Stu Sjouwerman

FBI Warns of Deepfakes Used to Apply for Remote Jobs

Jun 29, 2022 9:15:30 AM By Stu Sjouwerman

If you're looking for your company's next remote IT position, you may want to think twice before doing so. The FBI recently reported to the Internet Complaint Center today that there are ...

CyberheistNews Vol 12 #26 [Heads Up] The FBI Warns That LinkedIn Fraudsters Are Now a Significant Threat

Jun 28, 2022 9:04:02 AM By Stu Sjouwerman

Try the new Compliance Audit Readiness Assessment today for the NIST Cybersecurity Framework

Jun 28, 2022 7:00:00 AM By Stu Sjouwerman

When it's time to complete a compliance audit of your cybersecurity readiness plan, are you thinking, "Ugh, is it that time again?"

MetaMask Crypto Wallet Phishing

Jun 27, 2022 9:56:17 AM By Stu Sjouwerman

A phishing campaign is attempting to steal credentials for MetaMask cryptocurrency wallets, according to Lauryn Cash at Armorblox.

Pre-Hijacking of Online Accounts are the Latest Method for Attackers to Impersonate and Target

Jun 23, 2022 11:21:31 AM By Stu Sjouwerman

Rather than run a complex credential harvesting phishing scam, attackers use existing information about their victim and hijack a popular web service account *before* it’s created.

“Failure to Authenticate” Wire Transaction at the Heart of a Cyber Insurance Appeal Case

Jun 23, 2022 11:21:24 AM By Stu Sjouwerman

Lawsuits over denied cyber insurance claims provide insight into what you should and shouldn’t expect from your policy – and that actions by your own users may make the difference.

Phishing Scammers Leverage Telegraph’s Loose Governance to Host Crypto and Credential Scams

Jun 23, 2022 11:21:18 AM By Stu Sjouwerman

The free and unmonitored webpage publishing platform has been identified as being used in phishing scams dating back as early as mid-2019, as a key part to bypass security solutions.

Vendor Impersonation Competing with CEO Fraud

Jun 23, 2022 9:09:21 AM By Stu Sjouwerman

Researchers at Abnormal Security have observed an increase in vendor impersonation in business email compromise (BEC) attacks.

[Heads Up] Russia has increased the cyber attacks against countries that help Ukraine

Jun 23, 2022 7:05:35 AM By Stu Sjouwerman

The Wall Street Journal just reported that Russian intelligence agencies have increased the pace of cyberattacks against nations that have provided aid to Ukraine, according to new ...

Spear Phishing Campaign Targets the US Military

Jun 22, 2022 8:59:46 AM By Stu Sjouwerman

Researchers at Zscaler warn that a spear phishing campaign is targeting the US military and other sectors with phishing emails that purport to be voicemail notifications. The emails ...

FBI Warns of Fraudsters on LinkedIn

Jun 21, 2022 9:15:06 AM By Stu Sjouwerman

The US FBI has warned that scammers on LinkedIn are a “significant threat,” CNBC reports. Sean Ragan, the FBI’s special agent in charge of the San Francisco and Sacramento field offices, ...

CyberheistNews Vol 12 #25 [Heads Up] Facebook Phishing Scam Steals Millions of Credentials

Jun 21, 2022 9:08:17 AM By Stu Sjouwerman

KnowBe4 June 2022 Perspective

Jun 21, 2022 8:52:10 AM By Stu Sjouwerman

Information Security is mission-critical today. The global risk situation is higher than ever. Your employees are still your largest attack vector. New-school security awareness training ...

Smishing Text Scams Have Doubled in the Last Three Years

Jun 20, 2022 10:12:52 AM By Stu Sjouwerman

New data shows a rise in the use of text messages as an effective vehicle to connect with potential victims for social engineering scams as Americans increase their preference of the ...

New PDF-Based Phishing Attack Demonstrates that Office Docs Aren’t Passé – They are Just Obfuscated!

Jun 20, 2022 10:12:11 AM By Stu Sjouwerman

Security researchers have discovered a cunning PDF-based phishing attack that leverages social engineering and PDF prompt specifics to trick users into opening malicious Office docs.

Over 2000 Social Engineering Scammers Arrested in Multi-Country Crackdown on Fraud, BEC, and Money Laundering

Jun 20, 2022 10:12:04 AM By Stu Sjouwerman

Thousands of members of cybercriminal groups were arrested in a sting that lasted 2 months and involved coordinated efforts of the law enforcement departments of 76 countries.

Vishing Attacks Increase 550% Over Last Year as the Financial Sector Continues to be a Primary Target

Jun 20, 2022 10:11:58 AM By Stu Sjouwerman

Cybercriminals are continuing to bypass the use of malware in favor of response-based and credential-centric social engineering attacks, according to new data from Agari and PhishLabs.

142 Million Customer Records From MGM Resorts Leaked for Free Download

Jun 20, 2022 10:11:30 AM By Stu Sjouwerman

The availability of such a massive number of records at no cost to any cybercriminal interested is a recipe for countless phishing campaigns using the data itself as a means of ...

New Phishing Campaign Uses ChatBot Functionality to Build Trust and Steal Credit Card Details

Jun 20, 2022 10:11:18 AM By Stu Sjouwerman

Rather than go for the phishing jugular and point the victim immediately to a webpage to steal credentials or personal details, a new phishing campaign uses a chatbot to lower victim ...

The Next Evolution in Cyberattacks You Need to Worry About: AI

Jun 20, 2022 10:11:02 AM By Stu Sjouwerman

New testimony to U.S. Senate Armed Services Committee Subcommittee on Cybersecurity by Microsoft’s Chief Scientific Officer sheds light on AI-powered cyberattacks.

Security Awareness Training Blog

View Topics

Stu Sjouwerman

Recent Posts

FBI Warns of Deepfakes Used to Apply for Remote Jobs

CyberheistNews Vol 12 #26 [Heads Up] The FBI Warns That LinkedIn Fraudsters Are Now a Significant Threat

Try the new Compliance Audit Readiness Assessment today for the NIST Cybersecurity Framework

MetaMask Crypto Wallet Phishing

Pre-Hijacking of Online Accounts are the Latest Method for Attackers to Impersonate and Target

“Failure to Authenticate” Wire Transaction at the Heart of a Cyber Insurance Appeal Case

Phishing Scammers Leverage Telegraph’s Loose Governance to Host Crypto and Credential Scams

Vendor Impersonation Competing with CEO Fraud

[Heads Up] Russia has increased the cyber attacks against countries that help Ukraine

Spear Phishing Campaign Targets the US Military

FBI Warns of Fraudsters on LinkedIn

CyberheistNews Vol 12 #25 [Heads Up] Facebook Phishing Scam Steals Millions of Credentials

KnowBe4 June 2022 Perspective

Smishing Text Scams Have Doubled in the Last Three Years

New PDF-Based Phishing Attack Demonstrates that Office Docs Aren’t Passé – They are Just Obfuscated!

Over 2000 Social Engineering Scammers Arrested in Multi-Country Crackdown on Fraud, BEC, and Money Laundering

Vishing Attacks Increase 550% Over Last Year as the Financial Sector Continues to be a Primary Target

142 Million Customer Records From MGM Resorts Leaked for Free Download

New Phishing Campaign Uses ChatBot Functionality to Build Trust and Steal Credit Card Details

The Next Evolution in Cyberattacks You Need to Worry About: AI

Search Our Blog

Subscribe To Our Blog

Posts By Topic

Get the latest about social engineering

Subscribe to CyberheistNews

Get the latest about social engineering

Subscribe to CyberheistNews

Products & Services

About Us

Free Tools

Contact Us

Contact Support

Search