Motivations of Phishing Criminals

Jan 22, 2021 8:44:00 AM By Roger Grimes

Phishers, people who are phishing other people (i.e., victims), have reasons for doing so. They are all criminals…cons…each pretending to be something they are not in order to trick ...

The Many Ways You Can Be Phished

Jan 22, 2021 8:38:17 AM By Roger Grimes

Social engineering and deception are as old as humanity itself. Phishing is social engineering and deception via digital means and has been with us since the beginning of computers. After ...

World Economic Forum: COVID Makes Cybersecurity Problem No. 1

Jan 21, 2021 9:51:29 AM By Stu Sjouwerman

The WEF just published their recent survey over worldwide corporate leaders. When asked about technology objectives that have become a greater priority due to COVID, they elevated ...

Interpol Warns of Romance Scams

Jan 21, 2021 8:29:30 AM By Stu Sjouwerman

Interpol has issued a notice describing a scam tactic popular on dating applications. The scheme is a mixture of a romance scam and an investment fraud, taking advantage of victims’ ...

[INFOGRAPHIC] Q4 2020 Work From Home Phishing Emails on the Rise

Jan 21, 2021 8:00:00 AM By Stu Sjouwerman

KnowBe4's latest quarterly report on top-clicked phishing email subjects is here. These are broken down into three different categories: social media related subjects, general subjects, ...

Charming Kitten Phishing and Smishing Attacks Use Legitimate Google Links and a Tricky Redirection Strategy to Fool Security Solutions

Jan 19, 2021 1:32:49 PM By Stu Sjouwerman

This breakdown of the latest attack from the Charming Kitten cybercriminal gang shows just how much thought goes into obfuscating their tactics and evading detection.

CyberheistNews Vol 11 #03 [Heads Up] Now Here Is Some Exciting Certification News... :-D

Jan 19, 2021 9:47:18 AM By Stu Sjouwerman

Familiar Advice, but Worth Repeating

Jan 18, 2021 9:36:15 AM By Stu Sjouwerman

Researchers at ESET outline some security best practices to avoid falling for phishing emails. In an article for TechZone360, the researchers explain how to identify suspicious links.

Data Activist Group Publishes Exfiltrated Ransomware Data Previously Available Only on the Dark Web

Jan 18, 2021 8:28:47 AM By Stu Sjouwerman

A small group known as Distributed Denial of Secrets, or DDoSecrets, works to make data stolen as part of ransomware attacks available to journalists.

Social Engineering is a Core Element of Nearly Every Cyber Attack

Jan 18, 2021 8:25:46 AM By Stu Sjouwerman

As organizations look to figure out where to strengthen their cybersecurity strategy, industry data provides guidance by pointing at one of the most common aspects of cyberattacks for ...

The 10 Phases Of Organizational Security Awareness

Jan 17, 2021 12:52:10 PM By Stu Sjouwerman

After 10 years of continued expansion in the security awareness space and providing our platform to tens of thousands of customers, we have observed a certain progress of organizational ...

Vaccine Research Companies are the Target of New Ransomware Attacks

Jan 14, 2021 1:32:24 PM By Stu Sjouwerman

The U.S. Treasury Department's Financial Crimes Enforcement Network (FinCEN) warns financial organizations to be aware of campaigns actively targeting vaccine companies.

68% of Organizations Experiencing One Cyberattack Experience a Second Within 12 Months!

Jan 14, 2021 1:29:19 PM By Stu Sjouwerman

New data from cybersecurity vendor CrowdStrike shows just having security technologies in place won’t prevent one… let alone two… cyberattacks.

Healthcare Sees Double the Increase in the Amount of Ransomware Attacks Since November

Jan 14, 2021 1:25:56 PM By Stu Sjouwerman

With an average of 626 ransomware attacks weekly on healthcare organizations, it’s evident that the bad guys are stepping up their tactics and focus where they believe the money to be.

Google Finds an Alarming Thousands of Phishing Sites Everyday in 2020

Jan 14, 2021 8:30:27 AM By Stu Sjouwerman

Google discovered a record number of phishing sites in 2020, according to researchers at AtlasVPN. The researchers cite Google’s Transparency Report, which says the search giant detected ...

Employees Are Too Trusting of Workspace Tools

Jan 13, 2021 8:24:56 AM By Stu Sjouwerman

A study by Avanan has found that users tend to trust workplace communication tools such as Microsoft Teams, Slack, and Google Hangouts, even though these platforms are subject to many of ...

CyberheistNews Vol 11 #02 [Heads Up] Was SolarWinds Really a Daisy Supply Chain Attack?

Jan 12, 2021 10:13:38 AM By Stu Sjouwerman

How Crime Pays, Ransomware Edition

Jan 12, 2021 10:12:46 AM By Stu Sjouwerman

The Ryuk ransomware operators have raked in more than $150 million from their attacks, researchers at Advanced Intelligence and HYAS have found. The researchers describe how these ...

How to Spot the (Phish) Hook

Jan 11, 2021 9:51:51 AM By Stu Sjouwerman

Users should act as quickly as possible after they realize they’ve fallen for a phishing attack, according to Mallika Mitra at Money. The faster your IT department can contain a malware ...

Social Media & Parler in Troubling Times: New Opportunities for Malicious Actors

Jan 11, 2021 8:00:00 AM By Eric Howes

As most readers are undoubtedly aware, President Donald Trump has been de-platformed by major social media companies, including Twitter and Facebook, following events at the U.S. Capitol ...

Security Awareness Training Blog

View Topics