Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

CyberheistNews Vol 14 #10 [SCARY] You Knew About OSINT, But Did You Know About ADINT?

Mar 5, 2024 9:00:00 AM By Stu Sjouwerman
Continue Reading

Phishers Abusing Legitimate but Neglected Domains To Pass DMARC Checks

Mar 5, 2024 6:45:26 AM By Roger Grimes
A recent great article by BleepingComputer about domain hijacking and DMARC abuse reminded me that many companies and people do not understand DMARC well enough to understand what it does ...
Continue Reading

Phishing Kit Targets the FCC and Crypto Exchanges

Mar 5, 2024 6:43:11 AM By Stu Sjouwerman
Researchers at Lookout have discovered a sophisticated phishing kit that’s targeting employees at the US Federal Communications Commission (FCC), as well as employees of cryptocurrency ...
Continue Reading

Planning with Purpose: 10 Tips to Develop Your Year-Long Security and Compliance Training Program

Mar 1, 2024 12:52:49 PM By John Just
Our team at KnowBe4 recently got together to talk about planning for annual security and compliance training.
Continue Reading

Cybercriminals Sent 1.76 Billion Social Media Phishing Emails in 2023

Mar 1, 2024 12:52:46 PM By Stu Sjouwerman
As social media phishing reaches new heights, new data reviewing 2023 shows a massive effort by cybercriminals to leverage impersonation of social media brands.
Continue Reading

Email-Based Cyber Attacks Increase 222% as Phishing Dominates as the Top Vector

Mar 1, 2024 12:52:43 PM By Stu Sjouwerman
Analysis of the second half of 2023 shows attackers are getting more aggressive with email-based phishing attacks in both frequency and execution.
Continue Reading

New Research: Ransomware Incidents Spike 84% in 2023

Feb 28, 2024 2:26:02 PM By Stu Sjouwerman
Newly-released data covering cyberthreats experienced in 2023 sheds some light on how very different last year was and paints a picture of what to expect of cyber attacks in 2024.
Continue Reading

Phishing Campaign Targets Mexican Taxpayers With Tax-Themed Lures

Feb 28, 2024 2:25:59 PM By Stu Sjouwerman
A phishing campaign is targeting users in Mexico with tax-themed lures, according to researchers at Cisco Talos. The phishing emails direct users to a website that attempts to trick them ...
Continue Reading

Game-Changer: Biometric-Stealing Malware

Feb 28, 2024 2:25:55 PM By Roger Grimes
I have been working in cybersecurity for a long time, since 1987, over 35 years. And, surprisingly to many readers/observers, I often say I have not seen anything new in the ...
Continue Reading

When Threat Actors Don’t Have a Viable Email Platform to Phish From, They Just Steal Yours

Feb 28, 2024 12:21:15 PM By Stu Sjouwerman
New analysis of a phishing campaign shows how cybercriminals use brand impersonation of the platforms they need to compromise accounts and takeover legitimate services.
Continue Reading

Credential Theft Is Mostly Due To Phishing

Feb 28, 2024 12:21:10 PM By Roger Grimes
According to IBM X-Force’s latest Threat Intelligence Index, 30% of all cyber incidents in 2023 involved abuse of valid credentials. X-Force’s report stated that abuse of valid ...
Continue Reading

[SCARY] You knew about OSINT, but did you know about ADINT?

Feb 27, 2024 10:27:09 AM By Stu Sjouwerman
WIRED just published a scary (long) article. I am summarizing it here and highly recommend you read the whole thing.
Continue Reading

Emails Are Responsible for 88% of Malicious File Deliveries

Feb 27, 2024 9:50:59 AM By Stu Sjouwerman
Emails are still the most common delivery method for malicious files, according to Check Point’s Cyber Security Report for 2024.
Continue Reading

Annual Ransomware Payments Surpass $1 Billion

Feb 27, 2024 9:50:53 AM By Stu Sjouwerman
For the first time, analysis of ransomware payments made in a single year tops $1,000,000,000. This signals a massive return to more frequent, sophisticated, and successful attacks.
Continue Reading

CyberheistNews Vol 14 #09 Exposed: Global Espionage Unleashed by China's Police in Groundbreaking Leak

Feb 27, 2024 9:00:00 AM By Stu Sjouwerman
Continue Reading

Swiss Government Identified 10,000 Phishing Websites Impersonating 260 Brands

Feb 26, 2024 8:00:00 AM By Stu Sjouwerman
Attacks targeting Swiss residents increased 10% last year, according to newly-released data that shows a growth in not just phishing attacks, but brand impersonation at purely a national ...
Continue Reading

Your KnowBe4 Compliance Plus Fresh Content Updates from February 2024

Feb 26, 2024 8:00:00 AM By Stu Sjouwerman
Check out the February updates in Compliance Plus so you can stay on top of featured compliance training content.
Continue Reading

Face off: New Banking Trojan steals biometrics to access victims’ bank accounts

Feb 23, 2024 10:11:50 AM By Stu Sjouwerman
Venturebeat had the scoop on a fresh Group-IB report. They discovered the first banking trojan that steals people’s faces. Unsuspecting users are tricked into giving up personal IDs and ...
Continue Reading

Nearly One in Three Cyber Attacks In 2023 Involved The Abuse of Valid Accounts

Feb 23, 2024 9:02:47 AM By Stu Sjouwerman
Thirty percent of all cyber incidents in 2023 involved abuse of valid credentials, according to IBM X-Force’s latest Threat Intelligence Index. This represents a seventy-one percent ...
Continue Reading

Data Breach at French Healthcare Payment Processor Puts 20 Million Policyholders at Risk

Feb 23, 2024 9:02:40 AM By Stu Sjouwerman
A single account being phished caused millions of French healthcare policyholder records to be breached.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews