85% of Organizations Have Experienced At Least One Ransomware Attack in the Last Year

Jun 13, 2023 9:56:50 AM By Stu Sjouwerman

Ransomware attacks are as pervasive as ever, with new data demonstrating just how impactful the attacks really are.

State-Based Cyber Attacks Continue to Be a Thorn in the Cyber Insurer's Side

Jun 13, 2023 9:56:46 AM By Stu Sjouwerman

As government-sponsored and widespread vulnerability attacks continue to result in larger damages, cyber insurers are looking for opportunities to still meet demand without incurring risk.

Microsoft Describes a Sophisticated Phishing Campaign that Targeted Several Financial Organizations

Jun 13, 2023 9:56:43 AM By Stu Sjouwerman

Microsoft describes a sophisticated phishing campaign that targeted several financial organizations.

CyberheistNews Vol 13 #24 [The Mind's Bias] Pretexting Now Tops Phishing in Social Engineering Attacks

Jun 13, 2023 9:00:00 AM By Stu Sjouwerman

CyberheistNews Vol 13 #24 | June 13th, 2023 [The Mind's Bias] Pretexting Now Tops Phishing in Social Engineering Attacks The New Verizon DBIR is a treasure trove of data. As we will cover ...

[ON-DEMAND] A Master Class on Cybersecurity: Roger Grimes Teaches Password Best Practices

Jun 13, 2023 8:00:00 AM By Stu Sjouwerman

What really makes a “strong” password? And why are you and your end-users continually tortured by them? How do hackers crack your passwords with ease? And what can/should you do to ...

Half of U.K. Companies Have Been a Cyber Attack Victim in the Last Three Years

Jun 12, 2023 9:18:26 AM By Stu Sjouwerman

New data puts the spotlight on the human factor in U.K. cyber attacks, where users continue to be susceptible to social engineering, creating the so-called “Human Risk.”

Forrester: AI, Cloud Computing, and Geopolitics are Emerging Cyberthreats in 2023

Jun 12, 2023 9:18:07 AM By Stu Sjouwerman

Wouldn’t it be great if your cybersecurity strategy only had to focus on just a few threats? Sigh… if only life were that easy. But new predictions for this year’s most prevalent cyber ...

Organizations Take 43 Hours to Detect an Spear Phishing Cyber Attack

Jun 12, 2023 9:17:52 AM By Stu Sjouwerman

New data makes it crystal clear that spear phishing is a real problem… and organizations may not properly be prepared to detect and address it.

How NK's Cyber Criminals Stole 3 Billion in Crypto To Fund Their Nukes

Jun 11, 2023 8:01:42 PM By Stu Sjouwerman

The Wall Street Journal today revealed that North Korea's hacker army managed to steal a huge amount of cryptocurrency amounting to $3 billion to finance their nuclear program. US ...

Verizon: Stolen Credentials Tops the List of Threat Actions in Breaches

Jun 9, 2023 10:00:18 AM By Stu Sjouwerman

Verizon's DBIR always has a lot of information to unpack, so I’ll continue my review by covering how stolen credentials play a role in attacks.

[SCAM OF THE WEEK] Summer Scams Your Users Should Watch Out For

Jun 8, 2023 2:27:41 PM By Stu Sjouwerman

While your users are getting ready for their next beach vacation, cybercriminals are preparing for their opportunity to strike. Check Point Research warns about this and common phishing ...

Why Companies Have Great Success Training Employees With Simulated Phishing Tests

Jun 8, 2023 1:25:15 PM By Stu Sjouwerman

We occasionally learn of articles and papers that claim that security awareness training and/or simulated phishing campaigns are not effective. We don’t want to disparage what these ...

Verizon: Pretexting Now Tops Phishing in Social Engineering Attacks

Jun 8, 2023 7:10:48 AM By Stu Sjouwerman

The New Verizon DBIR is a treasure trove of data. As we covered here, and here, people are one of the most common factors contributing to successful data breaches. Let’s drill down a bit ...

Verizon: 74% of Data Breaches Involve the “Human Element”

Jun 8, 2023 6:29:24 AM By Stu Sjouwerman

People are one of the most common factors contributing to successful data breaches. Let’s dive in deeper into the latest Verizon Data-Breach Investigations Report (DBIR) to find out how ...

Smishing Campaign Expands to the Middle East

Jun 7, 2023 1:27:54 PM By Stu Sjouwerman

A Chinese-speaking phishing gang has expanded its targeting from the Asia-Pacific region to the Middle East, researchers at Group-IB have found. The gang, which the researchers call ...

Verizon: Email Reigns Supreme as Initial Attack Vector for Ransomware Attacks

Jun 7, 2023 1:27:13 PM By Stu Sjouwerman

My analysis of this year’s newly-released Verizon Data Breach Investigations Report begins with ransomware findings that point back to users as a big problem.

Why Do You Still Need Security Awareness Training If You Use Phishing-Resistant MFA?

Jun 7, 2023 10:21:14 AM By Roger Grimes

For years, KnowBe4 has been a long-time proponent of everyone using PHISHING-RESISTANT multi-factor authentication (MFA) whenever possible.

North Korean Phishing Campaign Targeting Think Tanks, Academics and Media

Jun 6, 2023 6:28:01 PM By Stu Sjouwerman

The U.S. and South Korean governments have issued a joint advisory outlining a North Korean phishing campaign, The Register reports. The threat actor, known as “Kimsuky,” is targeting ...

CyberheistNews Vol 13 #23 [Wake-Up Call] It's Time to Focus More on Preventing Spear Phishing

Jun 6, 2023 9:00:00 AM By Stu Sjouwerman

CyberheistNews Vol 13 #23 | June 6th, 2023 [Wake-Up Call] It's Time to Focus More on Preventing Spear Phishing Fighting spear phishing attacks is the single best thing you can do to ...

[FBI ALERT] Skin Deep: The Scary Reality of New Deepfake-Enabled Sextortion

Jun 5, 2023 6:27:52 PM By Stu Sjouwerman

Today, the FBI alerted warned against a new even more disgusting type of sextortion. Previously, these schemes involved coerced or stolen digital material, but now some criminals are ...

Security Awareness Training Blog

View Topics