Cybercriminals Use New V3B Phishing Kit to Mimic 54 Different Banks in the European Union

Jun 13, 2024 2:32:39 PM By Stu Sjouwerman

A new phishing-as-a-service toolkit that leverages credential interception and anti-detection capabilities has put EU banks at severe risk of fraud.

Phishing With Deepfakes for HK$200 Million

Jun 13, 2024 2:29:59 PM By Martin Kraemer

My hacker story occurred not too long ago at the Hong Kong office of an undisclosed multinational corporation. The hackers pulled off a first-of-its-kind scam that leveraged a phishing ...

New Research Shows An Alarming Trend of Phishing Attacks Doubling For US and European Organizations

Jun 12, 2024 3:25:33 PM By Stu Sjouwerman

Cybercriminals never sleep, and their aim keeps getting better. According to new research from Abnormal Security, phishing attacks targeting organizations in Europe shot up by a ...

Beware: Major AI Chatbots Now Intentionally Spreading Election Disinformation

Jun 11, 2024 11:54:33 AM By Stu Sjouwerman

Just when you thought the disinformation landscape couldn't get any worse, a new report from Democracy Reporting International in Europe reveals that popular AI chatbots have started ...

Sinister "More_eggs" Malware Cracks Into Companies by Targeting Hiring Managers

Jun 11, 2024 11:54:29 AM By Stu Sjouwerman

Job seekers, beware - cybercriminals have a nasty new way to slide their malicious code on corporate networks. Researchers have uncovered a devious phishing campaign that's distributing ...

CyberheistNews Vol 14 #24 [NEW 2024 RESEARCH] Reveals that 34% of Green Users Will Fail a Phishing Test

Jun 11, 2024 9:00:00 AM By Stu Sjouwerman

DarkGate Malware Being Spread Via Excel Docs Attached To Phishing Emails

Jun 11, 2024 8:00:00 AM By Stu Sjouwerman

A phishing campaign is spreading the DarkGate malware using new techniques to evade security filters, according to researchers at Cisco Talos.

New HR-Themed Credential Harvesting Phishing Attack Uses Legitimate Signature Platform Yousign

Jun 11, 2024 8:00:00 AM By Stu Sjouwerman

A new phishing campaign is exploiting the eSignature platform Yousign.

Bruce Schneier: "AI Will Increase the Quantity—and Quality—of Phishing Scams"

Jun 11, 2024 6:49:00 AM By Stu Sjouwerman

Wow. It does not happen often that the godfather of infosec comes out this strong about phishing risks. He co-published new research in the Harvard Business Review May 30, 2024, which in ...

Everything You Can Do to Fight Social Engineering and Phishing

Jun 10, 2024 8:00:00 AM By Stu Sjouwerman

Social engineering and phishing are not just IT buzzwords; they are potent threats capable of devastating damage to your organization.

[New Feature] Find Out if They've Got a Bad Reputation in Record Time with PhishER Plus Threat Intel

Jun 10, 2024 8:00:00 AM By Stu Sjouwerman

The PhishER Plus platform just got smarter with the addition of the new PhishER Plus Threat Intel feature that integrates web reputation data into the PhishER Plus console.

Nearly Three-Quarters of Organizations Were the Target of Attempted Business Email Compromise Attacks

Jun 7, 2024 2:20:40 PM By Stu Sjouwerman

New data highlights just how dangerous Business Email Compromise attacks are.

Fighting Phishing: Everything You Can Do to Fight Social Engineering and Phishing

Jun 7, 2024 8:16:24 AM By Roger Grimes

I have created a comprehensive webinar, based on my recent book, “Fighting Phishing: Everything You Can Do to Fight Social Engineering and Phishing”. It contains everything that KnowBe4 ...

Breach or Bluff: Cyber Criminals' Slippery Tactics

Jun 7, 2024 8:16:12 AM By Javvad Malik

When the news first broke about a potential data breach at Ticketmaster, the details were murky. The Department of Home Affairs confirmed a cyber incident affecting Ticketmaster ...

Minnesotans Targeted by Scammers With Phony Arrest Warrants

Jun 7, 2024 8:14:43 AM By Stu Sjouwerman

The Minnesota Judicial Branch has issued an advisory warning that scammers are messaging Minnesotans with phony arrest warrants for missing jury duty.

Social Engineering Scams Can Come in the Mail, Too

Jun 6, 2024 8:27:18 AM By Roger Grimes

Social engineering scams can come through any communications channel (e.g., email, web, social media, SMS, phone call, etc.). They can even come in the mail as the Nextdoor warning below ...

“Operation Endgame” Ends with the Arrest of 4 Cybercriminal Suspects and 100 Servers

Jun 6, 2024 8:27:15 AM By Stu Sjouwerman

Coordinated efforts between law enforcement agencies across nine countries has resulted in a major disruption of a threat group’s malware and ransomware operations.

26% of Global Organizations Lack Security Training Programs

Jun 6, 2024 8:26:39 AM By Stu Sjouwerman

More than a quarter (26%) of organizations around the world provide no security awareness training for their employees, according to a survey by Hornetsecurity. The researchers found that ...

Best Buy/Geek Squad Impersonation Scams Surged in 2023

Jun 4, 2024 1:14:20 PM By Stu Sjouwerman

The US Federal Trade Commission (FTC) has found that Best Buy, and its tech support subsidiary Geek Squad, were the most commonly impersonated brands by scammers in 2023.

Email Compromise Continues to Dominate as Top Threat Incident Type as Tactics Evolve

Jun 4, 2024 1:14:16 PM By Stu Sjouwerman

As email compromise attacks increase, analysis of tactics provides context on how organizations need to evolve their defenses.

Security Awareness Training Blog

View Topics