Threat Actors are Using FINRA Impersonation For Their Attacks

Mar 13, 2023 1:13:47 PM By Stu Sjouwerman

DomainTools warns that a sophisticated West Africa-based fraud group is impersonating the Financial Industry Regulatory Authority (FINRA) to target users in the United States, according ...

Microsoft Warns of Business Email Compromise Attacks Taking Hours

Mar 13, 2023 1:13:45 PM By Stu Sjouwerman

According to Microsoft's Security Intelligence team, a recent business email compromise attack (BEC) has shown that threat actors are quickening the pace of these attacks, with certain ...

[Heads Up] The SVB Bankruptcy Is A Social Engineering Bonanza

Mar 12, 2023 7:53:43 AM By Stu Sjouwerman

Saturday March 11, 2023 -- Over the last 24 hours, the Federal Deposit Insurance Corporation has established the FDIC Bank of Santa Clara and insured depositors will have access to funds ...

The interesting history and origin of the word "Bankruptcy"

Mar 11, 2023 10:18:05 AM By Stu Sjouwerman

Regarding the current SVB meltdown, the English word "bankruptcy" has its roots in medieval Italy. It comes from the word "banca rotta," which means "broken bench." This term was used ...

One-Quarter of Users Fall for Online Scams Despite an Overconfidence in an Ability to Spot Them

Mar 10, 2023 9:46:46 AM By Stu Sjouwerman

A new survey of individuals across seven countries shows that users may have had luck on their side, as a majority aren’t sure about their device security or how to spot malicious sites ...

Google: Analysis of Cyberattacks Targeting Ukraine Shed Light on What a Cyberwar Strategy Looks Like

Mar 10, 2023 9:46:29 AM By Stu Sjouwerman

A look back at the last year of attacks on Ukraine by Google’s Threat Analysis Group (TAG) provides insight into attacks on NATO countries to gain a cyberspace advantage.

Use of Malware Decreases in Cyber Attacks as Exploit Usage Skyrockets

Mar 10, 2023 9:46:12 AM By Stu Sjouwerman

New data on cyberattacks from last quarter provides a lens of what kinds of attack techniques to expect to see from cyber attackers this year.

The Education Sector Must Act Now

Mar 9, 2023 9:17:18 AM By Martin Kraemer

The education sector remains vulnerable as ransomware shame sites continue to feature teaching institutions from around the world. Some of the latest victims were universities from ...

Phishing for Ring Customers

Mar 9, 2023 9:17:15 AM By Stu Sjouwerman

INKY warns that a phishing campaign is targeting users of the Ring video security system. The scammers are sending brief phishing emails instructing recipients to click on the attached ...

Three-Quarters of Vulnerabilities Used in Ransomware Attacks Were Discovered Before 2020

Mar 8, 2023 9:24:07 AM By Stu Sjouwerman

Despite a lot of focus on phishing and remote access as initial access vectors, new data shows the use of vulnerabilities is not only on the rise, but simply isn’t being properly ...

Half of all Sites Used in Phishing Attacks Impersonate Financial Institutions

Mar 8, 2023 9:24:04 AM By Stu Sjouwerman

As credential theft-focused phishing attacks continue to assist initial access brokers, new data shows banking fraud continues to be a material threat to individuals and businesses alike.

Google Phishing Pages Jump 1,560% YoY

Mar 8, 2023 9:23:56 AM By Stu Sjouwerman

Vade has released a report looking at phishing trends in 2022. The researchers say the top three most-impersonated brands last year were Facebook, Microsoft, and Google.

Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears

Mar 8, 2023 6:12:43 AM By Stu Sjouwerman

Robert Lemos at DARKReading just reported on a worrying trend. The title said it all, and the news is that more than 4% of employees have put sensitive corporate data into the large ...

[SCAM OF THE WEEK] Is ChatGPT Your Next Financial Advisor?

Mar 7, 2023 9:07:00 AM By Stu Sjouwerman

ChatGPT, an artificial intelligence (AI) chatbot created by OpenAI, has risen in popularity since its release last year. Now, cybercriminals are using ChatGPT’s popularity to lure you ...

CyberheistNews Vol 13 #10 [Eye Opener] BusinessWeek: The Satellite Hack Everyone Is Finally Talking About

Mar 7, 2023 9:00:00 AM By Stu Sjouwerman

CyberheistNews Vol 13 #10 | March 7th, 2023 [Eye Opener] BusinessWeek: The Satellite Hack Everyone Is Finally Talking About This week, Bloomberg News pointed at a brand-new article at ...

Three out of Four Organizations Have Experienced a Successful Email-Based Attack as Impacts Increase

Mar 7, 2023 8:00:00 AM By Stu Sjouwerman

New data shows just how impactful these attacks are, with 98% of victim organizations reporting some form of impact from email-based cyber attacks.

Coping With “Double-Extortion” Royal Ransomware

Mar 6, 2023 9:10:12 AM By Stu Sjouwerman

The US Cybersecurity and Infrastructure Security Agency (CISA) and the FBI last week issued a joint advisory on Royal ransomware. Royal is noteworthy for its ability to disable various ...

Ransomware Attacks on Industrial Infrastructure Climb 87% Despite Security Improvements to ICS Environments

Mar 6, 2023 9:09:51 AM By Stu Sjouwerman

Since the goal of ransomware is to initially disrupt operations, the targeting of industrial control systems has been an increasing focus for specific ransomware groups.

Executive Impersonation Business Email Compromise Attacks Go Beyond English Worldwide

Mar 6, 2023 9:09:47 AM By Stu Sjouwerman

Despite hearing mostly about BEC attacks in English-speaking countries, analysis of new attack groups highlight the threat of these kinds of attacks in other languages.

[On-Demand] A Master Class on Cybersecurity: Roger Grimes Teaches Data-Driven Defense

Mar 6, 2023 8:00:00 AM By Stu Sjouwerman

Even the world’s most successful organizations have significant weaknesses in their cybersecurity defenses, which determined hackers can exploit at will. There’s even a term for it: ...

Security Awareness Training Blog

View Topics