Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

What Reese’s Peanut Butter Cups Can Teach Us About Phishing

Oct 23, 2019 7:30:00 AM By Perry Carpenter
One of the greatest inventions in modern history is the Reese’s Peanut Butter Cup. I feel sorry for any human who existed before the “age of the cup” because they never got to know the ...
Continue Reading

Credential Phishing With a Masked URL

Oct 23, 2019 5:55:49 AM By Stu Sjouwerman
Cofense warns of a phishing campaign going after credentials for the Stripe online payment platform. The attackers are sending emails purporting to be from Stripe Support, telling the ...
Continue Reading

CyberheistNews Vol 9 #43 [Heads-Up] "I Can Phish Anyone". Would You Be Able to Say This, and Would You Be Right?

Oct 22, 2019 9:42:27 AM By Stu Sjouwerman
Continue Reading

Q3 2019 Top-Clicked Phishing Email Subjects from KnowBe4 [INFOGRAPHIC]

Oct 22, 2019 7:28:00 AM By Stu Sjouwerman
KnowBe4 reports on the top-clicked phishing emails by subject lines each quarter in three different categories: subjects related to social media, general subjects, and 'In the Wild' - we ...
Continue Reading

A New Strain of Tech Support Scam in the U.K.

Oct 22, 2019 6:54:11 AM By Stu Sjouwerman
The BBC reports a tech support scam that caused a British man, Doug Varey, to lose £4,000. The scam began when Mr. Varey saw an online ad for twelve years’ worth of computer security ...
Continue Reading

Smishing and Carrier Impersonation

Oct 22, 2019 6:47:08 AM By Stu Sjouwerman
While most phishing campaigns involve email, SMS text messages are an ideal alternative for attackers, according to Paul Ducklin at Naked Security. Text messages are brief and uniform in ...
Continue Reading

Shipping giant Pitney Bowes hit by ransomware

Oct 21, 2019 4:26:59 PM By Stu Sjouwerman
TechCrunch reported that shipping tech giant Pitney Bowes has confirmed a cyberattack on its systems.
Continue Reading

Alexa and Google Home abused to eavesdrop and phish passwords

Oct 21, 2019 9:35:05 AM By Stu Sjouwerman
Ars Technica is on a roll lately with some very good articles! Here is another one that made me go "Yikes!"
Continue Reading

Can An Employee's Bad Conscience Be A Vulnerability?

Oct 21, 2019 7:06:27 AM By Stu Sjouwerman
It can be useful to remember that social engineering succeeds much better when its marks are stressed or hurried. That appears to be the case with an ongoing scam campaign that lays its ...
Continue Reading

KnowBe4 Wins ComputingSecurity Award: Education and Training Provider of the Year

Oct 18, 2019 9:43:51 AM By Stu Sjouwerman
We are extremely pleased to announce we won the ComputingSecurity Award for Education and Training Provider of the Year. Here is the team accepting the award.
Continue Reading

Don’t Fall Victim to Breach Fatigue

Oct 18, 2019 7:04:45 AM By Stu Sjouwerman
People shouldn’t let news of data breaches dissuade them from trying to protect their information, according to security researcher Ray [REDACTED]. On the CyberWire’s Hacking Human ...
Continue Reading

An Unusually Vile Bit of Social Engineering

Oct 18, 2019 6:59:20 AM By Stu Sjouwerman
A woman in Wales lost £1,000 to a scammer who posed as a police officer and threatened that she would lose her children if she didn’t pay the money within an hour, Wales Online reports. ...
Continue Reading

A Former CIA Officer Shows You How to Make Your Organization a Hard Target

Oct 17, 2019 12:00:00 PM By Stu Sjouwerman
Having spent over a decade as part of the CIA’s Center for Cyber Intelligence and the Counterterrorism Mission Center, Rosa Smothers knows the ins and outs of leading cyber operations ...
Continue Reading

Scam Of The Week: Bogus Performance Review as Phishbait

Oct 17, 2019 7:08:24 AM By Stu Sjouwerman
New phishing attacks are imitating performance appraisals in order to steal employees’ credentials, according to IBM SecurityIntelligence. The attackers are posing as HR employees and ...
Continue Reading

A Lawyer's Look at "Big Game Phishing"

Oct 17, 2019 6:50:18 AM By Stu Sjouwerman
Ransomware attacks have increasingly been going after high-value data in order to extract larger ransoms from victims, according to the well-known law firm Cooley. This trend was ...
Continue Reading

Security Awareness Training is a Key Part of an Effective Cyber Risk Resilience and Prevention Strategy

Oct 17, 2019 6:32:27 AM By Stu Sjouwerman
Organizations investing in cyber security technology and process are expressing risk in economical terms, helping to drive a cost-effective security stance – one that includes training.
Continue Reading

[VIDEO] KnowBe4 Quarterly Product Update Video Q3-2019

Oct 17, 2019 6:19:52 AM By Stu Sjouwerman
Continue Reading

Microsoft Recommends: "Top 6 Email Security Best Practices"... And One Of Them Is Phishing Simulations

Oct 17, 2019 6:11:20 AM By Stu Sjouwerman
Girish Chander, Microsoft's Group Program Manager of Office 365 Security wrote an excellent post on their blog titled "Top 6 email security best practices to protect against phishing ...
Continue Reading

[INFOGRAPHIC] Cost of Ransomware Related Downtime Increased More Than 200 Percent, an Amount 23 Times Greater Than the Ransom Request

Oct 17, 2019 5:52:39 AM By Stu Sjouwerman
Datto, a leading global provider of IT solutions delivered through managed service providers (MSPs), announced its fourth annual Global State of the Channel Ransomware Report. The survey ...
Continue Reading

North Korean Front Company Used to Compromise Mac Users

Oct 16, 2019 6:49:56 AM By Stu Sjouwerman
Suspected North Korean hackers used a front company to spread a malicious cryptocurrency app to both Windows and Mac users, BleepingComputer reports. The APT known as the Lazarus Group ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews