Business Email Compromise-as-a-Service Emerges as Attempted Fraud Soars to as High as $6 Million

Nov 9, 2021 1:38:26 PM By Stu Sjouwerman

BEC scammers set their sights on payoffs in the millions of dollars, and are following the path of their ransomware counterparts by evolving services while organizations struggle to keep ...

The TodayZoo Phishing Kit Has All the Obfuscation and Impersonation Needed to Fool Your Users

Nov 9, 2021 1:38:18 PM By Stu Sjouwerman

New details from Microsoft on this pieced-together phishing kit reveal some unique tactics designed to avoid detection by security solutions and users alike while stealing credentials.

Median Ransomware Payment Jumps 50% as Mid-Market Becomes More Targeted

Nov 9, 2021 1:38:10 PM By Stu Sjouwerman

Changes in attack tactics in the last quarter alone demonstrate a shift in focus for ransomware gangs, as the number of companies attacked with 100 to 1,000 employees grows.

CyberheistNews Vol 11 #44 [Heads Up] Multi-Stage Vishing Attacks Are Coming to an Inbox Near You

Nov 9, 2021 9:30:48 AM By Stu Sjouwerman

New 'Frankenphishing' Tactic Combines Other Phishing Kits Into One

Nov 9, 2021 9:27:05 AM By Stu Sjouwerman

RiskIQ has observed another phishing kit that’s been pieced together from portions of other phishing kits.

[HEADS UP] Popular Stock Trading Platform Becomes Next Victim of Data Breach

Nov 9, 2021 8:57:32 AM By Stu Sjouwerman

Bleeping Computer recently reported a data breach from popular stock trading platform Robinhood. This breach has impacted over 7 million of their customers.

New Browser Cookie “Smash and Grab” Attack Targets YouTube Creators

Nov 8, 2021 2:24:31 PM By Stu Sjouwerman

New attack details from Google’s Threat Analysis Group show how cybercriminals are innovating ways to use an initial attack to aid in additional crypto scams.

Enabling and Securing Remote Workers are Top Concerns as 80% of Organizations Experience Cyberattacks as Often as Once per Hour

Nov 8, 2021 2:24:27 PM By Stu Sjouwerman

Organizations appear to be overconfident in their ability to protect themselves, despite glaring gaps in security, according to new data from cyber protection vendor, Acronis.

Preparing for Black Friday Scams

Nov 8, 2021 8:56:54 AM By Stu Sjouwerman

Researchers at Tessian caution that people should be wary of scams as Black Friday approaches. The researchers found that thirty percent of people in the US reported receiving a phishing ...

How Not To Get Phished: It Is the Message Not the Medium

Nov 5, 2021 8:45:10 AM By Roger Grimes

Back in the early 1990s, when I was first getting into the IT field as a full-time network administrator, I was tasked with writing up our corporation’s new email policy. Email was just ...

Your KnowBe4 Fresh Content Updates from October 2021

Nov 5, 2021 8:00:00 AM By Stu Sjouwerman

Check out the 22 new pieces of training content added in October, alongside the always fresh content update highlights.

FBI Warns that Financial Events are Occasions for Extortion

Nov 3, 2021 10:29:36 AM By Stu Sjouwerman

The US Federal Bureau of Investigation (FBI) has warned that ransomware operators are targeting companies that are going through financial events. The timing is designed to elicit and ...

CyberheistNews Vol 11 #43 [HEADS UP] Nuclear Ransomware 3.0: It Is About To Get Much Worse

Nov 2, 2021 9:36:39 AM By Stu Sjouwerman

Not that You Would, but Looking for a Sugar Daddy's a Bad Idea

Nov 2, 2021 8:56:59 AM By Stu Sjouwerman

Scammers are using social media to target young women with offers to be their “sugar daddy,” according to Laura Josepha Zimmermann at Avast. Zimmermann received a message on Instagram ...

[On-Demand Webinar] Hacking Your Organization: 7 Steps Cybercriminals Use to Take Total Control of Your Network

Nov 1, 2021 9:17:10 AM By Stu Sjouwerman

The scary fact is that the majority of data breaches are caused by human error. With so many technical controls in place hackers are still getting through to your end users. How are they ...

Misconceptions and Assumptions about Cybersecurity

Nov 1, 2021 9:17:05 AM By Stu Sjouwerman

Misconceptions about cybersecurity can lead to employees falling for preventable attacks, according to Jayant Chakravarti at Toolbox. One misconception is that Apple devices are ...

Multi-Stage Vishing Attacks are Coming to an Inbox Near You

Oct 29, 2021 2:16:15 PM By Stu Sjouwerman

New attacks initially coming in via email are directing victims to make phone calls to attacker-controlled call centers in order to provide banking and credit card details.

Eight Romance Phishing Scammers with Ties to Nigerian Organized Crime Arrested After Stealing Nearly $7 Million

Oct 29, 2021 2:02:43 PM By Stu Sjouwerman

This latest arrest by the South African Police Service (SAPS) demonstrates how romance scams that have been around for decades remain alive and well… and profitable.

Over Half of all Impersonation Attacks Target Non-Executive Employees

Oct 29, 2021 2:02:26 PM By Stu Sjouwerman

A new report shows how cybercriminals focus on users that are less vigilant and more prone to falling for social engineering and impersonation tactics designed to gain access to finances.

KnowBe4's Q3 2021 Top-Clicked Phishing Email Report Includes New Global Data [INFOGRAPHIC]

Oct 29, 2021 10:39:26 AM By Stu Sjouwerman

KnowBe4's latest quarterly report on top-clicked phishing email subjects is here. We are now looking at the top categories globally, general subjects (in the United States and Europe, ...

Security Awareness Training Blog

View Topics