Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Deepfake Videos – An Increasing Cyber Threat For Corporate Clients

Insurance Business Mag had an interesting take on your users being the victim of social engineering by deepfakes. Your cyber insurance policy is not likely to pay out in cases like this. ...
Continue Reading

KnowBe4 Fresh Content & Features Updates - April 2019

Check out the content and feature updates in the KnowBe4 platform for the month of April! NEW FEATURED CONTENT - STANDUPS 4 SECURITY We’re excited to highlight the release of the new ...
Continue Reading

Great Budget Ammo: 60 minutes Warns Against Ransomware

We could not have said it better ourselves, but now 60 minutes has done the work for us. This is probably the best ammo you can send to your non-tech executives to explain the ransomware ...
Continue Reading

Nearly Half of US Orgs Not Ready for California Consumer Privacy Act Deadline

InfoSec Mag observed something a bit worrisome. "In advance of the California Consumer Privacy Act (CCPA) going into effect January 1, 2020, researchers analyzed how prepared US ...
Continue Reading

IT and Executives are (Mostly) in Alignment and Both Fear the Phish

According to the latest from AT&T Cybersecurity, enterprise IT and boardrooms largely see eye-to-eye… and those eyes are watching some very common, yet pervasive, threats.
Continue Reading

U.K. Court Finds Employee Actions Constitute “Vicarious Liability”, despite meeting GDPR Requirements

The latest developments in the lawsuit against UK supermarket chain Morrisons may dictate the future of employers being held responsible for employee actions.
Continue Reading

[Heads-up] Scary New MegaCortex Ransomware Strain Discovered That Targets Your Business Network

Sophos has discovered a scary new strain of very sophisticated ransomware called MegaCortex. It was purpose-built to target corporate networks, and once penetrated, the attackers infect ...
Continue Reading

Exploiting Google on the Cheap

By Eric Howes,  KnowBe4 Principal Lab Researcher.  So, maybe you're a bad guy who doesn't have fancy code monkeys who can cook up an exploit that effectively converts Google into a ...
Continue Reading

61% Of IT Pros Have Experienced A Serious Data Breach And Many Are Blamed For It.

TechRepublic just reported that cybercriminals continue to target intellectual property, putting companies at risk for financial and brand reputation hits, quoting a new McAfee report.
Continue Reading

New Phishing Campaign From 'FBI Director Wray' is Hysterical

Our friend Larry Abrams who runs the bleepingcomputer site had something highly entertaining: "We regularly write about phishing emails at BleepingComputer.com in order to warn our ...
Continue Reading

Social Media Phishing Attacks Up More Than 70 Percent

Social media phishing, primarily on Facebook and Instagram, has seen a 74.7 percent increase in the first quarter of 2019. A new report on the current phishing landscape from predictive ...
Continue Reading

How Your Users Can Fall Victim To Credential Stuffing Attacks

Credential stuffing attacks are extremely easy to carry out and offer a massive return on investment, according to a new report by researchers at Recorded Future. These attacks utilize ...
Continue Reading

[InfoGraphic] AUGH! Your Users Are Clicking On 50% Of The LinkedIn Phishing Tests

KnowBe4 Q1 2019 top-clicked phishing subject lines reveals LinkedIn messages to be most popular. Today, we revealed that simulated phishing tests that include “LinkedIn” in the subject ...
Continue Reading

President Signs Executive Order to Boost Federal Cyber Workforce

The White House launched its latest effort to bolster the government’s cybersecurity workforce.
Continue Reading

4 Ways CISOs Can Improve Their Organization’s Security Position

Understanding where your biggest risks are, and how cybercriminals take advantage of those risks help CISOs to build a better strategy to defend against, detect, and address threats.
Continue Reading

Ransomware Attacks Jump 500% as Businesses Continue to Be the Prime Target

Malwarebyte’s latest Cybercrime Tactics and Techniques report exposes some trends indicating that 2019 is looking to be the year of the cyberthreat for businesses.
Continue Reading

Tech Support Scam Freezes Browsers

Trend Micro has found a new tech support scam that abuses HTML’s Inline Frame element (iframe) along with authentication pop-ups to freeze victims’ browsers by trapping them in a type of ...
Continue Reading

Brunswick Church Falls For Phishing Scam Of Almost $2 Million

Staff at St. Ambrose Roman Catholic Church in Brunswick say the church was scammed out of nearly $2 million. The church said a phishing email led it to believe that a construction firm ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews