Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Social Media Platforms Become Half of all Phishing Attack Targets

Aug 16, 2023 2:00:08 PM By Stu Sjouwerman
Social platforms are the current favorite target of cybercriminals, displacing financial institutions, providing cybercriminals with credentials to be used as launch points for further ...
Continue Reading

Ransomware's Paradox: Why Falling Monetization Rates Are Accompanied by Soaring Ransom Payments - A Must-Read Analysis.

Aug 16, 2023 10:14:42 AM By Stu Sjouwerman
Grab a cup of coffee, and let's talk about something that's been making waves in the cybersecurity world: ransomware. You've probably heard about the alarming rise in ransom payments, but ...
Continue Reading

Ransomware Distributed by Fake Tripadvisor Reviews

Aug 15, 2023 9:37:02 AM By Stu Sjouwerman
The Knight ransomware-as-a-service offering (formerly known as “Cyclops”) is using phony TripAdvisor complaints to deliver its malware, BleepingComputer reports.
Continue Reading

[FREE RESOURCE KIT] Cybersecurity Awareness Month Kit 2023 Now Available

Aug 15, 2023 9:36:59 AM By Stu Sjouwerman
Get the resources you need to help keep your users safe from malicious social engineering attacks during this year's Cybersecurity Awareness Month with our free resource kit.
Continue Reading

CyberheistNews Vol 13 #33 [INFOGRAPHIC] Uncovered: Top-Clicked Q2 Phishing Tests Are from Your HR

Aug 15, 2023 9:00:00 AM By Stu Sjouwerman
Continue Reading

KnowBe4 Celebrates Winning a Tech Cares Award From TrustRadius 2023

Aug 14, 2023 2:54:15 PM By Stu Sjouwerman
For the fourth consecutive year, we received a Tech Cares Award from TrustRadius! This fourth annual award celebrates companies that have gone above and beyond to provide strong Corporate ...
Continue Reading

Beware of Clickbait PDF Phishing Attacks Lurking in Search Results

Aug 14, 2023 2:51:18 PM By Martin Kraemer
We previously reported independently on PDF-based phishing attacks skyrocketing and the rise of SEO attacks. A recent research study found that the combination of both is quite common. ...
Continue Reading

Gootloader Malware Uses Social Engineering to Target Law Firms (or their Clients)

Aug 14, 2023 10:56:30 AM By Stu Sjouwerman
Law firms are being targeted by a large number of social engineering attacks involving the Gootloader malware delivery tool, according to researchers at Trustwave.
Continue Reading

AI's Role in the Next Financial Crisis: A Warning from SEC Chair Gary Gensler

Aug 14, 2023 6:40:38 AM By Stu Sjouwerman
TL;DR - The future of finance is intertwined with artificial intelligence (AI), and according to SEC Chair Gary Gensler, it's not all positive. In fact, Gensler warns in a 2020 paper ...
Continue Reading

[Live Demo] Boost Your Email Security Defense - PhishER Plus to the Rescue!

Aug 11, 2023 4:09:16 PM By Stu Sjouwerman
Now there's a super easy way to keep malicious emails away from all your users through the power of KnowBe4 PhishER Plus!
Continue Reading

[GUIDE] Scary SEO and Waterhole Attacks: What You Need to Know Now

Aug 11, 2023 8:22:22 AM By Roger Grimes
Most social engineering scams search out their potential victims, often sending emails to known email addresses, sending chat messages to them or calling known phone numbers. The ...
Continue Reading

Number of Named Ransomware Victim Organizations Jumps 64% in One Quarter

Aug 11, 2023 8:21:58 AM By Stu Sjouwerman
The second quarter of this year has become the focus of some new firsts in ransomware attacks, according to new data from cybersecurity vendor Reliaquest.
Continue Reading

Salesforce Becomes the Latest Platform to Unwittingly Aid Phishing Scammers

Aug 11, 2023 8:21:43 AM By Stu Sjouwerman
Cybercriminals used the legitimacy of Salesforce’s email gateway to bypass security scanners and target Meta customers in an effort to steal Facebook credentials.
Continue Reading

Comcast: 9 out of 10 Attempts to Breach Customer Networks Start with a Phish

Aug 11, 2023 8:21:30 AM By Stu Sjouwerman
The latest data from Comcast Business’ analysis of over 23.5 billion cyber attacks on their business customers shows the importance and role of phishing in attacks.
Continue Reading

AI's Role in Cybersecurity: Black Hat USA 2023 Reveals How Large Language Models Are Shaping the Future of Phishing Attacks and Defense

Aug 10, 2023 2:39:58 PM By Stu Sjouwerman
At Black Hat USA 2023, a session led by a team of security researchers, including Fredrik Heiding, Bruce Schneier, Arun Vishwanath, and Jeremy Bernstein, unveiled an intriguing ...
Continue Reading

Black Hat: "Five cyber phases of Russia's hybrid war"

Aug 10, 2023 11:44:01 AM By Stu Sjouwerman
The Cyberwire reported: "Victor Zhora, deputy chairman and chief digital transformation officer at Ukraine's State Service of Special Communication and Information Protection (SSSCIP) ...
Continue Reading

Australians Reporting Alarming Number of Losses to Vishing and Smishing Scams

Aug 9, 2023 3:54:27 PM By Jacqueline Jayne
We know that scam calls (aka vishing) and scam SMSs (aka smishing) are out of control, and for most unaware Australians, they continue to cause pain and suffering. According to the ...
Continue Reading

Record ¥3 bil stolen via phishing in Japan in 1st half of 2023

Aug 9, 2023 3:17:32 PM By Stu Sjouwerman
A record 2,322 scams in Japan to steal internet banking IDs and passwords have resulted in unauthorized money transfers totaling a record of around 3 billion yen ($21 million) in the ...
Continue Reading

Wordfence Becomes the Latest Brand to be Impersonated Putting 800 Million Sites at Risk

Aug 9, 2023 1:55:27 PM By Stu Sjouwerman
With its wide use and trusted state among Wordpress developers and website admins, a new campaign impersonating the website security brand could put hundreds of millions of websites at ...
Continue Reading

New PCI Password Requirements Could Be the Impetus for Credential Harvesting Scams

Aug 9, 2023 1:55:02 PM By Stu Sjouwerman
As the retirement countdown for the current version of PCI is now less than six months, a new standard for password length, complexity, and change frequency may create some risk.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews