Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Your KnowBe4 Fresh Content Updates from December 2024

Jan 16, 2025 9:00:00 AM By Stu Sjouwerman
Check out the 52 new pieces of training content added in December, alongside the always fresh content update highlights, new features and events.
Continue Reading

Japan Attributes More Than 200 Cyberattacks to China Threat Actor "MirrorFace"

Jan 15, 2025 10:34:45 AM By Stu Sjouwerman
Japan’s National Police Agency (NPA) has attributed more than 200 cyber incidents over the past five years to the China-aligned threat actor “MirrorFace,” Infosecurity Magazine reports.
Continue Reading

CyberheistNews Vol 15 #02 [HEADS UP] Credential Phishing Increased by 703% in H2 2024

Jan 14, 2025 9:00:00 AM By Stu Sjouwerman
Continue Reading

Waging War on Explicit Deepfakes. The Real Problem Behind the UK Crackdown

Jan 13, 2025 8:17:17 AM By Javvad Malik
The UK government decided to wage war on explicit deepfakes. About time, right? But before we start celebrating, let's take a closer look.
Continue Reading

Phishing Campaign Abuses Legitimate Services to Send PayPal Requests

Jan 9, 2025 4:37:41 PM By Stu Sjouwerman
A phishing campaign is abusing Microsoft 365 test domains to send legitimate payment requests from PayPal, according to Fortinet’s CISO Dr. Carl Windsor.
Continue Reading

Malicious WordPress Plugin Assists in Phishing Attacks

Jan 9, 2025 4:36:54 PM By Stu Sjouwerman
Researchers at SlashNext warn that cybercriminals are using a WordPress plugin called “PhishWP” to spoof payment pages and steal financial information.
Continue Reading

[BUDGET AMMO DEPT] WSJ: "Cybersecurity Is the King of Business Worries"

Jan 8, 2025 3:40:37 PM By Stu Sjouwerman
Kim S. Nash, the Deputy Bureau Chief at the Wall Street Journal who owns the cybersecurity beat wrote in her newsletter today: "Forget trade wars and turnovers in national leadership. ...
Continue Reading

Phishing for Gamers: Fake Offers Invite Gamers to Test New Gaming Titles

Jan 8, 2025 9:56:43 AM By Stu Sjouwerman
A phishing campaign is targeting users with phony offers to beta test new video games, according to researchers at Malwarebytes.
Continue Reading

CyberheistNews Vol 15 #01 [No Time to Waste] The 2025 Cybersecurity Tightrope: What's Next for The World?

Jan 7, 2025 9:00:00 AM By Stu Sjouwerman
Continue Reading

Credential Phishing Increased by 703% in H2 2024

Jan 6, 2025 3:07:10 PM By Stu Sjouwerman
Credential phishing attacks surged by 703% in the second half of 2024, according to a report by SlashNext. Phishing attacks overall saw a 202% increase during the same period.
Continue Reading

Tax-Themed Phishing Campaign Delivers Malware Via Microsoft Management Console Files

Jan 2, 2025 4:23:04 PM By Stu Sjouwerman
Securonix warns that tax-themed phishing emails are attempting to deliver malware via Microsoft Management Console (MSC) files.
Continue Reading

FTC Warns Immigrants About Rising Social Media Immigration Scams

Dec 31, 2024 4:33:28 PM By Stu Sjouwerman
The Federal Trade Commission (FTC) has issued an urgent warning about a surge in immigration scams targeting immigrants and their families on social media platforms like Facebook.
Continue Reading

CyberheistNews Vol 14 #52 [Heads Up] Bad Actors Use Voice Phishing in Microsoft Teams To Spread Malware

Dec 24, 2024 9:00:00 AM By Stu Sjouwerman
Continue Reading

Russia’s APT29 Launches Major Spear Phishing Campaign

Dec 23, 2024 5:14:23 PM By Stu Sjouwerman
Trend Micro warns that the Russian state-sponsored threat actor Earth Koshchei (also known as “APT29” or “Cozy Bear”) is using spear phishing emails to trick victims into connecting to ...
Continue Reading

"Get Beyond Security Awareness Training" Does Not Mean Forgetting About It

Dec 23, 2024 5:13:52 PM By Roger Grimes
KnowBe4 is a big believer in focusing on decreasing human risk as the best way to decrease cybersecurity risk in most environments.
Continue Reading

Mobile Phishing Attacks Use New Tactic to Bypass Security Measures

Dec 20, 2024 3:49:33 PM By Stu Sjouwerman
ESET has published its threat report for the second half of 2024, outlining a new social engineering tactic targeting mobile banking users.
Continue Reading

Attackers Abuse HubSpot’s Free Form Builder to Craft Phishing Pages

Dec 20, 2024 3:49:08 PM By Stu Sjouwerman
A threat actor is abusing HubSpot’s Free Form Builder service to craft credential-harvesting phishing pages, according to Palo Alto Networks’ Unit 42.
Continue Reading

James Bond-Style Scamming Profits Explode

Dec 20, 2024 3:48:39 PM By Roger Grimes
There is a type of scam where victims are contacted by someone fraudulently posing as a popular trusted entity (e.g., Amazon, U.S. Post Office, etc.), law enforcement, or an intelligence ...
Continue Reading

No, KnowBe4 Is Not Being Exploited

Dec 18, 2024 11:57:49 AM By Roger Grimes
Some of our customers are reporting “Threat Alerts” from Mimecast stating hackers have exploited KnowBe4 or KnowBe4 domains to send email threats.
Continue Reading

AI-Powered Investment Scams Surge: How 'Nomani' Steals Money and Data

Dec 18, 2024 11:16:53 AM By Stu Sjouwerman
Cybersecurity researchers are warning about a new breed of investment scam that combines AI-powered video testimonials, social media malvertising, and phishing tactics to steal money and ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews