Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

CyberheistNews Vol 13 #38 No Dice for MGM Vegas As It Battles Ransomware Attack Downtime

Sep 19, 2023 9:00:00 AM By Stu Sjouwerman
Continue Reading

The International Joint Commission Falls Victim to Ransomware Attack; 80GB Of Data Stolen

Sep 18, 2023 12:04:34 PM By Stu Sjouwerman
The International Joint Commission (ICJ), an organization that handles water issues along the Canada–United States border, was hit by a ransomware attack, the Register reports.
Continue Reading

[New PhishER Feature] Immediately Add User-Reported Email Threats to Your M365 Blocklist

Sep 18, 2023 10:43:12 AM By Stu Sjouwerman
Now there's a super easy way to keep malicious emails away from all your users through the power of the KnowBe4 PhishER platform!
Continue Reading

Mark Cuban’s MetaMask wallet drained nearly $900,000 in suspected phishing attack

Sep 16, 2023 2:46:07 PM By Stu Sjouwerman
Dallas Mavericks owner and well-known investor Mark Cuban reportedly lost nearly $900,000 in a phishing attack targeting his MetaMask cryptocurrency wallet.
Continue Reading

The BISO Secret Weapon: Enhancing Collaboration for Cybersecurity and Business Growth with Nicole Dove

Sep 15, 2023 10:21:20 AM By James McQuiggan
Do you want to bridge the gap between IT, cybersecurity, and the business to enhance collaboration and integration? Are you seeking a solution to align cybersecurity efforts with business ...
Continue Reading

91% of Cybersecurity Professionals Have Experienced Cyber Attacks that Use AI

Sep 15, 2023 10:21:09 AM By Stu Sjouwerman
A new report takes an exhaustive look at how cybersecurity professionals see the current and future state of attacks, and how well vendors are keeping up.
Continue Reading

New Phishing Attack Uses Social Engineering to Impersonate the National Danish Police

Sep 15, 2023 10:20:56 AM By Stu Sjouwerman
A malwareless and linkless phishing attack uses sextortion and the threat of legal action to get the attention of potential victims and get them to respond.
Continue Reading

Hacker Deepfakes Employee's Voice in Phone Call to Breach IT Company

Sep 15, 2023 10:20:40 AM By Stu Sjouwerman
Last month, Retool, a business software development company, fell victim to a sophisticated cyberattack that compromised 27 of its cloud customers.
Continue Reading

New Scam Impersonates QuickBooks to Steal Credentials, Extract Money

Sep 15, 2023 10:20:14 AM By Stu Sjouwerman
Establishing urgency through a false need to “upgrade” or lose services, this new attack takes advantage of the widespread use of the popular accounting app to attract victims.
Continue Reading

Microsoft (Once Again) Tops the List of Most Impersonated Brands in 2023

Sep 15, 2023 10:19:58 AM By Stu Sjouwerman
Out of the over 350 brands regularly impersonated in phishing attacks, Microsoft continues to stand out because they provide attackers with one unique advantage over other brands.
Continue Reading

Board Members' Lack of Security Awareness Puts Businesses at Risk of Cyber Attacks, Finds Savanti Report

Sep 15, 2023 10:19:45 AM By Stu Sjouwerman
A report from cybersecurity consultancy Savanti reveals that board members are facing challenges in understanding cyber risks, and this has important implications for businesses.
Continue Reading

No Dice for MGM Las Vegas as It Battles Fallout from Ransomware Attack After a 10-minute Vishing Scam

Sep 14, 2023 4:03:51 PM By Stu Sjouwerman
DEVELOPING STORY. SCROLL DOWN FOR MORE.
Continue Reading

MGM Suffers Ransomware Attack that Started with a Simple Helpdesk Call

Sep 14, 2023 3:56:43 PM By Stu Sjouwerman
As the aftermath unfolds, the details around the recent attack on MGM Resorts provides crucial insight into the attacks impact, who’s responsible, and how it started.
Continue Reading

Can Someone Guess My Password From the Wi-Fi Signal On My Phone?

Sep 14, 2023 7:41:24 AM By Martin Kraemer
Cybercriminals can't ascertain your phone password just from a Wi-Fi signal, but they can come close according to a method described in a recent research paper. Researchers have ...
Continue Reading

Can You Guess Common Phishing Themes in Southeast Asia?

Sep 13, 2023 9:07:52 AM By Stu Sjouwerman
Researchers at Cyfirma outline trends in phishing campaigns around the world, finding that Singapore is disproportionately targeted by phishing attacks.
Continue Reading

AP Stylebook Data Breach Compromises Customer Personal Information

Sep 12, 2023 2:32:48 PM By Stu Sjouwerman
The Associated Press (AP) has disclosed a data breach affecting the legacy AP Stylebook website that led to phishing attacks against impacted customers, BleepingComputer reports.
Continue Reading

CyberheistNews Vol 13 #37 Scary New IT Admin Attack Exposes Your MFA Weakness

Sep 12, 2023 9:00:00 AM By Stu Sjouwerman
Continue Reading

Phishing Scammers are Using Artificial Intelligence To Create Perfect Emails

Sep 12, 2023 8:00:00 AM By Stu Sjouwerman
Phishing attacks have always been detected through broken English, but now generative artificial intelligence (AI) tools are eliminating all those red flags. OpenAI ChatGPT, for instance, ...
Continue Reading

Cybercriminals Selling "Golden Tickets" to Phish Microsoft 365... $500,000 in Sales in 10 Months

Sep 12, 2023 7:45:00 AM By Stu Sjouwerman
In the movie, "Willy Wonka and the Chocolate Factory," kids unwrap chocolate bars in hopes of winning a golden ticket, giving the holder an inside tour of the sugar factory. The W3LL ...
Continue Reading

Microsoft Teams Phishing Campaign Distributes DarkGate Malware

Sep 11, 2023 8:55:42 AM By Stu Sjouwerman
Researchers at Truesec are tracking a phishing campaign that’s distributing the DarkGate Loader malware via external Microsoft Teams messages.
Continue Reading
Subscribe

Search Our Blog


Cybersecurity Awareness Month Free Resource Kit

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews