This New Phishing Kit Flies Under the Radar of Antivirus Software

Nov 21, 2022 11:29:44 AM By Stu Sjouwerman

Akamai researchers have discovered a new phishing campaign that targets United States consumers with fake holiday offers, TechRadar reports. Fake landing pages created by threat actors ...

Phishing Attacks Misuse Microsoft Dynamics 365 Customer Voice Functionality to Hide Malicious Links

Nov 17, 2022 1:41:23 PM By Stu Sjouwerman

Leveraging a legitimate feature of Dynamics 365, threat actors are able to obfuscate the malicious nature of the email within content that naturally requires user interaction.

Valid Accounts Rank as the Top Initial Access Infection Vector, Putting a Spotlight on Credentials

Nov 17, 2022 1:41:19 PM By Stu Sjouwerman

As ransomware, business email compromise, and phishing attacks continue to escalate, new data sheds light on where organizations need to focus to help put a stop to attack success.

Ransomware Attacks on UK Organizations are Not Being Reported Enough, Clouding Impact

Nov 17, 2022 1:41:16 PM By Stu Sjouwerman

A new report from the UK’s National Cyber Security Center highlights the current state of threats in the UK, with particular focus on ransomware attacks and their impact.

Cyber Insurance Rates Begin to Stabilize as Insurers Gain Better Insight into Cyberattacks

Nov 17, 2022 1:41:12 PM By Stu Sjouwerman

The latest data shows that historically massive rate increases seen over the last few years are beginning to come down, primarily due to insurers having a solid understanding of the risk.

Holiday Package or Scam Message? Clickers Beware

Nov 17, 2022 9:02:23 AM By Javvad Malik

As we enter the holiday season, we start getting bombarded with amazing offers and often take advantage of not only grabbing ourselves a bargain, but also stockpiling gifts for friends ...

Watch Out For This Tricky New Tactic Called Clone Phishing

Nov 17, 2022 8:49:53 AM By Stu Sjouwerman

Researchers at Vade Secure describe a type of phishing attack dubbed “clone phishing,” in which attackers follow up a legitimate email from a trusted sender with a replica, claiming that ...

FBI director says he's 'extremely concerned' about China's ability to weaponize TikTok

Nov 16, 2022 3:29:36 PM By Stu Sjouwerman

Suzanne Smalley at Cyberscoop reported: "FBI Director Christopher Wray told Congress on Tuesday he is “extremely concerned” that Beijing could weaponize data collected through TikTok, the ...

[SCAM OF THE WEEK] Phishing Campaign Targets Crypto Users

Nov 16, 2022 2:46:22 PM By Stu Sjouwerman

Major cryptocurrency company FTX recently filed for bankruptcy, and there's a big phishing campaign on the loose targeting FTX users.

Fangxiao Domain-Spoofing for Revenue

Nov 16, 2022 9:07:56 AM By Stu Sjouwerman

Researchers at Cyjax describe a large phishing campaign being run by a China-based financially motivated threat actor called “Fangxiao.” The threat actor has been active since at least ...

[FREE Resource Kit] Stay Safe This Holiday Season with KnowBe4

Nov 15, 2022 12:32:09 PM By Stu Sjouwerman

It's the best time of the year! But also, it's the busiest time for cybercriminals. Since your users will be distracted with seasonal activities, cybercriminals will take advantage of the ...

CyberheistNews Vol 12 #46 [EYE OPENER] Here Is What You Can Do to Inspect SMS URL Links Before Clicking

Nov 15, 2022 9:30:00 AM By Stu Sjouwerman

“Hired Hand” in the Kingdom of Saudi Arabia Uses Domain Spoofing

Nov 15, 2022 8:59:27 AM By Stu Sjouwerman

Sometimes a social engineering campaign has a clear geographical focus, often shaped by language, holidays, or current events. In this case, the scammers are taking opportunistic ...

The Rise in Unwanted Emails, Now Found to be Nearly 41%

Nov 14, 2022 9:10:54 AM By Stu Sjouwerman

How many business emails do the recipients actually want? Or, conversely, how many of them are unwanted? A study by Hornetsecurity looked at this question (along with a number of other ...

[HEADS UP] FBI Warns of Tech Support Scams That Impersonate Payment Portals for Fake Refunds

Nov 10, 2022 3:59:40 PM By Stu Sjouwerman

In the latest FBI warning, cybercriminals are now impersonating financial institutions' refund payment portals. This effort is to contain victims' personal information with legitimacy.

Phishing Campaign Abuses Microsoft Customer Voice

Nov 10, 2022 11:28:15 AM By Stu Sjouwerman

Researchers at Avanan warn that a phishing campaign is using Microsoft’s Dynamic 365 Customer Voice feature to send malicious links. Customer Voice is designed to collect feedback from ...

Three-Quarters of Employees Feel It’s the Company’s Job to Ensure Security, Despite Three-Quarters Also Personally Experiencing a Cyberattack

Nov 10, 2022 9:49:14 AM By Stu Sjouwerman

Even with employees seeing cyberattacks first-hand and understanding the seriousness of such attacks, organizations have a culture problem where users just don’t care.

Ransomware Attacks Targeting Manufacturing are up 52% Over the Course of 12 Months

Nov 10, 2022 9:49:04 AM By Stu Sjouwerman

While every sector is taking strides to improve their security stances against ransomware and other cyberattacks, the latest data shows that for Manufacturing the impacts are huge and the ...

Cyberattacks Globally Increased by 28% in the Third Quarter of 2022 as the Average Org Experiences Over 1,100 Attacks Weekly

Nov 10, 2022 9:49:01 AM By Stu Sjouwerman

Check Point Research provides highlights that color the third quarter of 2022, painting a picture of increases in attack frequency and intensity in every single sector.

Here Is What You Can Do To Inspect SMS URL Links Before Clicking

Nov 9, 2022 4:39:12 PM By Roger Grimes

Phishing via Short Message Service (SMS) texts, what is known as smishing, is becoming increasingly common (some examples are shown below). There is probably not a person on Earth who ...

Security Awareness Training Blog

View Topics