Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Still Dodging that Sextortion Bullet

It has long been true that sextortionists really had nothing on their intended victims. No video, no screen captures, nothing at all beyond shame and an uneasy conscience. Unfortunately ...
Continue Reading

Security warning for software developers: You are now prime targets for phishing attacks

Danny Palmer at ZDNet wrote: "Software developers are the people most targeted by hackers conducting cyberattacks against the technology industry, with the hackers taking advantage of the ...
Continue Reading

[August Live Demo] Simulated Phishing and Security Awareness Training

Old-school awareness training does not hack it anymore. Your email filters have an average 10-15% failure rate; you need a strong human firewall as your last line of defense. Join us ...
Continue Reading

Scam Of The Week: See Jeffrey Epstein Last Words On Video

This weekend, news broke that Jeffrey Epstein was found dead in his cell, apparently a suicide. This is a celebrity death that the bad  guys are going to be exploiting in a variety of ...
Continue Reading

3 Important Facts to Take Away From the New Data Security Law

By Lecio De Paula, Jr., Director of Data Privacy, KnowBe4. New Hampshire joins Ohio, South Carolina, and Michigan in enacting a new data security law directed at insurers modeled after ...
Continue Reading

Three Lessons from a Recent MegaCortex Ransomware Phishing Attack

The MegaCortex strain of ransomware has been used in criminal campaigns targeting businesses as opposed to private individuals. The QuickBooks cloud-hosting firm iNSYNQ, has sustained ...
Continue Reading

Varieties of Extortion Experience

We are all familiar with ransomware and its increasingly dangerous cousin, wiper malware. The first encrypts your files and demands ransom payments in exchange for the decryption key. The ...
Continue Reading

Here Are Some Interesting Headlines I Found During Black Hat

Black Hat 2019 - The Craziest, Most Terrifying Things We Saw: I ran into Neil Rubenking when I went to the Qualys party which was in the Foundation Room all the way on top of the ...
Continue Reading

Business Email Compromise Doubles in Incidents and Triples in Cost

The latest data from the U.S. government’s Financial Crimes Enforcement Network (FinCEN) shows fraud via business email is changing tactics and becoming more effective.
Continue Reading

Email Attacks are Having A Major Impact on Business with Employees Seen as a Major Weak Link

With 82% of organizations facing an attempted email-based security threat in the past year, the impacts of these attacks are material and potentially harmful to the organization.
Continue Reading

CEO Fraud hits B.C. lawyers for $2 million

Two B.C. law firms were targets of so-called social engineering frauds causing almost $2 million in real estate and investment funds to be wired to people other than clients the firms ...
Continue Reading

KnowBe4 Fresh Content & Features Updates - July 2019

Check out the content and feature updates in the KnowBe4 platform for the month of July!
Continue Reading

Confirm Your Unsubscribe Request? Not So Fast

An email phishing campaign that BleepingComputer describes as “long-running” has shown a distinct uptick recently. The phishbait in the subject line will read something like this: ...
Continue Reading

Bad Guys Exploit CapitalOne Breach to Push Backdoor Trojan

The bad guys are now exploiting news of the CapitalOne breach to push a malicious backdoor trojan via a phishing email purporting to offer a Windows Security Update. See the attached ...
Continue Reading

Pleading Guilty to Business Email Compromise

Amil Hassan Raage has taken a guilty plea to charges of fraud in a business email compromise (aka CEO fraud) case that netted him and his criminal co-conspirators almost three-quarters of ...
Continue Reading

CyberheistNews Vol 9 #32 Scam of the Week: Equifax Settlement Phishing

  CyberheistNews Vol 9 #32 Scam of the Week: Equifax Settlement Phishing Well, that did not take long! The Equifax Data Breach resulted in a settlement and those affected have a choice ...
Continue Reading

[NEW PhishER Feature] Identify Email Threats Even Faster with PhishML™

We are excited to announce the availability of PhishML™ as part of the PhishER platform to all PhishER customers. PhishML is a new machine-learning module that helps you identify and ...
Continue Reading

New UK Study: "3 out of 4 phishing scams get to your inbox untouched"

Chris Matyszczyk wrote: "Apple sends me so many invoices every week that I scarcely know what I've gone and bought. This appears to have also crossed the minds of researchers at the UK's ...
Continue Reading

Why School Districts are Targets of Social Engineering

School districts are becoming increasingly popular targets for ransomware, with at least five of these attacks occurring in July, according to the New York Times.
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews