Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Cyber Attacks Grow 125% as Ransomware Tops the List Plaguing Enterprise Organizations

With no slowdown of cyberattacks in sight, global incident volumes continue to trend upward, according to new data from Accenture’s Cyber Investigations, Forensics and Response team.
Continue Reading

The Average Ransom Demand of $5.3M in 2021 is Up 518% From Last Year

Cybercriminals appear to be more aggressive with their idealistic ransom demands as some gangs continue to evolve, using new “quadruple extortion” tactics to ensure payment.
Continue Reading

Copyright Scammers Now Making Phone Calls

Copyright infringement scammers have begun using phone calls to contact potential victims, according to Paul Ducklin at Naked Security.
Continue Reading

Attackers Use Morse Code to Encode Phishing Attachments

A phishing campaign is using morse code to encode malicious attachments in order to slip past security filters, according to researchers at Microsoft. The phishing emails contain HTML ...
Continue Reading

KnowBe4’s Automated Security Awareness Program Builder Now Available in Nine Languages

Now that the KnowBe4 Security Awareness Training and Simulated Phishing Platform is available in nine localized languages, starting your organization's security awareness training program ...
Continue Reading

The Anatomy of Smishing Attacks and How to Avoid Them

Cybercriminals and nation-state actors continue to launch smishing attacks to steal credentials and distribute malware, according to Michael Marriott, Senior Strategy and Research Analyst ...
Continue Reading

Military Personnel Vulnerable to Fraud

US military personnel and veterans have lost more than $822 million to scams since 2017, according to researchers at AtlasVPN. The researchers analyzed data from the US Federal Trade ...
Continue Reading

Words of Advice for Organizations on Cybersecurity Best Practices

We recently attended Black Hat USA 2021 this year and Erich Kron, Security Awareness Advocate for KnowBe4, sat down with Cybersecurity Ventures to give words of advice for all ...
Continue Reading

What’s in a (Ransomware Gang) Name? (A Gang by Any Other Name is Just as Dangerous)

The shutting down or even retirement of one ransomware gang seems to result in another popping up. Are these new gangs or just reincarnations of the old one with a new face?
Continue Reading

Is Being a Ransomware Affiliate Profitable? The Math Says it is!

While plenty of industry data and new stories confirm ransomware gangs are raking in tens-to-hundreds of thousands per successful attack, is the business of ransomware profitable?
Continue Reading

Android Trojan Goes After Facebook Accounts

A new Android Trojan has hijacked more than 10,000 Facebook accounts by stealing session cookies, according to researchers at Zimperium. The malware uses social engineering to trick users ...
Continue Reading

Spear Phishing Becomes a Bigger Problem as the Average Organization is Targeted 700 Times a Year

With threat actors honing their trickery skills to craft the perfect email used to fool a would-be victim recipient, new data shows cybercriminals are stepping up their game on a number ...
Continue Reading

DarkSide Ransomware Returns as BlackMatter After Sudden Shutdown of Operations

Probably the world’s most notorious ransomware gang disappears completely and subsequently reappears with new branding in an attempt to separate themselves from the types of attacks that ...
Continue Reading

Cyber Insurance Rates Climb 30% as Ransomware Attacks, Costs, and Payments are All on the Rise

In a case of “I told you so”, it seems that cyber insurance costs have risen this year as organizations fail to properly protect themselves from rampant ransomware attacks.
Continue Reading

Cyber Insurance Industry Wrongly Hedging Its Bets on MFA

Because of ransomware attacks, I have been covering the cybersecurity insurance industry for a few years, including here. I even have a whole chapter dedicated to cybersecurity insurance ...
Continue Reading

FTC Warns of Unemployment Insurance Phishing Scheme

The US Federal Trade Commission (FTC) has issued a warning about scams targeting unemployed people via text messages.
Continue Reading

Your KnowBe4 Fresh Content Updates from July

With 25 new pieces of training content added this month, check out the always fresh content update highlights and new features from the month of July.
Continue Reading

12 Steps to a Security Ignorance Program

Most people working for organisations have been exposed at some point in their careers to security awareness programs. Some of these programs are well-executed and delivered, while others ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews