Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Phishing Nightmare? New "Deadline" Email From Equifax Settlement Administrator Notifies of Changes in Filing.

You’d better check your email queue for a new email from The Equifax Breach Settlement Administrator that was sent out several days ago to those who previously filed a claim. It will ...
Continue Reading

[Brand New Webinar] Crafty Ways the Bad Guys Use Pretexting to Own Your Network

Today’s phishing attacks have evolved way beyond spray-and-pray emails that mass target victims. Instead, the bad guys have carefully researched your organization in order to set the ...
Continue Reading

Ethical Hackers as Educators

Ethical hackers are especially well-positioned to use their knowledge of attack techniques to educate people, according to Zoë Rose, a white-hat hacker based in the UK. On the CyberWire’s ...
Continue Reading

FBI Cyber Warning: Attacks On Key Employees Up 100%, As 281 Are Arrested

Zak Doffman, contributor at Forbes reported: "There is a cyberattack epidemic hitting businesses around the world, targeting individuals responsible for requesting fund transfers or ...
Continue Reading

The Legal Profession's Catfishing Problem

Scammers frequently impersonate lawyers in fraudulent emails in order to get recipients to take those emails seriously, according to Victoria Hudgins at Legaltech News. Legal threats or ...
Continue Reading

The FBI Updates Their Numbers And BEC Is Now A 26 Billion Dollar Scam

FBI's Internet Crime Complaint Center (IC3) says that Business Email Compromise (BEC) scams —aka CEO Fraud—are continuing to grow every year, with a 100% increase in the identified global ...
Continue Reading

Cybersecurity: 99% of email attacks rely on victims clicking links

Danny Palmer at ZDNet had the scoop: "Social engineering is by far the biggest factor in malicious hacking campaigns, warn researchers – so how can it be stopped?"
Continue Reading

Nemty Ransomware Infests Bogus PayPal Site

BleepingComputer describes a PayPal phishing site that’s delivering a new strain of Nemty ransomware. The attackers used Unicode characters from different alphabets to make their URL look ...
Continue Reading

Visa Scam in the UK Targets Chinese Students

Scammers are using bogus threats of deportation to coerce Chinese students studying in the UK into handing over tens of thousands of dollars, the Guardian reports. The scammers are posing ...
Continue Reading

Cybercriminals Unleash Ransomware Attack Designed to Compromise the Security of 120 French Hospitals

A ransomware infection has left one hospital in a group of 120 resorting to pen and paper as they work to remediate an attack custom-designed to attempt to take down all 120.
Continue Reading

Targeted Business Email Compromise Now Includes Validating Your Email

A new scammer group out of Nigeria is taking additional steps to verify email addresses are valid before launching BEC campaigns designed to commit fraud.
Continue Reading

Two-Thirds of Security Budgets Expected to Increase as Risk of Cyberattack Shifts to the Cloud

Organizations are feeling the impact of attacks and are taking tangible steps to lock in budget specifically to address security concerns with Cloud Security seeing the largest increase.
Continue Reading

Social Media and Their Exploitation in Social Engineering

Phishing is most commonly associated with email, but social media are quickly becoming a major hunting grounds for scammers, according to Elliot Volkman from PhishLabs. Social media ...
Continue Reading

U.K. Charity Workers Most At Risk From Phishing

Tessian report finds a large amount of U.K. charity workers aren't getting proper security awareness training. Michael Moore at ITProPortal wrote: "UK charities are leaving themselves ...
Continue Reading

KnowBe4 Fresh Content and Feature Update - August 2019

Check out the content and feature updates in the KnowBe4 platform for the month of August!
Continue Reading

Thousands Of Servers Infected With New Lilocked (Lilu) Ransomware

Thousands of web servers have been infected and had their files encrypted by a new strain of ransomware named Lilocked (or Lilu).
Continue Reading

Advanced Android SMS Phishing

Attackers can launch SMS phishing attacks to remotely change settings on a victim’s Android device, researchers at Check Point have found. These attacks take advantage of weak ...
Continue Reading

Why Do People Keep Falling For Facebook Hoaxes?

Falling for social media hoaxes indicates a deeper underlying need for online awareness, according to Ben Yelin from the University of Maryland Center for Health and Homeland Security.
Continue Reading

Connecting Security Awareness Training Data to your Security Operations

Highlighting the value of connecting user security awareness trainings to the critical resources those users can access
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews