Fake Social Media Verification Scams Are the Gateway to Something Much More Sinister

Oct 14, 2020 3:27:01 PM By Stu Sjouwerman

Using copyright violation threats or the lure of obtaining a blue checkmark to verify your account, the latest scams easily trick victims out of their social media credentials.

FINRA Yet Again Becomes the Impersonated Brand at the Center of Phishing Attacks on Brokerage Firms

Oct 14, 2020 3:24:23 PM By Stu Sjouwerman

A mix of domain, phishing emails, a dash of social engineering, and a survey are the recipe for a simple and yet effective campaign targeting the financial sector.

[HEADS UP] Ransomware Attacks Skyrocket During COVID-19

Oct 14, 2020 2:12:55 PM By Stu Sjouwerman

2020 has been no match for organizations worldwide, including the significant increase of ransomware attacks during the COVID-19 pandemic. As organizations continue to work in a remote ...

Trends in Malicious Attachments Used in Phishing Emails

Oct 14, 2020 8:26:32 AM By Stu Sjouwerman

People need to be familiar with the types of malicious attachments used in phishing emails, according to Lawrence Abrams at BleepingComputer. One of the most common methods of installing ...

[eSummit] Your Cybersecurity Awareness Month Action Plan

Oct 13, 2020 10:23:07 AM By Stu Sjouwerman

Cyber threat actors are getting more creative and more skilled at hacking the human. That's why we've created this cybersecurity eSummit to look at evolving attack techniques your end ...

CyberheistNews Vol 10 #42 New Office 365 Phishing Attack Checks Your Stolen Credentials in Real-Time

Oct 13, 2020 9:32:27 AM By Stu Sjouwerman

Sophisticated Mercenary Group Excels at Social Engineering

Oct 13, 2020 8:23:24 AM By Stu Sjouwerman

An extremely skilled group of hackers-for-hire dubbed “Bahamut” is using sophisticated social engineering tactics against a range of targets around the world, researchers at BlackBerry ...

Cybersecurity Awareness Month Weekly Tip: Password Security

Oct 13, 2020 7:00:00 AM By Stu Sjouwerman

Each week during Cybersecurity Awareness Month, we’re going to be sharing in-depth weekly cybersecurity tips from our evangelists to help your users make smarter security decisions and ...

Microsoft 365 vs. Office 365: What’s the difference?

Oct 12, 2020 1:06:05 PM By Stu Sjouwerman

There is a lot to be said for consistency in product names, but when you have dozens of products with multiple versions of each, similar names can get confusing fast. We’re looking at ...

The Market for Phishing Kits

Oct 12, 2020 8:28:07 AM By Stu Sjouwerman

Inexperienced cybercriminals can easily find places to buy phishing kits in the open, on the “surface web” (as opposed to the deep or dark web), according to Jan Kopriva at the SANS ...

Scam Of The Week: Bad Guys Prep For Prime Day Phishing Attacks

Oct 10, 2020 10:37:42 AM By Stu Sjouwerman

Amazon, the world’s largest online retailer, hosts a massive sales event once a year called Prime Day. Usually set in July, the highly awaited two-day event was postponed until October ...

[HEADS UP] Local Boston Town Falls Victim to a Phishing Attack

Oct 9, 2020 2:03:48 PM By Stu Sjouwerman

According to a local news source from Boston, the Town of Franklin recently became the next victim to a phishing attack, costing over $500K.

Ransomware Attacks Will Keep Getting Worse

Oct 9, 2020 7:50:16 AM By Stu Sjouwerman

It may be time for organizations to stop paying the ransom when they sustain a ransomware attack, according to Caleb Barlow, CEO of CynergisTek. On the CyberWire’s Hacking Humans podcast, ...

New Mount Ransomware Joins the Millionaires Club Demanding Seven Figure Ransoms

Oct 9, 2020 7:46:55 AM By Stu Sjouwerman

With ransoms as high as $2 Million, the cybercriminal group behind this new family of ransomware is setting the bar pretty high, all while being the “new kid on the block”.

61% of Successful Phishing Attacks Against Government Organizations Result in Full Compromise of Credentials

Oct 9, 2020 7:44:18 AM By Stu Sjouwerman

Phishing remains the top primary attack vector that keeps on giving to cybercriminals, as new data highlights the victories cybercriminals are enjoying at your organization’s expense.

Cybersecurity Awareness Month Weekly Tip: Current Phishing Threats

Oct 9, 2020 7:00:00 AM By Stu Sjouwerman

Each week during Cybersecurity Awareness Month, we’re going to be sharing in-depth weekly cybersecurity tips from our evangelists to help your users make smarter security decisions and ...

An Autopsy of a $15 Million Heist

Oct 8, 2020 11:33:12 AM By Stu Sjouwerman

A company in the US lost $15 million in a two-month-long business email compromise scam, BleepingComputer reports. Researchers at Mitiga who investigated the attack told BleepingComputer ...

New Office 365 Phishing Attack Checks Your Stolen Credentials in Real-Time

Oct 7, 2020 10:06:20 AM By Stu Sjouwerman

Nothing says the bad guys are intent on stealing credentials like testing them while you participate in their phishing attack so they can verify the validity before letting you off the ...

USPS and FedEx Phishing Attack Texts Flood Mobile Phones

Oct 7, 2020 10:00:31 AM By Stu Sjouwerman

Taking a page from traditional phishing scams that seek to use broadly-accepted messages and send them to everyone, last month officially brought SMiShing to the cybersecurity forefront.

Gartner Recognizes KnowBe4 as a Representative Vendor for Security Awareness Training Program Platforms

Oct 7, 2020 8:31:46 AM By Stu Sjouwerman

We believe, as the world's largest security awareness training platform, this recognition validates the success of our ability to carry out our mission. We enable organizations and their ...

Security Awareness Training Blog

View Topics