IT and Executives are (Mostly) in Alignment and Both Fear the Phish

May 6, 2019 8:00:00 AM By Stu Sjouwerman

According to the latest from AT&T Cybersecurity, enterprise IT and boardrooms largely see eye-to-eye… and those eyes are watching some very common, yet pervasive, threats.

U.K. Court Finds Employee Actions Constitute “Vicarious Liability”, despite meeting GDPR Requirements

May 6, 2019 8:00:00 AM By Stu Sjouwerman

The latest developments in the lawsuit against UK supermarket chain Morrisons may dictate the future of employers being held responsible for employee actions.

[Heads-up] Scary New MegaCortex Ransomware Strain Discovered That Targets Your Business Network

May 5, 2019 4:42:49 PM By Stu Sjouwerman

Sophos has discovered a scary new strain of very sophisticated ransomware called MegaCortex. It was purpose-built to target corporate networks, and once penetrated, the attackers infect ...

Exploiting Google on the Cheap

May 3, 2019 5:40:47 PM By Eric Howes

By Eric Howes, KnowBe4 Principal Lab Researcher. So, maybe you're a bad guy who doesn't have fancy code monkeys who can cook up an exploit that effectively converts Google into a phishing ...

61% Of IT Pros Have Experienced A Serious Data Breach And Many Are Blamed For It.

May 3, 2019 10:21:26 AM By Stu Sjouwerman

TechRepublic just reported that cybercriminals continue to target intellectual property, putting companies at risk for financial and brand reputation hits, quoting a new McAfee report.

New Phishing Campaign From 'FBI Director Wray' is Hysterical

May 3, 2019 7:05:35 AM By Stu Sjouwerman

Our friend Larry Abrams who runs the bleepingcomputer site had something highly entertaining: "We regularly write about phishing emails at BleepingComputer.com in order to warn our ...

Social Media Phishing Attacks Up More Than 70 Percent

May 3, 2019 6:50:05 AM By Stu Sjouwerman

Social media phishing, primarily on Facebook and Instagram, has seen a 74.7 percent increase in the first quarter of 2019. A new report on the current phishing landscape from predictive ...

How Your Users Can Fall Victim To Credential Stuffing Attacks

May 3, 2019 6:40:20 AM By Stu Sjouwerman

Credential stuffing attacks are extremely easy to carry out and offer a massive return on investment, according to a new report by researchers at Recorded Future. These attacks utilize ...

[InfoGraphic] AUGH! Your Users Are Clicking On 50% Of The LinkedIn Phishing Tests

May 2, 2019 4:21:31 PM By Stu Sjouwerman

KnowBe4 Q1 2019 top-clicked phishing subject lines reveals LinkedIn messages to be most popular. Today, we revealed that simulated phishing tests that include “LinkedIn” in the subject ...

President Signs Executive Order to Boost Federal Cyber Workforce

May 2, 2019 3:17:29 PM By Stu Sjouwerman

The White House launched its latest effort to bolster the government’s cybersecurity workforce.

4 Ways CISOs Can Improve Their Organization’s Security Position

May 2, 2019 6:32:41 AM By Stu Sjouwerman

Understanding where your biggest risks are, and how cybercriminals take advantage of those risks help CISOs to build a better strategy to defend against, detect, and address threats.

Ransomware Attacks Jump 500% as Businesses Continue to Be the Prime Target

May 2, 2019 6:25:15 AM By Stu Sjouwerman

Malwarebyte’s latest Cybercrime Tactics and Techniques report exposes some trends indicating that 2019 is looking to be the year of the cyberthreat for businesses.

Tech Support Scam Freezes Browsers

Apr 30, 2019 11:30:01 AM By Stu Sjouwerman

Trend Micro has found a new tech support scam that abuses HTML’s Inline Frame element (iframe) along with authentication pop-ups to freeze victims’ browsers by trapping them in a type of ...

Brunswick Church Falls For Phishing Scam Of Almost $2 Million

Apr 30, 2019 10:32:59 AM By Stu Sjouwerman

Staff at St. Ambrose Roman Catholic Church in Brunswick say the church was scammed out of nearly $2 million. The church said a phishing email led it to believe that a construction firm ...

CyberheistNews Vol 9 #18 Scott County Schools Victim of 3.7 Million Dollar CEO Fraud Phishing Scam

Apr 30, 2019 9:26:35 AM By Stu Sjouwerman

PSA: How To Recognize Disinformation

Apr 30, 2019 6:49:28 AM By Stu Sjouwerman

One of the skills everyone needs to prevent social engineering attacks is to recognize disinformation. False information that is intended to mislead people has become an epidemic on the ...

Why Marketing Departments Are Cyber Security Targets

Apr 29, 2019 4:01:09 PM By Stu Sjouwerman

Because of what they do, marketing departments are potential cybersecurity risks themselves, and digital bad actors are well aware of it. "Since marketers are more closely connected to ...

BEC Scams are a Growing Threat to Retailers

Apr 29, 2019 9:26:47 AM By Stu Sjouwerman

Cybercriminals are improving their social engineering skills to target online retailers with sophisticated business email compromise (BEC) scams, according to Rafael Lourenco at ...

Vendors are Responsible for Almost Half of All Data Breaches

Apr 29, 2019 7:04:18 AM By Stu Sjouwerman

The latest data from a survey of 600 SpiceWorks IT and Security professionals shows that vendor users aren’t doing their part to keep your organization’s data safe.

Business Email Compromise Doubled in 2018, Topping the FBI’s List of Internet Crimes

Apr 29, 2019 6:49:41 AM By Stu Sjouwerman

Despite the massive uptick in just about every cybercrime category, good old-fashioned fraud via email phishing and social engineering dominate as the threat to be most concerned about.

Security Awareness Training Blog

View Topics