Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Counterterrorism Strategies Could Be the Key to Stopping Ransomware

With ransomware players, sophistication, effectiveness, and cost all on the rise, it may be time for us to take a page from counterterrorism to make it more difficult for cybercriminal ...
Continue Reading

Phishbait Follows Current Events

Crisis draws opportunistic criminals, and the Kaseya ransomware incident is no different. Kaseya’s updates on the incident have included repeated warnings not to be taken in by emails or ...
Continue Reading

The Pandemic’s Paradigm Shift with Cybersecurity

Just over a year ago, a much-prized perk – the ability to work from home – became an everyday reality for many. ITWeb, in partnership with KnowBe4, conducted a survey to gain insight into ...
Continue Reading

How to Defeat REvil Ransomware

The REvil ransomware gang is in the news again! This time for a supply chain attack and the largest public extortion demand ever – $70 million dollars.
Continue Reading

KnowBe4 Fresh Content Updates from June

Here are important fresh content updates to share with you that happened in the month of June.
Continue Reading

[On-Demand Webinar] Implement DMARC the Right Way to Keep Phishing Attacks Out of Your Inbox

DMARC, SPF, and DKIM are global anti-domain-spoofing standards, which can significantly cut down on phishing attacks. Implemented correctly they allow you to monitor email traffic, ...
Continue Reading

Ransomware Attacks from Within Russia So Impactful, U.S. Government Says They Will Take Action If Russia Won’t

In light of recent ransomware attacks, the White House Press Secretary Jen Psaki stated this week that the Russian government needs to address ransomware groups stemming from Russia.
Continue Reading

How REvil Works: A Look Inside the World’s Most Famous Ransomware-as-a-Service

With well-known companies impacted by REvil in every sector, including tech, it’s time to get a better understanding of who they are and what makes their ransomware so successful.
Continue Reading

Social Engineering and Organizational Culture

Consistent awareness training is necessary to fend off phishing attacks, according to Keatron Evans, a principal security researcher, instructor, and author with Infosec. In an interview ...
Continue Reading

KnowBe4’s 2021 Phishing By Industry Benchmarking Report Reveals that 31.4% of Untrained End Users Will Fail a Phishing Test

Guess what? Over the past several months, the KnowBe4 elves have been working around the clock analyzing billions of rows of data to uncover meaningful insights. Their latest offering is ...
Continue Reading

Lazarus Group Continues Targeting Defense Contractors

North Korea’s Lazarus Group has been launching phishing campaigns against more defense contractors and engineering companies, according to researchers at AT&T Alien Labs. The attackers ...
Continue Reading

87% Increase in Social Engineering Scams During the First Quarter of 2021 Compared to Q1 2020

There was an 87% increase in social engineering scams during the first quarter of 2021 compared to Q1 2020, according to Ayelet Biger-Levin from BioCatch. In an article for The Paypers, ...
Continue Reading

KnowBe4 Named a Leader in the Summer 2021 G2 Grid Report for Security Awareness Training

The latest G2 Grid Report compares Security Awareness Training (SAT) vendors based on user reviews, customer satisfaction, popularity and market presence.
Continue Reading

Your The Majority of Business Email Compromise Phishing Attacks Initially Go for Credentials, Not Money

With BEC attacks historically trying to get to the “committing fraud” part as quickly as possible, new data shows threat actors are taking their time, looking for a larger payoff.
Continue Reading

It Was Only a Matter of Time: The Ransomware Ecosystem Has Given Birth to VC Investors

Security firm LIFARS confirms that cybercriminals are acting like venture capital investors, funding startup cybercriminal organizations, such as Darkside Ransomware.
Continue Reading

WhatsApp Phishing Scams Significantly Increase

The Southwark Police in London have warned of a spike in WhatsApp phishing scams, according to Paul Ducklin at Naked Security. The station tweeted, “We have seen a surge in WhatsApp ...
Continue Reading

HMRC-Branded Phishing Attacks Targeting U.K. Users Saw an 87% Increase During COVID

Phishing scams impersonating the UK’s tax, payments and customs authority related to tax rebates or refunds have soared, according to new data obtained by a Freedom of Information (FoI) ...
Continue Reading

Two-Thirds of Organizations Have Experienced Spear Phishing Attacks in 2021

Spear phishing is on the rise in both frequency and effectiveness, making it an even greater threat to organizations who let their defenses down – even a little.
Continue Reading

Important Kaseya Notice! Turn VSA Off. Now. Ransomware. Updated

Saturday morning July 3: They were hit with a REvil ransomware attack it looks like.  Friday July 2 at 11pm they said:
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews