Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

U.S. Cyber Command General Promises 'Surge' To Fight Ransomware Attacks

Sep 15, 2021 7:08:10 AM By Stu Sjouwerman
The Hill reported 9/14/2021: "Gen. Paul Nakasone, the head of U.S. Cyber Command and director of the National Security Agency (NSA), is working to “surge” efforts to respond to the ...
Continue Reading

Register for the Cybersecurity Virtual Summit KB4-CON EMEA Today!

Sep 15, 2021 6:00:00 AM By Stu Sjouwerman
We’re thrilled to host our first KB4-CON Cybersecurity Virtual Summit specifically for EMEA (Europe, the Middle East and Africa). At this one-of-a-kind event you’ll hear world-renowned ...
Continue Reading

CyberheistNews Vol 11 #36 [EYE OPENER] The Number Of Daily Ransomware Attacks Skyrockets Nearly 1,000% In 2021

Sep 14, 2021 9:54:34 AM By Stu Sjouwerman
Continue Reading

Social Media as Artillery Preparation for Spear Phishing

Sep 14, 2021 9:18:49 AM By Stu Sjouwerman
Researchers at ESTsecurity warn that a North Korean threat actor known as “Kumsong 121” is using compromised social media accounts to launch spear phishing attacks, the Daily NK reports. ...
Continue Reading

Business Email Compromise Scam takes New Hampshire Town for $2.3 Million

Sep 13, 2021 11:39:52 AM By Stu Sjouwerman
Social engineering is at the heart of this attack, where scammers successfully tricked a town into redirecting not just one but several bank transfers.
Continue Reading

Ransomware Resurrection? REvil Servers Come Back Online

Sep 13, 2021 11:39:33 AM By Stu Sjouwerman
After months of what was thought to be the retirement of the REvil ransomware gang, REvil-related systems and Tor sites popped up on the Dark Web last week.
Continue Reading

Blame it on the Lizard Brain

Sep 13, 2021 8:45:18 AM By Stu Sjouwerman
People need to work to overcome their inherent biases in order to avoid falling for social engineering attacks, according to Heidi Mitchell at the Wall Street Journal.
Continue Reading

[On-Demand Webinar] A Master Class on Cybersecurity: Roger Grimes Teaches Data-Driven Defense

Sep 13, 2021 8:00:00 AM By Stu Sjouwerman
Even the world’s most successful organizations have significant weaknesses in their cybersecurity defenses, which today’s determined hackers can exploit at will. There’s even a term for ...
Continue Reading

Wanting to Stream the Italian Grand Prix This Weekend? It Might Be a Scam.

Sep 10, 2021 8:46:11 AM By Stu Sjouwerman
With so many fans worldwide wanting to watch the race online, cybercriminals have stepped up to meet the demand with fraudulent websites intent on stealing credit card details.
Continue Reading

Five Signs of Social Engineering

Sep 9, 2021 4:58:21 PM By Roger Grimes
Social engineering can come in many different forms: via email, websites, voice calls, SMS messages, social media and even fax. If it is a communication method, scammers and criminals are ...
Continue Reading

A Look at Phishing Keywords

Sep 9, 2021 10:37:52 AM By Stu Sjouwerman
Researchers at Expel offer a useful list of the top keywords used in phishing emails. First on the list is the word “invoice,” which is a general term that will be relevant to most ...
Continue Reading

The Number of Daily Ransomware Attacks Increase Nearly 1000% in 2021

Sep 8, 2021 4:06:28 PM By Stu Sjouwerman
New analysis of cyberattack data by security vendor Fortinet sheds light on not only how much ransomware is really being experienced, but who’s being attacked the most.
Continue Reading

The Amount of Weekly New Phishing URLs Has Grown Nearly 2.5x Since 2020

Sep 8, 2021 4:06:10 PM By Stu Sjouwerman
The increase in remote users mixed with a lack of adjusting to cloud-based security services likely created the perfect opportunity for cybercriminals.
Continue Reading

BEC, Fraud, and Ransomware Attacks Are All on the Rise and Costing More Than Ever

Sep 8, 2021 4:05:54 PM By Stu Sjouwerman
New data from cyber insurer Coalition puts the spotlight on not only how much worse attacks are getting, but claim data paints the picture that organizations just aren’t ready.
Continue Reading

Phishing for the German Bundestag

Sep 8, 2021 8:45:15 AM By Stu Sjouwerman
The German government has called out Russia for carrying out phishing attacks against German politicians ahead of the country’s upcoming parliamentary elections, the Associated Press ...
Continue Reading

[FREE COURSES] Two New Training Modules are Now Available to Support Cybersecurity Awareness Month

Sep 8, 2021 8:29:43 AM By Stu Sjouwerman
October is Cybersecurity Awareness Month. To help you achieve your security awareness training goals for this important month, we're giving you two free training modules to share with ...
Continue Reading

CyberheistNews Vol 11 #35 [Heads Up] When the URL Domain Is Not Enough To Avoid That Phish

Sep 7, 2021 9:26:10 AM By Stu Sjouwerman
Continue Reading

Windows 11 Phishbait by Active Threat Group Now Delivers Malware

Sep 7, 2021 8:53:55 AM By Stu Sjouwerman
Researchers at Anomali warn that the financially motivated threat group FIN7 is using Windows 11-themed phishing documents to deliver malware. The documents claim to have been created on ...
Continue Reading

Conti's Ransomware Playbook Includes Recon for Users with Privileged Access

Sep 7, 2021 8:53:48 AM By Stu Sjouwerman
Researchers at Cisco Talos have translated a playbook used by the ransomware-as-a-service group Conti. The playbook contains detailed instructions for how to gain administrator access, ...
Continue Reading

Be Wary of Unrequested Disc Images

Sep 3, 2021 9:16:15 AM By Roger Grimes
Microsoft’s recent announcement that the new version of Microsoft Windows, Microsoft Windows 11, will be released soon is capturing headlines around the world. Microsoft will allow ...
Continue Reading
Subscribe

Search Our Blog


Cybersecurity Awareness Month Resource Kit

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews