[On-Demand Webinar] Malicious Browser Notifications: The New Phishing Attack Not Blocked by Your Current Cyber Defense

Jan 5, 2021 8:00:00 AM By Stu Sjouwerman

Cybercriminals have added a devious weapon to their attack arsenals - malicious browser notifications. And the worst part is they’re not blocked by any current cyber defense. These ...

Why Small Businesses Often Say ‘Why Bother?’ When Dealing With Cybercrime

Jan 4, 2021 4:32:44 PM By Erich Kron

Well, it happened again. As a security professional, I hear a lot of things being said that are exaggerated or just plain untrue. I’ve become used to that, however, there is one phrase ...

2020 Phishing Attack Report Shows Over Half of Respondents Noticed Increase in Attacks

Jan 4, 2021 9:57:54 AM By Stu Sjouwerman

Cybersecurity Insiders released a report on the 2020 Phishing Attack Landscape Report, which noted the increase of phishing attacks in 2020 due to the COVID-19 pandemic.

Signs of Inbound Ransomware

Jan 4, 2021 9:52:19 AM By Stu Sjouwerman

Organizations need to monitor for common signs of imminent ransomware attacks, according to Peter Mackenzie from Sophos. In an article for the Saudi Gazette, Mackenzie outlines five ...

Securing Remote Employees is the Top 2021 Cybersecurity Challenge for Organizations

Dec 31, 2020 10:31:09 AM By Stu Sjouwerman

Security vendor CheckPoint provides insight into what are the organizational cybersecurity priorities for next two years, as well as where cybersecurity is going to be challenging.

Phobos Ransomware Is Alive and Well, Targeting SMBs and Asking for Ransoms of $19K

Dec 31, 2020 10:22:24 AM By Stu Sjouwerman

In celebrating its two-year birthday this month, experts take a look at the Phobos ransomware in detail and offer up suggestions on how to avoid infection.

Scammers Use a $100 Amazon Gift Card to Deliver the Banking Trojan Dridex to Their Victims

Dec 31, 2020 10:16:06 AM By Stu Sjouwerman

It appears the holidays aren’t without a cyber-grinch, as attackers use the lure of free money in the form of a gift card as an easy means to trick victims into infecting their own ...

2020 Top Phishing and Vishing Attacks And Trends

Dec 31, 2020 10:06:25 AM By Roger Grimes

It’s an extra challenging year, harder than most, to choose the most impactful cybersecurity events. The year ended with a bang – the Solarwinds supply chain attack – which possibly ...

Beware of Puppy Scams

Dec 30, 2020 8:37:32 AM By Stu Sjouwerman

Researchers at Anomali have discovered eighteen scam websites offering pets for sale. Most of the websites purport to be selling dogs, although some offer cats and birds as well. The ...

How to Start a Successful Security Awareness Training Program

Dec 29, 2020 3:42:45 PM By Stu Sjouwerman

You did it - your organization has finally decided to take the first step in implementing security awareness training. But with starting something new there tends to be a 'deer in the ...

What You Need to Know About DMARC

Dec 29, 2020 10:13:23 AM By Stu Sjouwerman

It's true - not enough organizations utilize DMARC, SPF, and DKIM, global anti-domain-spoofing standards, which could significantly cut down on phishing attacks. But before you implement ...

CyberheistNews Vol 10 #53 [Heads Up] Here's Some Powerful Ammo to Grab More of Your Year-End InfoSec Budget

Dec 29, 2020 9:27:28 AM By Stu Sjouwerman

BEC Attacks Nearly Doubled in 2020

Dec 29, 2020 8:25:24 AM By Stu Sjouwerman

A new report from Barracuda Networks found that business email compromise (BEC) attacks have nearly doubled over the past year. These attacks made up 12% of all spear phishing attacks in ...

Cybercriminals Attempt to Exploit Australian Fears on COVID-19

Dec 28, 2020 10:03:02 AM By Stu Sjouwerman

The bad guys are attempting to take advantage of Australian fears of COVID-19 in 2021. The National Identity and Cyber Support Service of Australia and New Zealand ID Care recently warned ...

A Friend Needs Money Urgently? You're Probably Getting Scammed

Dec 28, 2020 9:26:22 AM By Stu Sjouwerman

People need to be on the lookout for phishing attacks sent from legitimate but compromised social media accounts, according to Paul Ducklin at Naked Security. Ducklin describes a scam ...

KnowBe4 Fresh Content Updates from December: Including New 2021 KnowBe4 Flagship Training Modules

Dec 28, 2020 8:00:00 AM By Stu Sjouwerman

Here are important fresh content updates to share with you that happened in the month of December.

[Heads Up] Here's Some Powerful Ammo To Grab More Of Your End-Of-Year InfoSec Budget

Dec 26, 2020 11:23:30 AM By Stu Sjouwerman

OK, let's sum up where we are, here at the end of December 2020. COVID has propelled IT from 2020 to 2030 in a matter of months. However, only a few of us were ready to have the large ...

How Can You Be More at Risk With MFA?

Dec 23, 2020 1:43:26 PM By Roger Grimes

In my recent comment on the Solarwinds’ cyber attack, I made the claim that using multifactor authentication (MFA) can sometimes make you more at risk than using a simple login name and ...

Private Online Shopping Risks Affect Businesses, Too

Dec 23, 2020 10:00:26 AM By Stu Sjouwerman

Consumers aren’t the only ones who can be victimized by social engineering attacks while shopping online, according to Arab News. Employees who use work devices for personal shopping are ...

FireEye's Mandia on SolarWinds hack: 'This was a sniper round'

Dec 22, 2020 11:16:19 AM By Stu Sjouwerman

Joe Warminsky at Cyberscoop wrote: "The foreign espionage operation that breached several U.S. government agencies through SolarWinds software updates was unique in its methods and ...

Security Awareness Training Blog

View Topics