Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

68% of Organizations Experiencing One Cyberattack Experience a Second Within 12 Months!

Jan 14, 2021 1:29:19 PM By Stu Sjouwerman
New data from cybersecurity vendor CrowdStrike shows just having security technologies in place won’t prevent one… let alone two… cyberattacks.
Continue Reading

Healthcare Sees Double the Increase in the Amount of Ransomware Attacks Since November

Jan 14, 2021 1:25:56 PM By Stu Sjouwerman
With an average of 626 ransomware attacks weekly on healthcare organizations, it’s evident that the bad guys are stepping up their tactics and focus where they believe the money to be.
Continue Reading

Google Finds an Alarming Thousands of Phishing Sites Everyday in 2020

Jan 14, 2021 8:30:27 AM By Stu Sjouwerman
Google discovered a record number of phishing sites in 2020, according to researchers at AtlasVPN. The researchers cite Google’s Transparency Report, which says the search giant detected ...
Continue Reading

Employees Are Too Trusting of Workspace Tools

Jan 13, 2021 8:24:56 AM By Stu Sjouwerman
A study by Avanan has found that users tend to trust workplace communication tools such as Microsoft Teams, Slack, and Google Hangouts, even though these platforms are subject to many of ...
Continue Reading

CyberheistNews Vol 11 #02 [Heads Up] Was SolarWinds Really a Daisy Supply Chain Attack?

Jan 12, 2021 10:13:38 AM By Stu Sjouwerman
Continue Reading

How Crime Pays, Ransomware Edition

Jan 12, 2021 10:12:46 AM By Stu Sjouwerman
The Ryuk ransomware operators have raked in more than $150 million from their attacks, researchers at Advanced Intelligence and HYAS have found. The researchers describe how these ...
Continue Reading

How to Spot the (Phish) Hook

Jan 11, 2021 9:51:51 AM By Stu Sjouwerman
Users should act as quickly as possible after they realize they’ve fallen for a phishing attack, according to Mallika Mitra at Money. The faster your IT department can contain a malware ...
Continue Reading

Social Media & Parler in Troubling Times: New Opportunities for Malicious Actors

Jan 11, 2021 8:00:00 AM By Eric Howes
As most readers are undoubtedly aware, President Donald Trump has been de-platformed by major social media companies, including Twitter and Facebook, following events at the U.S. Capitol ...
Continue Reading

Email Scammers Impersonate U.S. Government Agencies Offering Pandemic Financial Assistance

Jan 8, 2021 8:33:54 AM By Stu Sjouwerman
Taking advantage of people in their time of need, these bottom feeders of the cybercriminal world promise assistance and, instead, collect personal details to make a buck.
Continue Reading

It’s Time for Organizations to Begin Propping Up the Human Firewall

Jan 8, 2021 8:29:18 AM By Stu Sjouwerman
Modern thinking about a comprehensive cybersecurity strategy includes a holistic approach that equally involves your users as a “human element” within your cyber defenses.
Continue Reading

Fake Scandal Video Serves Malware

Jan 7, 2021 12:03:54 PM By Stu Sjouwerman
Researchers at Trustwave warn that a phishing campaign is attempting to deliver malware via a file for a fake scandal video with 'Trump' included in the title. The file is a Java Archive ...
Continue Reading

SolarWinds Hit With Class-Action Lawsuit Following Orion Breach

Jan 7, 2021 10:55:23 AM By Stu Sjouwerman
SolarWinds and some of its executives have been accused of lying to shareholders about its security. In a class-action lawsuit filed by shareholders Solarwinds, outgoing CEO Keven ...
Continue Reading

[Heads Up] Was SolarWinds Really A Daisy Supply Chain Attack?

Jan 7, 2021 8:50:50 AM By Stu Sjouwerman
The NYT just reported the next revelation regarding the SolarWinds hack. The Russian FSB may have piggybacked on a tool developed by JetBrains, which is based in the Czech Republic.
Continue Reading

KnowBe4 Wins Multiple 2021 "Best of" Awards From TrustRadius

Jan 6, 2021 1:36:21 PM By Stu Sjouwerman
KnowBe4 is proud to be recognized by TrustRadius in the first-ever “Best of” Awards for usability, customer support, and feature set in the Security Awareness Training software category.
Continue Reading

PayPal Phishing: “Your Account is Limited”

Jan 6, 2021 10:00:36 AM By Stu Sjouwerman
A PayPal smishing campaign is trying to trick users into handing over their credentials and personal information, BleepingComputer reports. The text messages state, “PayPal: We've ...
Continue Reading

[HEADS UP] Australian Cyber Security Centre is Being Used in Malware Campaign

Jan 6, 2021 9:50:02 AM By Stu Sjouwerman
A warning was recently issued by the Australian Government of cybercriminals impersonating the Australian Cyber Security Centre (ACSC) to infect with malware.
Continue Reading

Welcome to The InfoSec Neighborhood!

Jan 5, 2021 3:59:52 PM By Stu Sjouwerman
It looks like KnowBe4 has a new cybersecurity “neighbor” here in Tampa, helping create an even larger presence of tech companies headquartered in Florida.
Continue Reading

It Looks Like Chinese Cybercriminal Group APT27 May Be Shifting to Ransomware Attacks

Jan 5, 2021 3:59:29 PM By Stu Sjouwerman
The perceived change in cyberattack tactics for this well-known group of hackers may mean more trouble as APT27’s talents usually reserved for espionage are focused on ransomware.
Continue Reading

A Close Look at a Banking Scam

Jan 5, 2021 10:14:07 AM By Stu Sjouwerman
A phishing campaign is targeting customers of Portugal’s Banco Millennium BCP (Portuguese Commercial Bank), according to Tomas Meskauskas at PCRisk. The emails inform recipients that ...
Continue Reading

CyberheistNews Vol 11 #01 [Heads Up] Your Top 2021 Cyber Security Challenge: Securing Those Remote Employees

Jan 5, 2021 9:34:58 AM By Stu Sjouwerman
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews