An Intimate Look at a Nigerian Social Engineer

Mar 23, 2020 10:05:23 AM By Stu Sjouwerman

Researchers at Check Point offer a look at a Nigerian citizen who moonlights as a cybercriminal who uses social engineering techniques. The man, whom the researchers call “Dton,” ...

[On-Demand] New 2020 Phishing By Industry Benchmarking Report: How Does Your Organization Measure Up

Mar 23, 2020 8:39:24 AM By Stu Sjouwerman

As a security leader, you have a lot on your plate. Even as you increase your budget for sophisticated security software, your exposure to cybercrime keeps going up. IT security seems to ...

Just How Lucrative is Cybercrime? According to New Charges Against One Gang, $30 Million Lucrative

Mar 23, 2020 8:28:55 AM By Stu Sjouwerman

The recent arrest and charging of a gang of 24 U.S.-based cybercriminals in Atlanta demonstrates how easy it is to become a cybercriminal and use social engineering tactics to fool people ...

Urgency Around the Coronavirus Leads to Phishing Scams Targeting Healthcare

Mar 23, 2020 8:24:07 AM By Stu Sjouwerman

As if the virus itself wasn’t bad enough, lowlife scammers are using the pandemic to trick healthcare workers into giving up credentials. Elite hackers tried to break into the World ...

[Heads-Up] Feeding Frenzy: COVID-19 Phishing Attacks Surge as U.S. Reels from Pandemic

Mar 23, 2020 7:00:00 AM By Eric Howes

By Eric Howes, KnowBe4 Principal Lab Researcher. Having already published three blog pieces on the epidemic of Coronavirus-themed phishing emails and spam/scam offerings online (see HERE, ...

Reinforcing Security Norms During the Coronavirus Crisis

Mar 20, 2020 8:43:08 AM By Joanna Huisman

This blog was co-written by Joanna Huisman and Aimee Laycock. We have all seen an increase in the amount of advice and guidance from the healthcare sector and others since the start of ...

Organizations Need To Be Wary Of Home Worker Phishing Risks

Mar 19, 2020 5:31:33 PM By Stu Sjouwerman

Security experts warn that phishing attacks against home workers will rise.

Critical Considerations to Improve Your Remote Employee Security During the COVID-19 Pandemic

Mar 19, 2020 8:34:19 AM By Stu Sjouwerman

Quickly evolving travel and social requirements in response to COVID-19 mean that, like it or not, many organizations like yours are asking traditional office-based employees to work from ...

Human Behavior is What Makes Phishing Attacks So Successful

Mar 19, 2020 8:28:37 AM By Stu Sjouwerman

The problem isn’t the lack of software designed to detect, prevent, and protect – it’s that human response is a required part of every phishing attack that users seem to be happy to ...

Healthcare Providers Suffer 350 Percent Increase in Ransomware Attacks

Mar 19, 2020 8:25:03 AM By Stu Sjouwerman

The lack of proper security technologies in place is largely to blame for the massive increase in ransomware attacks in Q4 of 2019 as compared to the same time the previous year.

Domains Use Homographic Characters to Create Hard to Spot Phishing URL's

Mar 18, 2020 8:35:31 AM By Stu Sjouwerman

Website domains can use homographic characters to create very hard-to-spot phishing URLs, Threatpost reports. Cybersecurity researcher Avi Lumelsky demonstrated how easy it is to create ...

The Effectiveness of Educating End Users With a Test-Out Quiz

Mar 17, 2020 12:54:14 PM By Roger Grimes

Use a “test-out” quiz as a way to get people who are normally resistant to training to proactively take the training. They think they are taking a quiz to avoid the training, but in ...

CyberheistNews Vol 10 #12 Secret Service Warning: Exploiting the Coronavirus for Fraud and Profit

Mar 17, 2020 9:42:42 AM By Stu Sjouwerman

FBI Sends Private Industry Notification Warning of BEC Techniques

Mar 17, 2020 8:32:03 AM By Stu Sjouwerman

The FBI sent out a Private Industry Notification (PIN) warning companies that attackers are abusing Microsoft Office 365 and Google’s G Suite to launch business email compromise (BEC) ...

U.K. Revenue Collector Data Shows Email Scams Are on the Decline in Favor of Vishing and SMiShing Attacks

Mar 16, 2020 6:05:03 PM By Stu Sjouwerman

Scams aimed at conning U.K. taxpayers out of money and credentials are reportedly experiencing shifts in mediums from email to phone and text.

It is in times of crisis you will be tested

Mar 16, 2020 1:43:21 PM By Stu Sjouwerman

Many organizations are dusting off their crisis management documents this week. Many a contingency plan will see its first-ever run. As the C-19 is spreading fast around the world, more ...

Coronavirus-Themed Simulated Phishing Templates

Mar 16, 2020 9:48:41 AM By Stu Sjouwerman

The following templates were added to the console this morning:

The Most Important Thing When Working From Home

Mar 16, 2020 9:31:50 AM By Javvad Malik

With social distancing being the new norm, introverts are joking about how they’ve been preparing for this moment their entire lives. While working from home has many benefits, doing it ...

Malicious IQY Files Found in Spam Campaign

Mar 16, 2020 8:26:37 AM By Stu Sjouwerman

Researchers at Lastline have come across a phishing campaign that’s using Internet Query (IQY) files to bypass security filters and deliver a new version of the Paradise ransomware. The ...

Extreme Measures: The Epidemic of COVID-19 Phishing Emails Rages On

Mar 16, 2020 7:02:25 AM By Stu Sjouwerman

Since the publication of our first two blog pieces documenting the flood of Coronavirus-themed emails (see HERE and HERE), customers using the Phish Alert Button (PAB) have continued to ...

Security Awareness Training Blog

View Topics