Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Phishing Attacks Top List of Initial Access Vectors with Backdoor Deployment as Top Objective

New data looking back at the cyber attacks observed in 2022 shows that phishing continues to dominate as initial access brokers seem to be growing their business using backdoors.
Continue Reading

92% of Organizations Have Fallen Victim to Phishing as Nearly Every Org is Concerned with Email Security

New data shows that not only has just about every organization experienced a successful phishing attack, but that they are also paying the price in a number of impactful ways.
Continue Reading

Understanding DMARC Better

I talk and present often about DMARC (and SPF and DKIM), including here. A lot of people who think they understand how DMARC works, do not really understand it as well as they think they ...
Continue Reading

[FREE RESOURCE KIT] New Phishing Security Resource Kit Now Available!

Phishing emails increase in volume every month and every year, so we created this free resource kit to help you defend against attacks. Request your kit now to learn phishing mitigation ...
Continue Reading

A 240% Rise in Dynamic Phishing

Attackers are increasingly using techniques to prevent their phishing pages from being detected by security firms, a new report from BlueVoyant has found. The report found that in 2022 ...
Continue Reading

Three-Quarters of Organizations Have Experienced an Increase in Email-Based Threats

New data on the state of email security shows that nearly every organization has been the target of a phishing attack as attacks increase in sophistication.
Continue Reading

79% of Employee-Reported Phishing Emails Go Completely Undetected by Cybersecurity Solutions

As cybercriminals increasingly turn to malwareless phishing attacks, the ability for security solutions to correctly identify a malicious email is becoming more and more difficult.
Continue Reading

University of Sydney Gives Students and Staff Advice on Avoiding Social Engineering Scams

The University of Sydney has issued advice to help students and staff avoid falling for social engineering attacks.
Continue Reading

Season 5 of ‘The Inside Man’ From KnowBe4 Is Less Than a Month Away!

We’re thrilled to announce that Season 5 of the award-winning Knowbe4 Original Series - “The Inside Man” is less than a month away!
Continue Reading

Newest FBI Report Shows $10B in Losses Last Year Due to Internet Scams

The 2022 Internet Crime Report by the FBI reported at least $10.3 billion in losses due to internet scams last year.
Continue Reading

5 Reasons Why SecurityCoach Is Awesome

I’ve been doing computer security for over 34 years and in that time, I haven’t seen a lot of game-changing products. What I have seen is a lot of new products that claimed to be ...
Continue Reading

CyberheistNews Vol 13 #11 [Heads Up] Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears

CyberheistNews Vol 13 #11 | March 14th, 2023 [Heads Up] Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears Robert Lemos at DARKReading just reported on a worrying ...
Continue Reading

Threat Actors are Using FINRA Impersonation For Their Attacks

DomainTools warns that a sophisticated West Africa-based fraud group is impersonating the Financial Industry Regulatory Authority (FINRA) to target users in the United States, according ...
Continue Reading

Microsoft Warns of Business Email Compromise Attacks Taking Hours

According to Microsoft's Security Intelligence team, a recent business email compromise attack (BEC) has shown that threat actors are quickening the pace of these attacks, with certain ...
Continue Reading

[Heads Up] The SVB Bankruptcy Is A Social Engineering Bonanza

Saturday March 11, 2023 -- Over the last 24 hours, the Federal Deposit Insurance Corporation has established the FDIC Bank of Santa Clara and insured depositors will have access to funds ...
Continue Reading

The interesting history and origin of the word "Bankruptcy"

Regarding the current SVB meltdown, the English word "bankruptcy" has its roots in medieval Italy. It comes from the word "banca rotta," which means "broken bench." This term was used ...
Continue Reading

One-Quarter of Users Fall for Online Scams Despite an Overconfidence in an Ability to Spot Them

A new survey of individuals across seven countries shows that users may have had luck on their side, as a majority aren’t sure about their device security or how to spot malicious sites ...
Continue Reading

Google: Analysis of Cyberattacks Targeting Ukraine Shed Light on What a Cyberwar Strategy Looks Like

A look back at the last year of attacks on Ukraine by Google’s Threat Analysis Group (TAG) provides insight into attacks on NATO countries to gain a cyberspace advantage.
Continue Reading

Use of Malware Decreases in Cyber Attacks as Exploit Usage Skyrockets

New data on cyberattacks from last quarter provides a lens of what kinds of attack techniques to expect to see from cyber attackers this year.
Continue Reading

The Education Sector Must Act Now

The education sector remains vulnerable as ransomware shame sites continue to feature teaching institutions from around the world. Some of the latest victims were universities from ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews