Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Using Genuine Business Domains and Legitimate Services to Harvest Credentials

Jan 28, 2025 6:15:38 PM By Martin Kraemer
A KnowBe4 Threat Lab Publication Authors: Jeewan Singh Jalal, Anand Bodke, and Martin Kraemer
Continue Reading

Tips for Detecting Real-time Deepfakes: A Guide to Staying One Step Ahead

Jan 28, 2025 4:06:03 PM By Perry Carpenter
Deepfakes are no longer just the stuff of sci-fi thrillers—they’re here, and they’re deceptively good. From celebrity endorsements to real-time impersonations, deepfake technology has ...
Continue Reading

Microsoft is Still the Most Commonly Impersonated Brand in Phishing Attacks

Jan 28, 2025 4:05:32 PM By Stu Sjouwerman
Microsoft, Apple, and Google were the most commonly impersonated brands in phishing attacks last quarter, according to researchers at Check Point.
Continue Reading

CyberheistNews Vol 15 #04 [HEADS UP] Bad Actors Abuse Google Translate to Craft Phishing Attacks

Jan 28, 2025 9:31:13 AM By Stu Sjouwerman
Continue Reading

[Eye Opener] Is DeepSeek The Next Threat in Social Engineering?

Jan 28, 2025 7:00:04 AM By Stu Sjouwerman
AI is advancing at lightning speed, but it’s also raising some big questions, especially when it comes to security. The latest AI making headlines is DeepSeek, a Chinese startup that’s ...
Continue Reading

Beware of Toll Scam Texts: How Cybercriminals are Targeting U.S. Drivers

Jan 27, 2025 3:59:53 PM By Stu Sjouwerman
Drivers across the U.S. are being bombarded with fraudulent text messages claiming to come from toll operators like E-ZPass.
Continue Reading

Nearly Three-Quarters of UK Education Orgs Have Sustained Cyberattacks

Jan 27, 2025 3:58:39 PM By Stu Sjouwerman
73% of educational institutions in the UK have sustained at least one cyberattack or breach in the past five years, according to researchers at ESET.
Continue Reading

Phishing is the Top Security Threat For Smartphone Users

Jan 24, 2025 8:26:27 AM By Stu Sjouwerman
Phishing attacks are the most common security issue for smartphone users, according to a new study by Omdia.
Continue Reading

84% of Healthcare Organizations Sustained Cyberattacks Last Year

Jan 24, 2025 8:25:59 AM By Stu Sjouwerman
A new survey by cybersecurity vendor Netwrix found that 84% of healthcare organizations spotted a cyberattack in the past twelve months, with phishing attacks accounting for 63% of these ...
Continue Reading

4 Ways to Mature Your Human Risk Management Program

Jan 22, 2025 9:54:24 AM By Stu Sjouwerman
Human risk management (HRM) is now the primary approach to addressing the ongoing need for strong security cultures in organizations of all sizes. HRM focuses on more than just security ...
Continue Reading

Russian Spear-Phishing Campaign Targets WhatsApp Accounts

Jan 22, 2025 9:53:44 AM By Stu Sjouwerman
The Russian threat actor “Star Blizzard” has launched a spear-phishing campaign attempting to compromise WhatsApp accounts, according to researchers at Microsoft. The operation targets ...
Continue Reading

Malvertising Campaign Abuses Google Ads to Target Advertisers

Jan 22, 2025 9:53:14 AM By Stu Sjouwerman
Researchers at Malwarebytes are tracking a major malvertising campaign that’s abusing Google Ads to target individuals and businesses interested in advertising.
Continue Reading

CyberheistNews Vol 15 #03 Waging War on Explicit Deepfakes. The Real Problem Behind the UK Crackdown.

Jan 21, 2025 9:00:00 AM By Stu Sjouwerman
Continue Reading

Threat Actors Abuse Google Translate to Craft Phishing Links

Jan 20, 2025 8:03:56 AM By Stu Sjouwerman
Threat actors are abusing Google Translate’s redirect feature to craft phishing links that appear to belong to Google, according to researchers at Abnormal Security.
Continue Reading

Phishing Campaign Attempts to Bypass iOS Protections

Jan 20, 2025 8:03:20 AM By Stu Sjouwerman
An SMS phishing (smishing) campaign is attempting to trick Apple device users into disabling measures designed to protect them against malicious links, BleepingComputer reports.
Continue Reading

From Pig Butchering to People Talking

Jan 20, 2025 8:02:32 AM By Javvad Malik
Interpol has recently recommended discontinuing the use of the term "Pig Butchering" in cybercrime discussions, expressing concern that such terminology may discourage victims from ...
Continue Reading

Effective Security Awareness Training Really Does Reduce Data Breaches

Jan 17, 2025 4:53:23 PM By Roger Grimes
Social engineering and phishing are involved in 70% - 90% of data breaches. No other root cause of malicious hacking (e.g., unpatched software and firmware, eavesdropping, cryptography ...
Continue Reading

Your KnowBe4 Compliance Plus Fresh Content Updates from December 2024

Jan 17, 2025 9:00:00 AM By Stu Sjouwerman
Check out the December updates in Compliance Plus so you can stay on top of featured compliance training content.
Continue Reading

Ransomware Gangs Claimed More Than 5,000 Attacks in 2024

Jan 17, 2025 8:32:19 AM By Stu Sjouwerman
Ransomware groups claimed responsibility for 5,461 attacks in 2024, with 1,204 of these attacks being publicly confirmed by victim organizations, according to Comparitech’s latest ...
Continue Reading

Brad Pitt Romance Scams Pushed By AI-Enabled Deepfakes

Jan 17, 2025 8:31:27 AM By Roger Grimes
I have helped people detect romance scams for decades. It is still very common for romance scammers to leverage both pictures of celebrities and pictures of innocent, everyday people as ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews