Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Researchers Warn of Surge in Infostealers Delivered Via Phishing

Apr 30, 2025 4:41:26 PM By Stu Sjouwerman
The number of infostealers delivered via phishing emails increased by 84% last year, according to a new report from IBM’s X-Force researchers. Threat actors are using these malware ...
Continue Reading

What Is Device Code Phishing?

Apr 29, 2025 10:46:50 AM By Roger Grimes
Ever since Microsoft’s initial announcement on February 13, 2025, about a Russian nation-state phishing campaign using "device code phishing," many people have been wondering what it is. ...
Continue Reading

Criminals Exploit the Death of Pope Francis to Launch Scams

Apr 29, 2025 10:46:20 AM By Stu Sjouwerman
Scammers are exploiting the death of Pope Francis to launch social engineering attacks, according to researchers at Check Point.
Continue Reading

AJ from The Inside Man Now Coaching Your Users Real-time with Security Coach

Apr 29, 2025 10:45:38 AM By John Just
Do your users love The Inside Man? See more of beloved character AJ, now in SecurityCoach!
Continue Reading

CyberheistNews Vol 15 #17 [Warning] The Cyber "Broken Windows Theory" You Can't Afford to Ignore

Apr 29, 2025 9:00:00 AM By Stu Sjouwerman
Continue Reading

Introducing the KnowBe4 Academy: Your Path to Mastering Human Risk Management

Apr 25, 2025 4:04:29 PM By Stu Sjouwerman
We're thrilled to announce the launch of KnowBe4 Academy—a comprehensive learning ecosystem designed specifically for security administrators, IT professionals and team members who manage ...
Continue Reading

Social Engineering Campaign Abuses Zoom to Install Malware

Apr 25, 2025 4:04:00 PM By Stu Sjouwerman
A social engineering campaign is abusing Zoom's remote control feature to take control of victims’ computers and install malware, according to researchers at security firm Trail of Bits.
Continue Reading

Half of Organizations Lack Protection Against Email Spoofing

Apr 24, 2025 3:38:15 PM By Stu Sjouwerman
A new report from Valimail has found that 50% of organizations lack effective protection against email spoofing.
Continue Reading

How Organizational Culture Shapes Cyber Defenses

Apr 24, 2025 3:37:39 PM By Javvad Malik
Recently, I received an email at work from a company with whom I've had previous interactions. The email lacked context and contained an attachment, immediately raising suspicion.
Continue Reading

Warning: Ransomware Remains a Top Threat for SMBs

Apr 23, 2025 3:26:08 PM By Stu Sjouwerman
A new report from Sophos found that ransomware attacks accounted for over 90% of incident response cases involving medium-sized businesses in 2024, as well as 70% of cases involving small ...
Continue Reading

Breaking the Stigma: 90% of Employees Agree that Phishing Simulations Improve their Security Awareness

Apr 23, 2025 3:25:42 PM By Stu Sjouwerman
According to our independent survey of individuals across the UK, USA, Netherlands, France, Denmark, Sweden, the DACH region, and Africa who use a laptop as part of their work, 90.1% find ...
Continue Reading

Broken Cyber Windows Theory

Apr 22, 2025 9:02:13 AM By Javvad Malik
Have you ever walked down a street with broken windows, burnt out cars, graffiti and felt a bit uneasy? There's a reason for that, and it's not just about aesthetics.
Continue Reading

Threat Actors Are Increasingly Abusing AI Tools to Help With Scams

Apr 22, 2025 9:01:39 AM By Stu Sjouwerman
Cybercriminals are increasingly using AI tools to assist in malicious activities, according to Microsoft’s latest Cyber Signals report.
Continue Reading

CyberheistNews Vol 15 #16 [Scary] A New Real Cash Scam Sweeps Across the U.S. Warn Your Family and Friends!

Apr 22, 2025 9:00:00 AM By Stu Sjouwerman
Continue Reading

Powering Down Vulnerability: Securing the Energy Sector's Supply Chain

Apr 18, 2025 4:33:27 PM By Javvad Malik
The energy sector stands as a critical pillar of our society. From the electricity powering our homes to the fuel driving our industries, reliable energy is essential. However, the very ...
Continue Reading

China Cybercriminals Behind Toll-Themed Smishing Attacks Surge in the US and UK

Apr 18, 2025 4:32:52 PM By Stu Sjouwerman
Resecurity warns that a China-based cybercriminal gang dubbed the “Smishing Triad” is launching a wave of road toll-themed SMS phishing (smishing) attacks against users across the US and ...
Continue Reading

[Scary] A New Real Cash Scam Sweeps Across the U.S. Warn Your Family and Friends!

Apr 17, 2025 4:32:24 PM By Roger Grimes
Right now, today, thousands of people are being tricked into going to their banks or credit unions to withdraw large sums of cash and will give or send it to a complete stranger, never to ...
Continue Reading

Lack of Security Awareness Tops List of Obstacles to Cyber Defense

Apr 17, 2025 1:37:19 PM By Stu Sjouwerman
Most organizations cite low security awareness among employees as the biggest barrier to defending against cyberattacks, according to a new survey by CyberEdge Group.
Continue Reading

The Continued Abuse of Legitimate Domains: A Spike in the Exploitation of Google Drive to Send Phishing Attacks

Apr 17, 2025 1:36:59 PM By KnowBe4 Threat Lab
First QuickBooks, then Microsoft, and now Google—will the hijacking of legitimate third-party platform communications stop escalating in 2025? Our Threat Labs researchers predict the ...
Continue Reading

How Does Human Risk Management Differ from Security Awareness Training?

Apr 16, 2025 12:13:48 PM By Stu Sjouwerman
In today's cybersecurity landscape, organizations face an ever-present and often underestimated threat: human risk. Despite significant advancements in technological defenses, human error ...
Continue Reading
Subscribe

Search Our Blog


New call-to-action

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews