Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

FBI: Scammers Exploit Job Posting Sites with Fake Jobs to Steal Money and Personal Information

In the wake of the great reset, cybercriminals are finding success posing as legitimate companies in job postings seeking new hires on well-known job sites.
Continue Reading

New Cyberattack Campaign Delivers Multiple RATs via Trusted Cloud Services

Abusing cloud providers including Microsoft Azure and AWS, cybercriminals are setting up malicious infrastructure to hide their operations and avoid detection.
Continue Reading

Engaging Your Remote Workforce: Go Beyond Compliance with Training

Even after the pandemic ends, many employees say they want to stay home and continue to work remotely. A recent study by the Mckinsey & Company that looked at over 800 jobs in nine ...
Continue Reading

Brand Impersonation and the Healthcare Sector

The healthcare sector is particularly vulnerable to phishing attacks, according to Mike Azzara at Mimecast. Employees in the healthcare industry need to be wary of brand impersonation ...
Continue Reading

Introducing the New 'Security Masterminds' Podcast

We're excited to announce that we have launched a new podcast called "Security Masterminds”! This podcast covers a range of topics in cybersecurity, with a particular focus on the human ...
Continue Reading

Updated Ransomware Hostage Rescue Manual

Ransomware is one of the most damaging types of cyber attacks of all time, and the one feared the most by business owners and cybersecurity defenders. This worry is not without reason. In ...
Continue Reading

Use of Excel .XLL Add-Ins Soars Nearly 600% to Infect Systems in Phishing Attacks

Cybercriminals are taking to more advanced functionality than traditional VBA scripting to both execute complex malicious actions via Excel and to obfuscate their true intention - ...
Continue Reading

Average Ransomware Ransoms Jump 130% While Use of Data Exfiltration Grows

With pressures by law enforcement on ransomware gangs in 2021, and more stringent security requirements by cyber insurers, cybercriminals are changing their tactics to ensure a payoff.
Continue Reading

The Evolution and Future of Ransomware

The history of ransomware spans over 30 years. The first specimen, known as the AIDS Trojan, was delivered via physical media using the postal system, and, upon its discovery, was quickly ...
Continue Reading

Scammers Now Exploit 'Slinks' in LinkedIn

Scammers are exploiting LinkedIn redirect links, or “Slinks,” to fool users and bypass email security filters, Brian Krebs reports. These links allow companies to track their marketing ...
Continue Reading

CyberheistNews Vol 12 #06 [Heads Up] Beware of New Quickbooks Payment Scams

[Heads Up] Beware of New QuickBooks Payment Scams   Email not displaying? | View Knowbe4 Blog   CyberheistNews Vol 12 #06  |   Feb. 8th., 2022 [Heads Up] Beware of New QuickBooks Payment ...
Continue Reading

QR Codes in the Time of Cybercrime

QR codes have been around for many years. While they were adopted for certain niche uses, they never did quite reach their full potential. They are a bit like Rick Astley in that regard, ...
Continue Reading

As Tax Season Starts, So Do IRS Scams - Here’s What to Look For

It’s that time again, when we all dread finding out if we owe money or not. And cybercriminals are banking on it with a wide range of scams that all impersonate the IRS.
Continue Reading

KnowBe4 Named a Leader in the Winter 2022 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR)

We are excited to announce that KnowBe4 has been named a leader in the Winter 2022 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR) for the PhishER platform for ...
Continue Reading

Phone Number Only Phishing on the Rise

I do not have the data to support my conclusion, but myself and others have noticed the sharp increase in email phishing attempts that include only a phishing message and a phone number ...
Continue Reading

The 4 Things You Should Be Doing Right Now To Best Improve Your Cybersecurity

The key to really good cybersecurity is to concentrate on just 4 things. Master them first before you begin to try and do the other hundreds of things that everyone else is going to tell ...
Continue Reading

The Benefits of Paranoia

Security professionals can often be perceived as being overly paranoid. Don’t click this or the criminals will get into the system, always have at least 3 firewalls to prevent the nuclear ...
Continue Reading

U.K. Snack Manufacturer Expects Months of Delays After Ransomware Attack

Orders of top-selling snack brands from KP Snacks are on hold in the aftermath of a Conti ransomware attack that includes data theft of confidential information.
Continue Reading

Your KnowBe4 Fresh Content Updates from January 2022

Check out the 20 new pieces of training content added in January, alongside the always fresh content update highlights and new features.
Continue Reading

Web Trackers Collect Much More Info About Your Users’ Browsing Activity Than Previously Believed

Researchers at Norton LifeLock have found that web trackers are collecting much more information about users’ browsing activity than had previously been believed. Such trackers can follow ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews