Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Alert Your Users About Calendar Scams And What To Do About Them

Sep 3, 2019 6:47:50 AM By Stu Sjouwerman
We’ve noted this particular scam before, but it’s continued to make a pest of itself, and so we bring it to your attention again. Scammers are abusing Google Calendar invites to send out ...
Continue Reading

Phishing Scheme Gains Entry To Oregon Judicial Department Emails

Aug 30, 2019 2:55:14 PM By Stu Sjouwerman
Aubrey Wieber at the DemocratHerald reported: "A phishing scheme succeeded in breaking into the email accounts of five Oregon Judicial Department employees, exposing personal information ...
Continue Reading

AI Used For Social Engineering. Fraudsters Mimic CEO’s Voice in Unusual Cybercrime Case | WSJ

Aug 30, 2019 2:46:17 PM By Stu Sjouwerman
Catherine Stupp at the Wall Street Journal reported on something we have predicted would happen in this blog. The article started out with:
Continue Reading

New Course Available - California Consumer Privacy Act (CCPA)

Aug 30, 2019 2:26:25 PM By Stu Sjouwerman
Last year California passed a new law, similar to GDPR, called the California Consumer Privacy Act (CCPA) of 2018. This law is to be implemented on January 1, 2020. Any company doing ...
Continue Reading

New ransomware grows 118% as cybercriminals adopt fresh tactics and code innovations

Aug 29, 2019 2:53:31 PM By Stu Sjouwerman
McAfee Labs saw an average of 504 new threats per minute in Q1 2019, and a resurgence of ransomware along with changes in campaign execution and code.
Continue Reading

Ransomware Criminals Hack Dental Software Company And Take Hundreds Of Customers' Systems Hostage

Aug 29, 2019 2:35:25 PM By Stu Sjouwerman
Hundreds of dental practice offices in the US have had their computers infected with ransomware this week, ZDNet has learned from a source.
Continue Reading

Why Are Insurance Companies Insisting To Pay Ransom For Ransomware Attacks?

Aug 29, 2019 2:12:15 PM By Stu Sjouwerman
This week, ProPublica published a report describing how insurance companies now prefer to fork over hundreds of thousands of dollars / pounds / Euros in ransom to minimize the detriment ...
Continue Reading

Financial Phishing Campaigns on the Rise

Aug 29, 2019 7:01:35 AM By Stu Sjouwerman
More than 1900 new potential bank phishing sites were registered in the first half of 2019, according to researchers at NormShield. Based on the increase in new suspicious domains ...
Continue Reading

Business Detections of Ransomware Attacks Have Grown by 365%

Aug 28, 2019 3:51:48 PM By Stu Sjouwerman
The latest data from Malwarebyte’s report Cybercrime Tactics and Techniques: Ransomware Retrospective shows businesses are at risk of ransomware attack now more than ever.
Continue Reading

MegaCortex Ransomware goes Fully Automated, Putting Enterprises at Risk of Ransoms in the Millions

Aug 28, 2019 3:21:57 PM By Stu Sjouwerman
A new version of MegaCortex has been spotted, upgrading it from a manual, targeted form of ransomware, to one that can be spread and do damage enterprise-wide.
Continue Reading

Microsoft, PayPal, and Facebook are the Top Three Impersonated Brands

Aug 28, 2019 6:50:57 AM By Stu Sjouwerman
Back in June, we discussed Vade Secure’s “Phisher’s Favorite” report for Q1 2019, which found that Microsoft had been the most impersonated brand used in phishing attacks for four ...
Continue Reading

Bogus Suicide Prevention as a Scam

Aug 28, 2019 6:34:50 AM By Stu Sjouwerman
A lowlife Colorado bail bondsman named Matthew Marre repeatedly posed as a law enforcement officer to trick T-Mobile, Sprint, and Verizon into giving him GPS data for his targets’ phones, ...
Continue Reading

CyberheistNews Vol 9 #35 A State-of-the-Art Spoof (or, "Why Turning Your Users Into Grammar Nazis Won't Keep the Bad Guys Out.")

Aug 27, 2019 9:26:09 AM By Stu Sjouwerman
Continue Reading

SANS: Security Awareness Training is On the Rise

Aug 26, 2019 8:08:26 AM By Stu Sjouwerman
Providing users with Security Awareness Training is a critical part of a security strategy. According to the latest data from SANS, more organizations are using awareness training in 2019.
Continue Reading

Even ‘Unsubscribe’ Emails Can Put the Organization at Risk

Aug 26, 2019 8:05:24 AM By Stu Sjouwerman
Social Engineering tactics seek to use any means that’s familiar to the intended victim – and unsubscribing is perceived as being so benign, it may just be the perfect way to fool your ...
Continue Reading

U.S. Utilities Face Phishing Attacks Intent on Gaining Remote Access

Aug 26, 2019 8:03:04 AM By Stu Sjouwerman
Last month saw a number of utility sector businesses targeted with spear phishing attacks that utilize a new remote access Trojan (RAT) that provides attackers with admin access.
Continue Reading

Georgia Gov. Kemp Orders Cybersecurity Training For State Employees After Crippling Attacks

Aug 24, 2019 8:19:42 AM By Stu Sjouwerman
StateScoop reports: "Citing several recent ransomware attacks at the state and local levels, Georgia Gov. Brian Kemp this week issued an executive order instructing state employees to ...
Continue Reading

A State-of-the-Art Spoof  (or, Why Turning Your Users Into Grammar Nazis Won't Keep the Bad Guys Out)

Aug 24, 2019 6:59:38 AM By Stu Sjouwerman
By Eric Howes, KnowBe4 Principal Lab Researcher. Malicious actors are becoming very skilled at exploiting popular online services that enjoy the familiarity and trust of millions of ...
Continue Reading

Please Vote For KnowBe4: Computing Security Awards

Aug 22, 2019 3:14:38 PM By Stu Sjouwerman
We're excited to be a finalist for the 2019 Computing Security Awards in the UK! They are inviting everyone to vote for their favorite vendors. It would be highly appreciated if you could ...
Continue Reading

Lateral Phishing Affects One in Seven Organizations

Aug 22, 2019 6:58:11 AM By Stu Sjouwerman
A survey by Barracuda found that one in seven organizations experienced lateral phishing attacks over the course of seven months, and that 42% of these attacks were not reported by ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews