Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Extortion Threatens Reputational Damage

Scammers are sending emails threatening to damage the reputation of websites unless the sites’ owners hand over 0.3 bitcoin, or around $2,400, according to BleepingComputer.
Continue Reading

The CIA will not Fix Your Online Rap Sheet

Scammers are still posing as CIA employees and telling victims that they’re about to be arrested for their involvement in an international pedophile ring, according to the Register. The ...
Continue Reading

Corporate Email Creates Unavoidable Phishing Risk

It’s impossible to avoid the risk of phishing attacks entirely, since employees still need to do their jobs, as Kelly Sheridan at Dark Reading puts it. Sheridan points to a recent report ...
Continue Reading

[Heads-Up] How Hackers Use Ransomware To Hide Data Breaches And Other Devastating Attacks

Different sources claim that ransomware attacks are either going up or going down. The very real threat remains though and it is clear that the bad guys are moving from consumers as their ...
Continue Reading

Why Polymorphic Phishing Attacks Are Skyrocketing And How They Make It In Your User's Inbox

IronScales just released data showing that 42% of phishing email attacks are polymorphic, enabling them to evade many security filters. The company has observed 11,733 polymorphic ...
Continue Reading

KnowBe4 Fresh Content and Feature Updates - May 2019

Check out the content and feature updates in the KnowBe4 platform for the month of May!
Continue Reading

'BlueKeep' Microsoft Windows Flaw Warning from NSA, Video for How To Patch

Microsoft recently released a fix for for a critical Remote Code Execution vulnerability, CVE-2019-0708, in Remote Desktop Services - that affects older versions of Microsoft ...
Continue Reading

[On-Demand Webinar] Open Source Intelligence (OSINT) Hacking Data Sources That Bad Guys Use

Ever wonder how hackers, spies, and con-artists gather such detailed and convincing intel on their targets?KevinMitnick, the world's most famous hacker and KnowBe4's Chief Hacking ...
Continue Reading

Ransomware in 2019 is Looking to be as Bad as 2018 for State and Local Governments… if not Worse

Governments have proven to be soft targets for cyberattacks leveraging ransomware in 2018. And, from the recent attacks in 2019, it looks like things are just getting started.
Continue Reading

Microsoft is Still the Most Impersonated Brand in Phishing Attacks

Cybercriminals are constantly looking for the easiest way to make a buck. And, in the case of phishing attacks, it appears that pretending to be Microsoft is the path of least resistance.
Continue Reading

Biometrics Can’t Replace Passwords: A Cybercriminal's Dream

In the quest to create a more secure environment, new ways to authenticate that replace the password are being sought. But it’s looking like passwords are here to stay.
Continue Reading

New articles and templates from the Tech Content Team

Hi all, Here are all of the major items and updates our Technical Content Engineers have added to our knowledge base and KMSAT product in the last month.
Continue Reading

It only takes three seconds...

“Statistics suggest the average human being falls for a social engineering attack about four times — with training — before they become ‘inoculated’ against that type of attack,” “Helpful ...
Continue Reading

[Policy Template] Should Failing Phishing Tests Be A Fireable Offense?

Firing employees for failing phishing tests can be extremely counterproductive and can damage an organization’s overall security posture. That, at any rate, is what two security experts ...
Continue Reading

"Delete" Notification as Office 365 Phishbait

Attackers are posing as Office 365 support in phishing emails that warn users about an “unusual volume of file deletion” on their accounts, BleepingComputer has found. The emails claim ...
Continue Reading

A Case of Password Spraying

Citrix last month confirmed the FBI’s suspicions that hackers had used a technique known as “password spraying” to compromise the company’s networks before stealing a massive amount of ...
Continue Reading

Impersonation Phishing Attacks Up 67% in Last 12 Months

Social engineering attacks using impersonation tactics increased by 67% over the past twelve months, according to Mimecast’s annual State of Email Security report. Mimecast surveyed more ...
Continue Reading

KnowBe4 Is UK's Security Training And Consultancy Provider Of The Year

We're extremely pleased to have won UK's prestigious Network Computing Security Training And Consultancy Provider Of The Year.
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews