Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

U.K. Pensions Regulator Sees 145 Percent Increase in Malicious Email Activity

The U.K. Government’s massive jump in email-based cyberattacks far outpaces even the most aggressive phishing or spam growth numbers seen this year.
Continue Reading

[Heads Up] Your Exfiltrated Ransomware Data Is Now Used To Spearphish Your Business Partners

Ransomware operators are continually improving their tactics to ensure more lucrative payouts, according to Information Security Media Group (ISMG). Over the past several years, attackers ...
Continue Reading

[Heads Up!] A Whopping 21 Percent of Phishing Attack URLs Are Not Detected As Malicious For Days After They Go Live

New data from Akamai provides insight into why phishing attacks are making it all the way to the endpoint… and why they can trick users so easily into becoming a victim.
Continue Reading

Secret Service Warning: Exploiting the Coronavirus for Fraud and Profit.

By Eric Howes,  KnowBe4 Principal Lab Researcher. On Monday of this week we published a review of the coronavirus-themed emails that had been reported to us by customers using the Phish ...
Continue Reading

A Look at Email Security in the US Healthcare Sector

90% of US healthcare organizations experienced email-based attacks in the past year, and 25% of these organizations said the attacks were extremely or very disruptive, according to a new ...
Continue Reading

Ransomware Attack on Police Department Encrypts Evidence, Sets Criminals Free

Holding data for ransom often has business repercussions beyond just delays and inconvenience. In the case of a police investigation, it’s putting criminals back on the street.
Continue Reading

Cyberattacks on MSPs Grow Exponentially as the Focus Shifts to Hold Their Customer’s Data for Ransom

Recent insight from data protection vendor Datto puts MSPs on notices to secure their own environments to protect both their business and that of their customers.
Continue Reading

Cruel Hoax Scams Elderly Woman

An 89-year-old woman in Delaware lost $9,500 to scammers who told her that her grandson had been arrested for causing a car accident, Delaware Online reports. The scammers called the ...
Continue Reading

Ransomware Predicted to Cost $20 Billion in Damages Globally by 2021

As the state of ransomware attacks shift from simple data encryption scams to attacks intent on bringing an organization’s network to its’ knees, the cost of remediation is expected to ...
Continue Reading

Exploiting the Coronavirus: The Spammers, the Scammers, and the Bad Guys

By Eric Howes,  KnowBe4 Principal Lab Researcher. If you've been paying attention to the news over the past week or so, you've undoubtedly noticed that the majority of the stories on your ...
Continue Reading

Identify & Respond to Email Threats Faster with PhishER

Your users are likely already reporting potentially dangerous emails in some fashion within your organization. The increase of this email traffic can present a new problem!
Continue Reading

Use Advocates to Spread Your Security Awareness Training Program

I’ve always been a big fan of train-the-trainer programs. Even if you are a great computer security consultant and trainer, there is a limit to what you, one person or one team, can do. ...
Continue Reading

February Content Update: Including Season 2 of Netflix-Style Series 'The Inside Man'

Here are a few important updates to share with you from the month of February. 
Continue Reading

New Norton LifeLock Phishing Scam Installs Remote Access Trojan

In yet another case of brand impersonation, this new phishing scam seeks out the millions of LifeLock customers and follows a seasoned infection path, with the goal being persistence and ...
Continue Reading

Yet Another Utility Company Falls Victim to Ransomware Attack

The latest ransomware attack on yet another utility company echos the warnings from last year’s report on utilities’ readiness for a cyberattack.
Continue Reading

Stealthy “Netwalker” Ransomware Using Windows Explorer And "Art of Deception" To Infect Enterprise Networks

Researchers at Quick Heal Security Labs have discovered a new strain of the “Mailto” ransomware nicknamed “Netwalker" that uses the art of deception to evade detection.  The new strain ...
Continue Reading

Did you know that KnowBe4 provides Managed Phishing Services?

You have determined the need for a mature, effective security awareness training program to make sure your employees do not fall for phishing emails or social engineering attacks. As part ...
Continue Reading

UK Telegraph: "Huge ransomware attack laid bare French lingerie firm"... And Bankrupted It

Leave it to the wordsmiths of the British Press to come up with a catchy title like this... However, the topic is dead serious.
Continue Reading

Anti-Virus, Identity Protection Phishbait

A phishing campaign is using fake NortonLifelock documents to trick victims into installing a remote access tool, according to researchers at Palo Alto Networks’ Unit 42. The documents ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews