The Number of Phishing Websites Hits an All-Time High Reaching Nearly 350% Growth

Jun 16, 2021 3:55:58 PM By Stu Sjouwerman

According to the newly released data from the Anti-Phishing Working Group, every metric measuring phishing attacks is up this year over last, spelling trouble for organizations.

Tax Organizations Need to Focus on Cybersecurity

Jun 16, 2021 11:01:28 AM By Stu Sjouwerman

Tax preparation companies and tax agencies are increasingly facing scams, fraud, and other attacks, according to Robert Capps, Vice President of Marketplace Innovation at NuData Security. ...

New BEC Phishing Attack Steals Office 365 Credentials and Bypasses MFA

Jun 15, 2021 2:01:41 PM By Stu Sjouwerman

Leveraging Microsoft Exchange’s Basic Authentication support, scammers were able to use harvested online credentials and bypass any MFA in place, giving them access to mailboxes.

Bad Cyber Hygiene: 54% Of Employees Admit They Use the Same Passwords Across Multiple Work Accounts

Jun 15, 2021 2:01:37 PM By Stu Sjouwerman

It appears that working from home causes employees to develop some very bad cyber habits, demonstrating that cybersecurity hygiene went from bad to worse mid-pandemic.

CyberheistNews Vol 11 #23 [Heads Up] Ransomware Attacks Run Rampant As Fujifilm Becomes the Next Victim

Jun 15, 2021 10:40:36 AM By Stu Sjouwerman

EA Got Social Engineered via Slack Channel and Lost 780 GB valued Millions

Jun 15, 2021 8:48:34 AM By Stu Sjouwerman

Hackers gained access to the networks of video game giant Electronic Arts (EA) via social engineering, Motherboard reports. The hackers claim to have stolen 780 GB of data, including the ...

New “Ransomware Update” Phishing Attack Seeks to Enjoy the Same Successes as the Recent Pipeline Attack

Jun 14, 2021 4:21:43 PM By Stu Sjouwerman

When your users receive a realistic-looking helpdesk email informing them they should update their system to prevent ransomware attacks, what could possibly go wrong?

Fax/Scan Phishing Attacks Jump Nearly 500% as Workers Return to the Office

Jun 14, 2021 4:21:40 PM By Stu Sjouwerman

The bad guys take advantage of any major event as the source of a new phishing campaign. According to new data from Avanan, this latest campaign aligns with heading back to the office.

KnowBe4 Earns 2021 Top Rated Award from TrustRadius

Jun 14, 2021 8:00:00 AM By Stu Sjouwerman

We are proud to announce that TrustRadius has recognized KnowBe4 with a 2021 Top Rated Award.

Deal or No Deal: The Double-edged Sword of the IT Security Bundle

Jun 10, 2021 10:32:06 AM By Perry Carpenter

The concept of “bundling” has become very popular among large IT vendors over the past decade as it promises a number of benefits.

Insights Into Credential Phishing

Jun 9, 2021 10:36:37 AM By Stu Sjouwerman

Cybercriminals are quick to put hacked accounts to use, according to Agari by Help Systems. The researchers found that 91% of compromised accounts are accessed by attackers within one ...

FINRA Warns U.S. Brokerage Firms of New Phishing Campaign Threatening Penalties for Non-Compliance

Jun 9, 2021 10:09:40 AM By Stu Sjouwerman

In the latest phishing campaign targeting FINRA member firms, attackers impersonate requests from the regulatory authority citing the potential to “attract penalties” if request ...

Ransomware Tops IBMs List of Most Observed Attack Types with Sodinokibi Maintaining the Lead

Jun 9, 2021 10:09:33 AM By Stu Sjouwerman

In a new report from IBM Security, we get the opportunity to see exactly what kinds of attacks are succeeding, where are they happening, how they’re getting in, and what are the results.

78% of CISOs Say Attacks Have Increased as a Result of More Employees Working from Home

Jun 8, 2021 1:37:33 PM By Stu Sjouwerman

According to new data from VMware Carbon Black, the sophistication and impact of modern cyberattacks is causing CISOs to rethink how to secure the expanding attack surface.

Chinese Hacker Group Debuts After 3 Years of Testing with a Previously Unseen Backdoor Exploit

Jun 8, 2021 1:37:27 PM By Stu Sjouwerman

Dubbed ‘SharpPanda’, this Chinese APT group uses malicious Word docs, .RTF templates, and the RoyalRoad malware to install a powerful backdoor DLL giving them all kinds of access.

The Future Of Ransomware

Jun 8, 2021 1:27:07 PM By Roger Grimes

Ransomware is pretty bad right now. It is taking down nearly any company and industry it can, targeting healthcare, energy infrastructure, and food supplies with equal aplomb. It takes ...

CyberheistNews Vol 11 #22 [Heads Up] New Email Attack Takes a Phishing-Turned-Vishing Angle To Steal Credit Card Info

Jun 8, 2021 10:01:14 AM By Stu Sjouwerman

Phishing Trends Show Adult Themes Have Skyrocketed 974%

Jun 7, 2021 8:48:15 AM By Stu Sjouwerman

Phishing lures with adult themes have spiked over the past year, according to researchers at GreatHorn. The researchers explain that these emails are effective at getting people to click, ...

KnowBe4 Fresh Content Updates from May: Including New Mobile-First Training Modules

Jun 4, 2021 8:47:27 AM By Stu Sjouwerman

Here are important fresh content updates and new features to share with you that happened in the month of May.

Ransomware Attacks Run Rampant as Fujifilm Becomes the Next Victim

Jun 4, 2021 8:42:33 AM By Stu Sjouwerman

We just covered a recent story today that there was a ransomware attack on Steamship Authority. And like clockwork, another company becomes the next victim.

Security Awareness Training Blog

View Topics