Unprecedented Rise of Malvertising as a Precursor to Ransomware

Feb 8, 2024 8:00:00 AM By Stu Sjouwerman

Cybercriminals increasingly used malvertising to gain initial access to victims’ networks in 2023, according to Malwarebytes’s latest State of Malware report.

81% of Organizations Cite Phishing as the Top Security Risk

Feb 8, 2024 8:00:00 AM By Stu Sjouwerman

Organizations are finally dialing in on where they need to focus their cybersecurity strategies, starting with phishing. But the top four cited security risks all have one element in ...

Chinese Hackers Spy on Dutch Ministry of Defense: A Story of Alarming Cyber Espionage

Feb 7, 2024 8:00:00 AM By Stu Sjouwerman

In a revelation that adds yet another chapter to the ongoing saga of international cybersecurity threats, the Dutch Ministry of Defense recently shed light on a significant security ...

[On-Demand Webinar] How to Fight Long-Game Social Engineering Attacks

Feb 7, 2024 8:00:00 AM By Stu Sjouwerman

Sophisticated cybercriminals are playing the long game. Unlike the typical hit-and-run cyber attacks, they build trust before laying their traps. They create a story so believable and ...

Synthetic Data: The New Frontier in Cyber Extortion

Feb 6, 2024 1:38:57 PM By Martin Kraemer

Organizations are increasingly facing cyber attacks resulting in data breaches, and part of their post-incident responsibilities includes adhering to mandatory reporting requirements.

Generative AI Used to Launch Phishing Attacks

Feb 6, 2024 1:38:52 PM By Stu Sjouwerman

Criminal threat actors are increasingly utilizing generative AI tools like ChatGPT to launch social engineering attacks, according to researchers at Check Point.

CyberheistNews Vol 14 #06 [New Threat] Attackers Are Now Using MS Teams to Phish Your Users

Feb 6, 2024 9:32:26 AM By Stu Sjouwerman

Fake “I Can’t Believe He’s Gone” Posts Seek to Steal Facebook Credentials

Feb 5, 2024 4:58:17 PM By Stu Sjouwerman

A new scam relies on a victim's sense of curiosity, brand impersonation, and the hopes of a new login to compromise Facebook credentials.

New Phishing-As-A-Service Kit with Ability to Bypass MFA Targets Microsoft 365 Accounts

Feb 5, 2024 4:57:58 PM By Stu Sjouwerman

A phishing-as-a-service platform called “Greatness” is facilitating phishing attacks against Microsoft 365 accounts, according to researchers at Sucuri.

Social Engineering Masterstroke: How Deepfake CFO Duped a Firm out of $25 Million

Feb 5, 2024 8:47:01 AM By Stu Sjouwerman

Check out this one line for a moment...“duped into attending a video call with what he thought were several other members of staff, but all of whom were in fact deepfake recreations.”

Vendor Email Compromise Attacks Against Financial Services Surge 137% Last Year

Feb 2, 2024 1:27:13 PM By Stu Sjouwerman

Analysis of 2023 attacks shows how the financial services industry had a very bad year, with increases in both vendor email compromise (VEC) and business email compromise (BEC) attacks, ...

Microsoft Teams: The New Phishing Battlefront - How Attackers Are Exploiting Trusted Platforms

Feb 1, 2024 1:43:34 PM By Stu Sjouwerman

Attackers are abusing Microsoft Teams to send phishing messages, according to researchers at AT&T Cybersecurity.

81% of Underwriters Expect Cyber Insurance Premiums to Increase as Risk is Expected to Soar

Feb 1, 2024 1:43:29 PM By Stu Sjouwerman

New data from cyber insurance underwriters shows what they think the biggest threats will be in 2024 and what organizations should do about it.

Associated Press: "Grave peril of digital conspiracy theories."

Feb 1, 2024 12:30:27 PM By Stu Sjouwerman

The AP published a great article. This is your executive summary: Conspiracy theories have always been part of American culture, but advanced technology is making them more persuasive and ...

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

Feb 1, 2024 8:00:00 AM By Stu Sjouwerman

Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.

Ransomware Payments On The Decline As Cyber Attackers Focus on The Smallest, And Largest, Organizations

Jan 31, 2024 1:52:23 PM By Stu Sjouwerman

New data for Q4 of 2023 reveals a sizable shift in the cyber threat landscape, with serious implications regarding ransomware and social engineering attacks targeting both the largest and ...

FBI Cyber Alert: Tech Support Scams Steal Cash or Precious Metals

Jan 31, 2024 1:52:13 PM By Stu Sjouwerman

The US Federal Bureau of Investigation (FBI) has issued an alert that scammers are tricking victims into converting their savings into cash or precious metals, then sending couriers to ...

[Live Demo] Customizing Your Compliance Training to Increase Effectiveness

Jan 31, 2024 8:00:00 AM By Stu Sjouwerman

Linking compliance training to specific outcomes is hard. Compliance training has a reputation for being challenging for organizations to offer, difficult to do right and employees are ...

The Percentage of Organizations Globally Struck by Ransomware Hits an All-Time High

Jan 30, 2024 1:52:43 PM By Stu Sjouwerman

Check Point’s review of ransomware shows that the percent of organizations worldwide hit by this greatest of cyberthreats rose by a whopping 33% in 2023.

Open Redirects Used to Disguise Phishing Links

Jan 30, 2024 1:52:38 PM By Stu Sjouwerman

Phishing attacks are increasingly using open redirects to evade detection by security filters, according to researchers at Trustwave.

Security Awareness Training Blog

View Topics