Phishing Attacks Surged in Q2 2021

Jul 27, 2021 8:37:21 AM By Stu Sjouwerman

Phishing activity increased dramatically in the second quarter of 2021, according to a recent report by Vade. The company observed 4.2 billion phishing emails in June alone.

Milanote Exploited to Host Phishing Content

Jul 26, 2021 9:39:19 AM By Stu Sjouwerman

Researchers at Avanan warn that attackers are exploiting the collaboration and note-taking app Milanote to host phishing links.

Remote Employees Adopt Bad Cybersecurity Habits While Working from Home

Jul 23, 2021 8:24:43 AM By Stu Sjouwerman

A new report focused on businesses looking to bring employees back to the office makes it very clear that security leaders are concerned, as remote workers have been anything but secure.

U.S. State Department Issues a Reward for Information on Foreign Cybercriminals Targeting Critical Infrastructure

Jul 23, 2021 8:24:29 AM By Stu Sjouwerman

In the wake of cyberattacks targeting U.S. infrastructure organizations, the U.S. government is stepping up measures to identify foreign threat actors and bring them to justice.

Updated Ransomware Simulator Now With 23 Latest Infection Scenarios

Jul 23, 2021 8:00:00 AM By Stu Sjouwerman

As ransomware techniques continue to evolve, two new ransomware strains, DearCry and Black Kingdom, were blamed for the huge Microsoft Exchange server attacks earlier this year, which ...

Microsoft Takes Down Homoglyph Domains

Jul 22, 2021 10:44:51 AM By Stu Sjouwerman

Microsoft has taken legal action to shut down eighteen domains that were being used in business email compromise (BEC) attacks. The sites in question used homoglyphs to impersonate ...

[HEADS UP] 2021 Tokyo Olympics Mean Olympic-Themed Phishing Attacks

Jul 21, 2021 8:59:13 AM By Stu Sjouwerman

Last year, we reported that authorities warned of the Tokyo Olympics phishing attacks. Then the global pandemic occurred, and the games were postponed. Well, now the games have ...

Mint Mobile, Porting Numbers, and Identity Theft

Jul 21, 2021 8:47:55 AM By Stu Sjouwerman

US telecommunications company Mint Mobile warned some users that their phone numbers had temporarily been ported to another carrier by an unauthorized individual, which allowed the ...

Microsoft Continues to be the Top Impersonated Brand in Phishing Attacks

Jul 20, 2021 9:58:29 AM By Stu Sjouwerman

New data from CheckPoint identifies those brands being used by threat actors to trick victims into opening attachments, clicking links, providing credentials, and giving up personal ...

The Cost and Impact of Cybercrime Can Now Be Measured in a Single Minute

Jul 20, 2021 9:57:55 AM By Stu Sjouwerman

With the number of threat actors growing rapidly, along with an increased frequency of attacks, RiskIQ has put together a sobering perspective of how cybercrime impacts us in just 60 ...

CyberheistNews Vol 11 #28 [HEADS UP] Live Phishing Attack Uses New Infection Technique to Deliver Malware

Jul 20, 2021 9:46:36 AM By Stu Sjouwerman

[INFOGRAPHIC] New Report Shows Users Are Falling for Security and HR-Related Phishing Attacks

Jul 19, 2021 5:04:04 PM By Stu Sjouwerman

KnowBe4's latest quarterly report on top-clicked phishing email subjects is here. These are broken down into three different categories: social media related subjects, general subjects, ...

New LuminousMoth APT Takes a Double-Infection Vector Approach to Attacks

Jul 19, 2021 1:45:55 PM By Stu Sjouwerman

Spotted by security researchers at Kaspersky Labs, this large-scale yet extremely targeted campaign of attacks focuses on government organizations within Southeast Asia.

Nearly Every Organization Has Had an Insider-Caused Data Breach in the Last Year

Jul 19, 2021 1:45:35 PM By Stu Sjouwerman

Whether it’s from an accidental leak of data or falling victim to a phishing attack, new data from email security vendor Egress puts the insider’s role in breaches into critical ...

Facebook Disrupts Iranian Social Engineering Operation

Jul 19, 2021 9:38:15 AM By Stu Sjouwerman

Facebook has taken down an operation by Iranian hackers targeting military, defense, and aerospace entities, particularly focused on the US.

[On-Demand Webinar] 2021 Phishing By Industry Benchmarking Report

Jul 19, 2021 8:00:00 AM By Stu Sjouwerman

As a security leader, you have a lot on your plate. Even as you increase your budget for sophisticated security software, your exposure to cybercrime keeps going up. IT security seems to ...

KnowBe4 Receives Four ISO Certifications From ISOQAR, A Certifying Organization

Jul 17, 2021 9:50:38 AM By Stu Sjouwerman

KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, announced that it has received four certifications – ISO 27001:2013, ISO ...

84% of Organizations Experienced Ransomware and Phishing-Related Security Events in the Last 12 Months

Jul 15, 2021 10:44:04 AM By Stu Sjouwerman

New research from Trend Micro and Osterman Research highlights where organizations are strongest and weakest at stopping phishing attacks resulting in ransomware.

CISA Publishes Darkside Malware Analysis Report and Updated Best Practice Guidance Against Ransomware

Jul 15, 2021 10:44:00 AM By Stu Sjouwerman

New details provide valuable insight into exactly how Darkside works to compromise and encrypt systems, with valuable guidance to avoid becoming a victim of ransomware.

Cryptocurrencies and Email Extortion Trends

Jul 15, 2021 10:04:39 AM By Stu Sjouwerman

Researchers at GreatHorn have found that 98.7% of extortion emails ask for payment in Bitcoin. Most of these emails aren’t targeted, but enough people will likely fall for them that the ...

Security Awareness Training Blog

View Topics