State-Sponsored Threat Actors Targeting European Union Entities With Spear Phishing Campaigns

Feb 19, 2024 4:01:06 PM By Stu Sjouwerman

Numerous state-sponsored threat actors frequently launched spear phishing attacks against European Union entities last year, according to a new report from the EU’s Emergency Response ...

Only 7% of Organizations Can Restore Data Processes within 1-3 Days After a Ransomware Attack

Feb 19, 2024 4:01:02 PM By Stu Sjouwerman

New data on how organizations are able to respond to ransomware attacks also shows that paying a ransom is highly likely, despite having a policy of “Do Not Pay.”

[On-Demand Webinar] The IT Pro's How-to Guide to Building a Strong Security Culture

Feb 19, 2024 8:52:12 AM By Stu Sjouwerman

The thought of building and improving your organization’s security culture can seem like a daunting task. How can you influence an entire culture? With the right plan, buy-in and content, ...

Augmented Security: The Impact of AR on Cybersecurity

Feb 16, 2024 3:34:17 PM By Javvad Malik

Recently, Apple launched its Apple Vision Pro to much fanfare and has pushed the discussion of Augmented Reality (AR) beyond the realms of gaming and entertainment. From healthcare ...

Messaging Platform Telegram Sprouts Cyber Crime “Marketplaces” of Tools, Insights and Data

Feb 16, 2024 3:34:13 PM By Stu Sjouwerman

Cybercriminals are taking advantage of the messaging platform Telegram by creating channels and groups where learning and commerce all can take place freely.

Iran-Aligned Threat Actor "CharmingCypress" Launches Spear Phishing Attacks

Feb 15, 2024 3:13:42 PM By Stu Sjouwerman

Researchers at Volexity warn that the suspected Iranian threat actor CharmingCypress (also known as “Charming Kitten” or “APT42”) has been launching spear phishing attacks against Middle ...

Over Half of Malware Downloads Originate from SaaS Apps

Feb 15, 2024 3:13:38 PM By Stu Sjouwerman

As the popularity of SaaS apps continues to grow, security analysts expect the misuse of such apps as the host for malware downloads to continue to rise through 2024.

Phishing Campaign Exploits Remote Desktop Software

Feb 15, 2024 8:25:54 AM By Stu Sjouwerman

A phishing campaign is attempting to trick users into downloading remote monitoring and management (RMM) software like AnyDesk, Atera, and Splashtop, according to researchers at ...

Number of Data Compromises Affecting U.S. Organizations Rises 77%

Feb 15, 2024 8:25:43 AM By Stu Sjouwerman

New data summarizing the compromises of data in 2023 provides key details on who’s being targeted, what types of data is being compromised, and what attack vectors are being used.

Cupid’s Arrow of Cyber Scams

Feb 14, 2024 8:58:07 AM By Javvad Malik

Valentine's Day. A time where love is in the air, florists work overtime, and restaurant tables are as scarce as a truthful politician. But as we're busy swiping right in hopes of finding ...

Another Ransomware-as-a-Service Known as “Wing” Takes Flight on the Dark Web

Feb 14, 2024 8:57:53 AM By Stu Sjouwerman

Analysis of this newly-spotted service makes it clear that the newest entrant into the Ransomware-as-a-Service (RaaS) space has taken note of where predecessors are lacking and launched a ...

AI in Cyberspace: A Double-Edged Sword

Feb 14, 2024 8:57:40 AM By Javvad Malik

The UK's National Cyber Security Centre (NCSC), recently shared its findings on how AI might reshape the cyber landscape. In two separate posts, the NCSC is warning that the global ...

CyberheistNews Vol 14 #07 Social Engineering Masterstroke: How Deepfake CFO Duped a Firm out of $25 Million

Feb 13, 2024 9:00:00 AM By Stu Sjouwerman

Hard Lessons From Romance Scams

Feb 12, 2024 10:32:16 AM By Roger Grimes

Seeing as this week is Valentine’s Day, I should have written something about rom coms, true love, and trusting your heart more. But this is not one of those posts. This post is about ...

Security Teams Spend 71 Hours Responding to Every One Hour in a Cyber Attack

Feb 12, 2024 10:31:53 AM By Stu Sjouwerman

New data sheds light on what kinds of cyber attacks are targeting your cybersecurity team, what it’s costing them, why it’s taking so much time to fix, and where you should focus ...

Americans Lose a Record $10 Billion to Fraud in 2023; Mostly Due To Investment Scams

Feb 12, 2024 10:31:50 AM By Stu Sjouwerman

The US Federal Trade Commission (FTC) has disclosed that people in the United States lost a record $10 billion to fraud in 2023, a 14% increase from 2022. Nearly half of the losses were ...

Browser-Based Phishing Attacks Increase 198%, With Evasive Attacks Increasing 206%

Feb 9, 2024 12:03:26 PM By Stu Sjouwerman

A new report shows massive increases in browser attacks in the second half of 2023, with over 31,000 threats specifically designed to bypass security solution detection.

Calculating Materiality for SEC Rule 1.05

Feb 9, 2024 12:03:21 PM By Roger Grimes

The U.S. Securities and Exchange Commission (SEC), through a new requirement of Item 1.05 of the 8-K, requires that all regulated companies report significant cybersecurity breaches ...

Cybersecurity Resiliency and Your Board of Directors

Feb 8, 2024 2:41:03 PM By Roger Grimes

Growing cybersecurity threats, especially ransomware attacks, and the Securities and Exchange Commission’s (SEC) recent rules have made having a cybersecurity-aware Board of Directors ...

Watch Out For Valentine’s Day Romance Scams

Feb 8, 2024 2:40:58 PM By Stu Sjouwerman

Users should be wary of online romance scams ahead of Valentine’s Day, according to Imogen Byers at ESET. While in the past these scams could often be thwarted by using reverse image ...

Security Awareness Training Blog

View Topics