eighteen scam websites offering pets for sale. Most of the websites purport to be selling dogs, although some offer cats and birds as well. The ...
Continue Reading

How to Start a Successful Security Awareness Training Program

You did it - your organization has finally decided to take the first step in implementing security awareness training. But with starting something new there tends to be a 'deer in the ...
Continue Reading

What You Need to Know About DMARC

It's true - not enough organizations utilize DMARC, SPF, and DKIM, global anti-domain-spoofing standards, which could significantly cut down on phishing attacks. But before you implement ...
Continue Reading

BEC Attacks Nearly Doubled in 2020

A new report from Barracuda Networks found that business email compromise (BEC) attacks have nearly doubled over the past year. These attacks made up 12% of all spear phishing attacks in ...
Continue Reading

Cybercriminals Attempt to Exploit Australian Fears on COVID-19

The bad guys are attempting to take advantage of Australian fears of COVID-19 in 2021. The National Identity and Cyber Support Service of Australia and New Zealand ID Care recently warned ...
Continue Reading

A Friend Needs Money Urgently? You're Probably Getting Scammed

People need to be on the lookout for phishing attacks sent from legitimate but compromised social media accounts, according to Paul Ducklin at Naked Security. Ducklin describes a scam ...
Continue Reading

KnowBe4 Fresh Content Updates from December: Including New 2021 KnowBe4 Flagship Training Modules

Here are important fresh content updates to share with you that happened in the month of December.
Continue Reading

[Heads Up] Here's Some Powerful Ammo To Grab More Of Your End-Of-Year InfoSec Budget

OK, let's sum up where we are, here at the end of December 2020. COVID has propelled IT from 2020 to 2030 in a matter of months. However, only a few of us were ready to have the large ...
Continue Reading

Private Online Shopping Risks Affect Businesses, Too

Consumers aren’t the only ones who can be victimized by social engineering attacks while shopping online, according to Arab News. Employees who use work devices for personal shopping are ...
Continue Reading

FireEye's Mandia on SolarWinds hack: 'This was a sniper round'

Joe Warminsky at Cyberscoop wrote: "The foreign espionage operation that breached several U.S. government agencies through SolarWinds software updates was unique in its methods and ...
Continue Reading

Just 8% of U.K. Firms Offer Regular Security Training

A majority of UK businesses are failing to adequately train their remote working employees to spot security threats, according to new research from iomart. The cloud services company ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews