Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Nemty Ransomware Infests Bogus PayPal Site

Sep 10, 2019 6:45:31 AM By Stu Sjouwerman
BleepingComputer describes a PayPal phishing site that’s delivering a new strain of Nemty ransomware. The attackers used Unicode characters from different alphabets to make their URL look ...
Continue Reading

Visa Scam in the UK Targets Chinese Students

Sep 10, 2019 6:39:56 AM By Stu Sjouwerman
Scammers are using bogus threats of deportation to coerce Chinese students studying in the UK into handing over tens of thousands of dollars, the Guardian reports. The scammers are posing ...
Continue Reading

Cybercriminals Unleash Ransomware Attack Designed to Compromise the Security of 120 French Hospitals

Sep 10, 2019 6:31:49 AM By Stu Sjouwerman
A ransomware infection has left one hospital in a group of 120 resorting to pen and paper as they work to remediate an attack custom-designed to attempt to take down all 120.
Continue Reading

Targeted Business Email Compromise Now Includes Validating Your Email

Sep 10, 2019 6:25:56 AM By Stu Sjouwerman
A new scammer group out of Nigeria is taking additional steps to verify email addresses are valid before launching BEC campaigns designed to commit fraud.
Continue Reading

Two-Thirds of Security Budgets Expected to Increase as Risk of Cyberattack Shifts to the Cloud

Sep 10, 2019 6:21:00 AM By Stu Sjouwerman
Organizations are feeling the impact of attacks and are taking tangible steps to lock in budget specifically to address security concerns with Cloud Security seeing the largest increase.
Continue Reading

Social Media and Their Exploitation in Social Engineering

Sep 9, 2019 7:04:30 AM By Stu Sjouwerman
Phishing is most commonly associated with email, but social media are quickly becoming a major hunting grounds for scammers, according to Elliot Volkman from PhishLabs. Social media ...
Continue Reading

U.K. Charity Workers Most At Risk From Phishing

Sep 7, 2019 8:35:41 AM By Stu Sjouwerman
Tessian report finds a large amount of U.K. charity workers aren't getting proper security awareness training. Michael Moore at ITProPortal wrote: "UK charities are leaving themselves ...
Continue Reading

KnowBe4 Fresh Content and Feature Update - August 2019

Sep 6, 2019 3:53:46 PM By Stu Sjouwerman
Check out the content and feature updates in the KnowBe4 platform for the month of August!
Continue Reading

Thousands Of Servers Infected With New Lilocked (Lilu) Ransomware

Sep 6, 2019 9:52:30 AM By Stu Sjouwerman
Thousands of web servers have been infected and had their files encrypted by a new strain of ransomware named Lilocked (or Lilu).
Continue Reading

Advanced Android SMS Phishing

Sep 6, 2019 8:25:05 AM By Stu Sjouwerman
Attackers can launch SMS phishing attacks to remotely change settings on a victim’s Android device, researchers at Check Point have found. These attacks take advantage of weak ...
Continue Reading

Why Do People Keep Falling For Facebook Hoaxes?

Sep 6, 2019 8:21:43 AM By Stu Sjouwerman
Falling for social media hoaxes indicates a deeper underlying need for online awareness, according to Ben Yelin from the University of Maryland Center for Health and Homeland Security.
Continue Reading

Connecting Security Awareness Training Data to your Security Operations

Sep 5, 2019 2:18:28 PM By Stu Sjouwerman
Highlighting the value of connecting user security awareness trainings to the critical resources those users can access
Continue Reading

Email Account Takeover and Lateral Phishing Attacks Increase Risk to Enterprises

Sep 5, 2019 11:53:21 AM By Stu Sjouwerman
The latest method of attack uses sender familiarity to lower victim defenses and increase the potential for scams, attacks, or fraud to succeed.
Continue Reading

New Ursnif Malware Attacks Use Phishing, Social Engineering and Microsoft Word

Sep 5, 2019 11:49:28 AM By Stu Sjouwerman
The decade-old malware traditionally used to capture banking details has been given new life and spotted in the wild, being distributed via malicious Word documents.
Continue Reading

Phishing for Cloud Providers A New Supply Chain Threat

Sep 5, 2019 7:29:23 AM By Stu Sjouwerman
Attackers are going after cloud-based customer relationship management (CRM) providers in order to launch unusually convincing phishing campaigns, KrebsOnSecurity reports.
Continue Reading

Watch Out For Hurricane Dorian Phishing Scams. We have Templates Ready For You.

Sep 4, 2019 11:53:31 AM By Stu Sjouwerman
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warns users to remain vigilant for malicious cyber activity targeting Hurricane Dorian disaster victims and potential ...
Continue Reading

Multistage Phishing Attacks Target Financial Information

Sep 4, 2019 7:12:21 AM By Stu Sjouwerman
Trend Micro researchers have published details about a sophisticated phishing campaign they’ve named “Heatstroke.” The attackers behind Heatstroke go after victims’ private email ...
Continue Reading

CyberheistNews Vol 9 #36 [Heads Up] AI Used for Social Engineering by Mimicking CEO’s Voice in Unusual Cybercrime Case

Sep 3, 2019 9:48:04 AM By Stu Sjouwerman
Continue Reading

CEO Fraud Overtakes Ransomware And Data Breaches In EMEA Cyber-insurance Claims

Sep 3, 2019 7:13:29 AM By Stu Sjouwerman
CEO Fraud—also known as Business Email Compromise—related cyber-insurance claims accounted for nearly a quarter of all claims in the EMEA region, AIG said.
Continue Reading

Double the Phish, Double the Phun

Sep 3, 2019 7:00:00 AM By Stu Sjouwerman
By Eric Howes, KnowBe4 Principal Lab Researcher. Over the past week we spotted something new and interesting in the malicious emails being reported to us by customers using the Phish ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews