Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Company Sues Employee After She Falls For USD 250K CEO Fraud Scam

Feb 12, 2019 10:02:32 AM By Stu Sjouwerman
A woman is being sued for sending approx. 250K of her employer's cash to an online fraudster. Patricia Reilly, who was working for the UK Peebles Media Group fell for a CEO Fraud Scam ...
Continue Reading

CyberheistNews Vol 9 #7 OUCH! Ransomware Attack Via MSP Locks Customers Out of Systems

Feb 12, 2019 9:42:04 AM By Stu Sjouwerman
Continue Reading

You Have A Special Valentine's Day Message!

Feb 11, 2019 5:11:01 PM By Stu Sjouwerman
Continue Reading

Another Home Buyer Falls Victim to a Business Email Compromise Scam

Feb 11, 2019 3:57:59 PM By Stu Sjouwerman
A man in Portland, Oregon lost $123,000 after falling victim to a real-estate scam, according to Michele Lerner at The Washington Post. In December, Aaron Cole and his family were about ...
Continue Reading

Massive Increases in Trojans and Backdoor Attacks More Than Double, Spelling Trouble for Organizations

Feb 11, 2019 2:24:32 PM By Stu Sjouwerman
Growth in attacks designed to obfuscate access and purpose should put organizations on alert as cybercriminals gain control over endpoints to do just about anything they want.
Continue Reading

One-Third of Organizations Aren’t Ready to Combat Cybersecurity Attacks, Despite Increases in Security Spend

Feb 11, 2019 2:21:56 PM By Stu Sjouwerman
The latest data from eSecurityPlanet highlights that organizations have a lot of work to do to ensure they are secure in the face of a shortage of cybersecurity professionals.
Continue Reading

New Phishing Attack Uses Google Translate to Spoof Login Page and Fool Victims

Feb 11, 2019 2:18:25 PM By Stu Sjouwerman
A clever use of Google Translate fools victims into believing spoofed authentication requests are being handled by Google itself.
Continue Reading

Data Breaches Result in Lost Customer Confidence Costing Organizations More than Just Fines

Feb 11, 2019 2:16:18 PM By Stu Sjouwerman
Consumers have spoken: According to new data, the majority of your organization’s customers won’t do business with you after a data breach and expect you to pay to protect their personal ...
Continue Reading

[On-demand Webinar] Get an Insider View Into the Methods and Exploits of the World's Most Famous Hacker, Kevin Mitnick

Feb 11, 2019 2:16:07 PM By Stu Sjouwerman
Many of the world's most reputable organizations rely on Kevin Mitnick, the world's most famous hacker and KnowBe4's Chief Hacking Officer, to uncover their most dangerous security flaws. ...
Continue Reading

Phishers Target Anti-Money Laundering Officers at U.S. Credit Unions

Feb 8, 2019 9:58:24 AM By Stu Sjouwerman
Continue Reading

Scammers Still Exploit Hijacked GoDaddy Domains

Feb 7, 2019 7:18:05 AM By Stu Sjouwerman
Criminals are still using hijacked GoDaddy domains to launch large-scale spam campaigns, despite GoDaddy taking steps last month to address the authentication flaw exploited by the ...
Continue Reading

A Majority of Cyberattacks Use Lateral Movement and “Living Off the Land”

Feb 7, 2019 7:08:34 AM By Stu Sjouwerman
The latest from Carbon Black’s 2019 Global Threat Report shows cybercriminals are intent to move from endpoint to endpoint and avoid detection using built-in tools.
Continue Reading

A Hacker’s Dream: Half of IT Admins Reuse Passwords Across Multiple Accounts

Feb 7, 2019 7:04:26 AM By Stu Sjouwerman
The most recent report from Ponemon shows how IT’s lack of password management is wildly misaligned with the organizations supposed concern for protecting data.
Continue Reading

Social Engineering Comes to Wikipedia

Feb 6, 2019 6:55:23 AM By Stu Sjouwerman
Attackers are selectively editing Wikipedia articles to lend credibility to tech support scams, according to Rob VandenBrink at the SANS Internet Storm Center. The Wikipedia page for the ...
Continue Reading

New Report Outlines “Bashe” Ransomware Global Infection Scenario Outcomes, including up to $193 Billion in Damages

Feb 6, 2019 6:47:13 AM By Stu Sjouwerman
With the potential for a single coordinated cyberattack aimed at holding the world hostage and putting losses on a global scale, a new report models what it would look like.
Continue Reading

Organizations Routinely Phish Their Own Employees to Test Their Systems for Human Vulnerability

Feb 6, 2019 6:38:19 AM By Stu Sjouwerman
As compliance mandates and consumer privacy laws get tougher, businesses are taking matters into their own hands, launching internal phishing attacks to identify at-risk users.
Continue Reading

Here is the Phish-prone percentage that a customer sent us today

Feb 5, 2019 1:54:08 PM By Stu Sjouwerman
"We’ve had great success with the KnowBe4 solution. I think the key differentiator for KnowBe4 is the integration of the simulated phishing and analytics in conjunction with the ...
Continue Reading

Today I was attacked through an existing vendor using a real email thread

Feb 5, 2019 10:39:55 AM By Stu Sjouwerman
We have been dealing with a vendor of ours for on-hold messages for many years. I send them a Word file with the hold messages, their studio records them, and they send us a wave file ...
Continue Reading

CyberheistNews Vol 9 #5 [Brilliant New Social Engineering Phish] "Please DocuSign: Funding for Your Business"

Feb 5, 2019 9:42:07 AM By Stu Sjouwerman
Continue Reading

Sextortion Phishing Scam Exploits Recent Breach Fears

Feb 5, 2019 7:23:09 AM By Stu Sjouwerman
Sextortion scam emails are circulating which claim that a popular adult site has been hacked, allowing an attacker to record videos of users through their webcams, according to Lawrence ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews