Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

True Phishing Confessions From A Compromised Company. This One Has A Twist At The End

Dec 7, 2018 10:55:58 AM By Stu Sjouwerman
"The email you hope you never have to send to clients/customers" OK, so here is another horror story that you hope you can prevent from happening to your own organization. This is an ...
Continue Reading

"2019 Crystal Ball" On-Demand Webinar: What Security Experts Worry About for 2019

Dec 5, 2018 10:22:17 AM By Stu Sjouwerman
Continue Reading

When Does a Legitimate Password Reset Email Feel Like a Phishing Attack? Just Ask Citrix Users

Dec 5, 2018 9:30:44 AM By Stu Sjouwerman
A recent password reset email from ShareFile (a Citrix company) put some users on edge, questioning both the emails legitimacy and why the reset.
Continue Reading

CEO Fraud Attacks are Citing the California Wildfires

Dec 5, 2018 6:50:19 AM By Stu Sjouwerman
Criminals are using the California wildfires as a social engineering tactic to manipulate people into buying gift cards supposedly intended for victims of the disaster, according to James ...
Continue Reading

Google Maps’ Bank Listings Updated by Scammers

Dec 5, 2018 6:37:42 AM By Stu Sjouwerman
Scammers are taking advantage of Google Maps by modifying the contact information of the service’s bank listings. After replacing banks’ legitimate phone numbers with numbers of their ...
Continue Reading

GreyEnergy Malware Spreads Through Phishing Emails

Dec 5, 2018 6:32:48 AM By Stu Sjouwerman
The GreyEnergy APT primarily uses phishing emails as its initial infection method, according to analysis by Nozomi Networks. The malware has been targeting industrial control systems in ...
Continue Reading

Phishing Emails are Targeting Spotify Users

Dec 5, 2018 6:25:14 AM By Stu Sjouwerman
A phishing campaign is attempting to steal login credentials from Spotify users, according to researchers at AppRiver. The emails ask users to click a hyperlink to confirm their accounts, ...
Continue Reading

Hackers reportedly breached Republican campaign committee emails during 2018 elections

Dec 4, 2018 1:50:43 PM By Stu Sjouwerman
The National Republican Congressional Committee (NRCC) was hacked during the 2018 midterm elections, according to a report from Politico. Republican officials said that hackers had access ...
Continue Reading

61% of Organizations Believe Negligent Users Will be the Primary Cause of a Data Breach in the Next 12 Months

Dec 4, 2018 9:44:08 AM By Stu Sjouwerman
Dark Readings annual Strategic Security Survey provides several details highlighting that organizations aren’t ready, and users aren’t helping.
Continue Reading

Why You Need To Make Security Awareness Training Mandatory. Read This Horror Story.

Dec 4, 2018 7:24:15 AM By Stu Sjouwerman
OK, so here is a horror story that you can prevent from happening in your own organization. Now and then we hear that KnowBe4 customers do not make the security awareness training ...
Continue Reading

Data Breach at Q&A Site Quora Affects 100 Million

Dec 4, 2018 7:03:43 AM By Stu Sjouwerman
It's all over the news, it even made the Wall Street Journal. I'm a quora participant myself and received the news directly in an email.
Continue Reading

That was fast! Bad Guys Are Using The Marriott Breach For Phishing Attacks

Dec 4, 2018 6:48:36 AM By Stu Sjouwerman
As predicted, the Marriott breach is heaven for bad guys. KnowBe4 customers are using the (free) Phish Alert Button to report in the wild phishing attacks using the recent news.
Continue Reading

From the “Shaking My Head” File: New Phishing Scam Seeks to Help Wildfire Victims… With Google Play Cards???

Dec 3, 2018 1:57:39 PM By Stu Sjouwerman
Cybercriminals will take advantage of any major news story if there’s a way to make money from it. But sometimes, the scam just gets a little too odd to believe.
Continue Reading

CyberheistNews Vol 8 #48 [Heads-Up] Bad Guys Love Marriott: 500 Million Data Breach Is Phishing Heaven

Dec 3, 2018 9:56:14 AM By Stu Sjouwerman
Continue Reading

The Massive Marriott Data Breach: Some Practical Advice For Business Travelers

Dec 2, 2018 7:54:05 AM By Stu Sjouwerman
If you have stayed in one or the following hotels in the last 4 years, it's very likely that your personal data—and even potentially your passport number—has been stolen and is available ...
Continue Reading

Learning a 120K Lesson the Hard Way

Dec 1, 2018 10:52:26 AM By Stu Sjouwerman
The bank isn’t always responsible for making you whole after a business email compromise. Indiana’s Lake Ridge Schools lost more than $120,000 from a seven-million-dollar construction ...
Continue Reading

Attackers Impersonate CEOs to Scam Employees into Sending Gift Cards for the Holidays

Dec 1, 2018 8:07:40 AM By Stu Sjouwerman
A crafty mix of social engineering, great timing, and context act as the perfect ingredients to trick unwitting users into buying gift cards and placing them into the hands of the ...
Continue Reading

[Heads-up] Bad Guys Love Marriott: 500 Million Data Breach Is Phishing Heaven

Nov 30, 2018 10:18:39 AM By Stu Sjouwerman
So I guess we have just reached the tipping point, it's "privacy game over" for business travelers.
Continue Reading

KnowBe4 Fresh Content Update & New Features November 2018

Nov 29, 2018 5:09:01 PM By Stu Sjouwerman
We've got a few content updates in the KnowBe4 Modstore to share with you for the month of November!
Continue Reading

Employers Are Liable If They Don't Protect Employees' Sensitive Personal Information from Attack

Nov 29, 2018 4:56:20 PM By Stu Sjouwerman
A recent ruling from the Pennsylvania Supreme Court on an employee lawsuit against the University of Pittsburgh Medical Center stemming from a data breach should put all employers on ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews