Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Beware the Long Con Phish

Social engineering and phishing happen when a con artist communicates a fraudulent message pretending to be a person or organization which a potential victim might trust in order to get ...
Continue Reading

Data Privacy and Fingerprints

Most people know, primarily criminals, that you don't want to leave the oils from your fingers at a crime scene because it creates a fingerprint. Everyone has them (unless they don't have ...
Continue Reading

2021 Begins a New Decade of Privacy

Privacy issues came about all across the board in 2020, and 2021 will be no different. From WhatsApp updating their terms of service and losing millions of users to countless proposals by ...
Continue Reading

NSA Warns Against Using Third-Party DNS and Encourages DNS Over HTTPS

As cybercriminals look for new ways to attack organizations, the National Security Agency takes a hard look at how DNS can be manipulated and makes recommendations on how to secure it.
Continue Reading

Australians Experienced over 200K Scams in 2020 Costing Over A$176 Million

New data from the Australian government’s Scamwatch site shows that phishing and vishing topped the list of scam types used to trick Australians into becoming a scam’s next victim.
Continue Reading

UK Insurer Defends the Coverage of Ransomware Payments

Despite the U.K. government’s position that organizations should not make ransomware payments, the Association of British Insurers (ABI) includes payments in first-party cyber-insurance ...
Continue Reading

A UK Case Study: Recognizing COVID-19 Phishing

A phishing campaign is using convincingly spoofed offers for COVID-19 vaccination sign-ups, according to Tom Allen at Computing. As vaccines are now being distributed around the world, ...
Continue Reading

Microsoft: "Congrats KnowBe4 On being One Of The Top Apps In 2020"

Natee Pretikul, Senior Program Manager in Microsoft's Identity Engineering Strategic Alliances team just send us the following:
Continue Reading

Confident About Detecting Spoofed, Scam Emails?

A survey by ESET found that most people think they’d be able to identify scam emails while shopping online. 87% of respondents said they felt secure while shopping online, while 73% ...
Continue Reading

CISA's New Anti-Ransomware Campaign

The US Cybersecurity and Infrastructure Security Agency is launching a campaign to raise awareness of the ways organizations can defend themselves against ransomware attacks.
Continue Reading

KnowBe4 Unveils Official Trailer for ‘The Inside Man’ Season 3

We’re excited to announce the official trailer for Season 3 of the award-winning KnowBe4 Original Series - ‘The Inside Man’ is now available! KnowBe4’s network-quality video training ...
Continue Reading

Thousands of Stolen Credentials Accessible via Google Search as Cybercriminals Accidentally Make Them Public

A publishing goof by cybercriminals on a WordPress site made files containing stolen passwords indexable by Google and were subsequently publicly available via search.
Continue Reading

Microsoft Continues to Dominate as the Leading Brand Impersonated in Phishing Attacks

New data from Check Point Research highlights the latest details on which brands are impersonated, giving insight into where the bad guys are most successful.
Continue Reading

Motivations of Phishing Criminals

Phishers, people who are phishing other people (i.e., victims), have reasons for doing so. They are all criminals…cons…each pretending to be something they are not in order to trick ...
Continue Reading

The Many Ways You Can Be Phished

Social engineering and deception are as old as humanity itself. Phishing is social engineering and deception via digital means and has been with us since the beginning of computers. After ...
Continue Reading

World Economic Forum: COVID Makes Cybersecurity Problem No. 1

The WEF just published their recent survey over worldwide corporate leaders. When asked about technology objectives that have become a greater priority due to COVID, they elevated ...
Continue Reading

Interpol Warns of Romance Scams

Interpol has issued a notice describing a scam tactic popular on dating applications. The scheme is a mixture of a romance scam and an investment fraud, taking advantage of victims’ ...
Continue Reading

[INFOGRAPHIC] Q4 2020 Work From Home Phishing Emails on the Rise

KnowBe4's latest quarterly report on top-clicked phishing email subjects is here. These are broken down into three different categories: social media related subjects, general subjects, ...
Continue Reading

Charming Kitten Phishing and Smishing Attacks Use Legitimate Google Links and a Tricky Redirection Strategy to Fool Security Solutions

This breakdown of the latest attack from the Charming Kitten cybercriminal gang shows just how much thought goes into obfuscating their tactics and evading detection.
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews