Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

CyberheistNews Vol 14 #46 [Eye Opener] Attackers Don't Hack, They Log In. Can You Stop Them?

Nov 12, 2024 9:00:00 AM By Stu Sjouwerman
Continue Reading

[FREE RESOURCE KIT] Stay Cyber Safe this Holiday Season with Our Free 2024 Resource Kit!

Nov 12, 2024 7:24:00 AM By Stu Sjouwerman
Isn’t it typical for bad actors to strike when we’re distracted and busy during this time of year?
Continue Reading

Criminals Use Search Engine Poisoning to Boost Phishing Pages

Nov 11, 2024 4:46:36 PM By Stu Sjouwerman
Researchers at Malwarebytes warn that cybercriminals are using search engine poisoning to boost phishing pages to the top of Bing’s search results.
Continue Reading

Recon 2.0: AI-Driven OSINT in the Hands of Cybercriminals

Nov 11, 2024 8:00:00 AM By Stu Sjouwerman
Cybercriminals are using artificial intelligence (AI) and generative AI in open source intelligence (OSINT) activities to target your organization with supercharged reconnaissance efforts.
Continue Reading

[Eye Opener] Attackers Don’t Hack, They Log In. Can You Stop Them?

Nov 9, 2024 8:58:57 AM By Stu Sjouwerman
The latest trend in cybercrime is that attackers don't really focus on “hacking” in; they’re logging in.
Continue Reading

Phishing Campaign Impersonates OpenAI To Collect Financial Data

Nov 7, 2024 2:31:28 PM By Stu Sjouwerman
Cybercriminals are impersonating OpenAI in a widespread phishing campaign designed to trick users into handing over financial information. The emails inform users that a payment for their ...
Continue Reading

The Deceptive Media Era: Moving Beyond "Real vs. Fake"

Nov 7, 2024 8:09:52 AM By Perry Carpenter
As society grapples with the rapid advancement of AI and synthetic media, we've been asking the wrong question. The focus on whether content is "real or fake" misses the more crucial ...
Continue Reading

Attackers Abuse DocuSign to Send Phony Invoices

Nov 7, 2024 8:09:49 AM By Stu Sjouwerman
Threat actors are abusing DocuSign’s API to send phony invoices that appear “strikingly authentic,” according to researchers at Wallarm.
Continue Reading

[Last Chance] KB4-CON APJ Cybersecurity Event is in 10 Days

Nov 5, 2024 2:13:19 PM By Stu Sjouwerman
Tick tock, the countdown is on! KB4-CON APJ starts in just 10 days, and you still have time to register!
Continue Reading

BlackBasta Ransomware Gang Uses New Social Engineering Tactics To Target Corporate Networks

Nov 5, 2024 2:13:18 PM By Stu Sjouwerman
ReliaQuest warns that the BlackBasta ransomware gang is using new social engineering tactics to obtain initial access within corporate networks.
Continue Reading

Attackers Abuse Eventbrite to Send Phishing Emails

Nov 5, 2024 2:13:13 PM By Stu Sjouwerman
Attackers are abusing Eventbrite’s scheduling platform to send phishing emails, according to researchers at Perception Point. These attacks increased by 900% between July and October 2024.
Continue Reading

CyberheistNews Vol 14 #45 [Heads Up] QR Code Phishing is Growing More Sophisticated

Nov 5, 2024 9:26:36 AM By Stu Sjouwerman
Continue Reading

Celebrating 5 Million Learners: The Evolution of KnowBe4's Compliance Plus

Nov 4, 2024 1:37:56 PM By John Just
When you think of KnowBe4, you might immediately picture phishing simulations, password security modules, or other security awareness training topics.
Continue Reading

If Social Engineering Is 70% - 90% of Attacks, Why Aren’t We Acting Like It?

Nov 4, 2024 1:37:53 PM By Roger Grimes
Over a decade ago, I noticed that social engineering was the primary cause for all malicious hacking. It has been that way since the beginning of computers, but it took me about half of ...
Continue Reading

Your KnowBe4 Compliance Plus Fresh Content Updates from October 2024

Nov 4, 2024 8:00:00 AM By Stu Sjouwerman
Check out the October updates in Compliance Plus so you can stay on top of featured compliance training content.
Continue Reading

Phishing Alert: Cybercriminals Impersonating KnowBe4 Training Emails

Nov 1, 2024 2:34:32 PM By Stu Sjouwerman
In the ever-evolving landscape of cybersecurity threats, we've recently encountered a sophisticated phishing attempt targeting one of our valued KnowBe4 customers. This incident serves as ...
Continue Reading

Every Cybersecurity List Should Be a Risk-Ranked List

Nov 1, 2024 2:34:28 PM By Roger Grimes
Cybersecurity is all about risk management and reduction. You cannot get rid of all risk. Well, I guess you could, but you (and everyone else) would probably not want to work in a true ...
Continue Reading

The Rise of Outsourced Cybersecurity: How CISOs are Adapting to New Challenges

Nov 1, 2024 9:59:43 AM By Stu Sjouwerman
Chief Information Security Officers (CISOs) are facing unprecedented challenges. The combination of increasingly sophisticated cyber threats, persistent talent shortages, and complex ...
Continue Reading

Threat Actors Abuse LinkedIn to Target Job Seekers

Nov 1, 2024 9:59:39 AM By Stu Sjouwerman
Threat actors are targeting people who have recently lost their jobs with employment scams on LinkedIn, according to researchers at Malwarebytes.
Continue Reading

Your KnowBe4 Fresh Content Updates from October 2024

Nov 1, 2024 8:00:00 AM By Stu Sjouwerman
Check out the 60 new pieces of training content added in October, alongside the always fresh content update highlights, events and new features.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews