Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Have Your Users Been Exposed in the 8.5 Billion Breached Records This Year?

Dec 10, 2019 9:00:00 AM By Stu Sjouwerman
Data breaches are getting bigger, the bad guys are getting more cunning, and the amount of compromised data is unfortunately continuing to rise. According to RiskBased Security, breach ...
Continue Reading

Ransomware at Colorado IT Provider Affects 100+ Dental Offices

Dec 10, 2019 7:00:00 AM By Stu Sjouwerman
A Colorado company that specializes in providing IT services to dental offices suffered a ransomware attack this week that is disrupting operations for more than 100 dentistry practices, ...
Continue Reading

Big Bad BEC

Dec 9, 2019 10:15:46 AM By Stu Sjouwerman
A Chinese venture capital firm was scammed out of $1 million in a noteworthy BEC (Business Email Compromise, or CEO fraud) scam, CyberScoop reports. The million dollars was supposed to be ...
Continue Reading

5 Things You May Not Know About Security Awareness Training

Dec 9, 2019 7:00:00 AM By Perry Carpenter
By Perry Carpenter, KnowBe4 Chief Evangelist and Strategy Officer. Let me open by making an observation: the discipline of security awareness training is chock-full of assumptions and ...
Continue Reading

Police warn of new 'line-trapping technology' being used to scam people over the phone

Dec 7, 2019 8:40:03 AM By Stu Sjouwerman
TORONTO -- A new piece of sophisticated technology is being used by fraudsters to scam unsuspecting people over the phone. Police said a woman in York Region received a call earlier this ...
Continue Reading

KnowBe4 Content Updates and New Resources - November 2019

Dec 6, 2019 11:00:00 AM By Stu Sjouwerman
We've got a few important updates to share with you for the month of November!
Continue Reading

63% of Workers Reuse Passwords For Multiple Work Devices and Applications

Dec 5, 2019 2:19:50 PM By Stu Sjouwerman
According to Enterprise Strategy Group, 63% of workers have reported using the same password for multiple work devices and/or applications. This just one statistic from ESG's upcoming ...
Continue Reading

Feds Charge Russians In Massive $100 Million Bank Phishing Scheme

Dec 5, 2019 1:33:10 PM By Stu Sjouwerman
The U.S. Justice and Treasury departments took action Thursday against a Russian hacking group known as “Evil Corp.,” which stole “at least” $100 million from banks using phishing attacks ...
Continue Reading

[Heads Up] Iran Has Launched Evil New Malware That Wipes Your Windows Workstations

Dec 5, 2019 8:16:15 AM By Stu Sjouwerman
Zak Doffman posted: "Iran’s state-sponsored hackers have deployed a new strain of malicious malware, warns IBM, which has been aimed at the “industrial and energy sectors” in the Middle ...
Continue Reading

You Have Not Suffered A Data Breach But How Do You Prevent Credential-Stuffing Attacks?

Dec 5, 2019 7:02:26 AM By Stu Sjouwerman
Frequent data breaches and the widespread availability of automated tools to take advantage of the compromised information have greatly increased the efficiency of credential stuffing ...
Continue Reading

[On-Demand Webinar] Spotting the Gaps: Is Your Traditional Security Stack Giving You a False Sense of Security?

Dec 4, 2019 8:00:00 AM By Stu Sjouwerman
Endpoint security, firewalls, VPNs, authentication systems… we’ve all got them. But do they really provide the comprehensive level of security your organization needs to keep the bad guys ...
Continue Reading

Distracted in Target

Dec 4, 2019 7:00:00 AM By Joanna Huisman
It was an average Sunday…laundry, errands, football. I was standing in the checkout line at my favorite store, Target, when my son texted to remind me to get the Tostitos Scoop chips, he ...
Continue Reading

Europol Finds Majority of Attack Groups Rely on Spear Phishing as Primary Infection Vector

Dec 4, 2019 6:52:41 AM By Stu Sjouwerman
A new report from Europol’s European Cybercrime Center (EC3) breaks down how targeted phishing attacks are being done, and how to avoid becoming a victim.
Continue Reading

Gift Card Scams are Decreasing in Light of Other Business Email Compromise Scams

Dec 4, 2019 6:48:49 AM By Stu Sjouwerman
New data from email security vendor Agari shows Business Email Compromise (BEC) attacks shifting tactics last quarter, in favor of scams resulting in larger payouts.
Continue Reading

Identity Deception-Based Phishing Attacks Show an Increase in Impersonating Individuals

Dec 4, 2019 6:45:59 AM By Stu Sjouwerman
The use of impersonating a person or brand as part of an attack in on the rise, giving attackers the upper hand, establishing instant credibility and lowering the defenses of the ...
Continue Reading

Phishing for Gamers Uses A Fake Skin Giveaway

Dec 4, 2019 6:42:02 AM By Stu Sjouwerman
BleepingComputer warns that a fake Steam skin giveaway site is stealing users’ Steam credentials. The site appears to be running a 26-day promotion giving away free skins for ...
Continue Reading

CyberheistNews Vol 9 #49 [Heads-Up] In Just 3 Months, Google Alerted 12,000 People About Phishing Attacks by Nation-States

Dec 3, 2019 9:31:18 AM By Stu Sjouwerman
Continue Reading

5 Harsh Truths About Ransomware Attacks At LAW.COM

Dec 3, 2019 7:00:00 AM By Stu Sjouwerman
Frank Ready at LAW.COM wrote this very clear article with great budget ammo. I suggest you forward the link at the bottom to your Legal team, with a cc to your C-level executive who own ...
Continue Reading

Insecure Database Exposes Millions of Private SMS Messages

Dec 3, 2019 7:00:00 AM By Stu Sjouwerman
Researchers discovered an unprotected TrueDialog database hosted by Microsoft Azure with diverse and business-related data from tens of millions of users.
Continue Reading

Netflix "Account Freeze" Phishing Campaign In The Wild

Dec 3, 2019 6:26:54 AM By Stu Sjouwerman
A Netflix phishing scam is going after users’ payment information and Netflix credentials, according to Naked Security. The phishing emails inform recipients that they’ve missed a payment ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews