Medical Suppliers Targeted With Agent Tesla Infostealer

May 5, 2020 8:28:41 AM By Stu Sjouwerman

Researchers at Fortinet have identified a spear phishing campaign targeting medical suppliers with COVID-19-themed emails. The emails contain choppy grammar, but the message is clear ...

We're All Third-Party Management Organizations

May 5, 2020 8:15:00 AM By Javvad Malik

In 2014, Jeff Immelt, CEO of GE famously said, “if you went to bed last night as an industrial company, you’re going to wake up today as a software and analytics company.”

PerSwaysion: Convincing Executives to Act Against Their Own Interest

May 4, 2020 8:26:14 AM By Stu Sjouwerman

Researchers at Group-IB have discovered a sophisticated spear phishing campaign that’s targeted executives at more than 150 companies around the world since mid-2019. The researchers have ...

GitHub is the Latest Target of Social Engineering Phishing Attacks

May 4, 2020 7:15:00 AM By Stu Sjouwerman

Using simple alert-style email notices, scammers look to steal credentials to gain access to development code, intellectual property, and project details.

Zelle Users Continue to be the Target of Scams Intent on Fraud

May 4, 2020 7:05:00 AM By Stu Sjouwerman

The wildly popular payment app is a cybercriminals playground where users are easy prey for money laundering, scams, mules, and just plain old fraud.

Half of all Breaches Start with Phishing and Social Engineering

May 4, 2020 7:03:00 AM By Stu Sjouwerman

New data shows successful attacks on internal networks, cloud environments, and POS systems all are very susceptible to this common attack vector.

The Need for Pandemic Financial Relief Spurs a Phishing Attack Impersonating the U.S. Federal Reserve

May 4, 2020 7:00:00 AM By Stu Sjouwerman

Scammers use realistic-looking emails and a well-designed website under the guise of the Paycheck Protection Program to trick victims into providing banking credentials.

Is That COVID-19 Email Legitimate or a Phish?

May 1, 2020 8:39:23 AM By Roger Grimes

It’s no surprise that phishers and scammers are using the avalanche of new information and events involving the global coronavirus pandemic as a way to successfully phish more victims. ...

April Content Update: Including New Work from Home Training Module from Twist & Shout

Apr 30, 2020 11:14:22 AM By Stu Sjouwerman

Here are a few important updates and news to share with you from the past month.

Scammers Can Use Recent Transactions to Trick You

Apr 30, 2020 8:53:09 AM By Stu Sjouwerman

KrebsOnSecurity reports that scammers are using caller ID spoofing to impersonate their victims, and then socially engineering victims’ banks into divulging information about recent ...

[NEW FEATURE] Brandable Content Now Available

Apr 30, 2020 8:00:00 AM By Stu Sjouwerman

You asked, we listened! We’re excited to introduce the new Brandable Content feature within your KnowBe4 platform! You now have the option to add branded custom content to the beginning ...

[Heads Up] Microsoft: Ransomware Gangs That Don't Threaten To Leak Your Data Steal It Anyway

Apr 29, 2020 3:34:37 PM By Stu Sjouwerman

That means you can from now on count a ransomware infection as a data breach with all the consequences that this brings. Moreover, the so-called "human-operated" ransomware gangs have ...

[Click Alert] So, What Is The Phish-prone Percentage On Recent Coronavirus Phishing Tests?

Apr 28, 2020 4:37:47 PM By Stu Sjouwerman

I had some numbers run on the usage of our new, dedicated COVID-19 phishing templates to find out what the Phish-prone percentage was, since this is an unprecedented worldwide event. ...

Can COVID-19 Related Data Breach Worries Stop Your Mergers Or Acquisitions?

Apr 28, 2020 11:23:15 AM By Stu Sjouwerman

The WSJ just reported that the new coronavirus has thrown the M&A dealmaking into disarray. They said: "cybersecurity experts say the workplace upheaval caused by the pandemic will ...

CyberheistNews Vol 10 #18 [Heads Up] An Ugly New COVID-19 Malware Strain Is Bricking Your Endpoints

Apr 28, 2020 9:42:13 AM By Stu Sjouwerman

COVID-19 Spam Delivers Remcos RAT

Apr 28, 2020 8:31:15 AM By Stu Sjouwerman

A phishing campaign is impersonating the US Small Business Administration (SBA) in an attempt to deliver the Remcos remote access Trojan, according to researchers at IBM X-Force. The ...

[HEADS UP] Experts Predict 30,000% Increase in COVID-19 Cybersecurity Threats

Apr 27, 2020 2:37:47 PM By Stu Sjouwerman

A security firm is claiming to have seen a staggering 30,000% increase since January in detected phishing, malicious websites and malware designed to capitalize on the COVID-19 crisis.

Two-thirds of Remote Workers Received No Security Awareness Training in the Last Year

Apr 27, 2020 2:11:30 PM By Stu Sjouwerman

This alarming bit of news about U.K. remote workers comes at the worst time when attacks are on the rise, insecure personal devices are being used, and workers are more susceptible to ...

'Florentine Baker Group' Use Microsoft 365 Functionality to Scam Private Equity Firm Out of $1.2 Million

Apr 24, 2020 11:31:26 AM By Stu Sjouwerman

A new investigation by Check Point’s Incident Response Team (CPIRT) demonstrates how brazen cybercriminals are and the lengths they will go to in order to see their scam succeed.

The Best and First Defenses You Should Implement

Apr 24, 2020 8:43:14 AM By Roger Grimes

Every good defense has three pillars of controls: policy, technical, and education. People are always asking what they should do for each to minimize cybersecurity events the most and ...

Security Awareness Training Blog

View Topics