Over 2000 Social Engineering Scammers Arrested in Multi-Country Crackdown on Fraud, BEC, and Money Laundering

Jun 20, 2022 10:12:04 AM By Stu Sjouwerman

Thousands of members of cybercriminal groups were arrested in a sting that lasted 2 months and involved coordinated efforts of the law enforcement departments of 76 countries.

Vishing Attacks Increase 550% Over Last Year as the Financial Sector Continues to be a Primary Target

Jun 20, 2022 10:11:58 AM By Stu Sjouwerman

Cybercriminals are continuing to bypass the use of malware in favor of response-based and credential-centric social engineering attacks, according to new data from Agari and PhishLabs.

142 Million Customer Records From MGM Resorts Leaked for Free Download

Jun 20, 2022 10:11:30 AM By Stu Sjouwerman

The availability of such a massive number of records at no cost to any cybercriminal interested is a recipe for countless phishing campaigns using the data itself as a means of ...

New Phishing Campaign Uses ChatBot Functionality to Build Trust and Steal Credit Card Details

Jun 20, 2022 10:11:18 AM By Stu Sjouwerman

Rather than go for the phishing jugular and point the victim immediately to a webpage to steal credentials or personal details, a new phishing campaign uses a chatbot to lower victim ...

The Next Evolution in Cyberattacks You Need to Worry About: AI

Jun 20, 2022 10:11:02 AM By Stu Sjouwerman

New testimony to U.S. Senate Armed Services Committee Subcommittee on Cybersecurity by Microsoft’s Chief Scientific Officer sheds light on AI-powered cyberattacks.

Less Than 40% of Asia-Pacific Organizations Are Confident to Stop Cyber Threats as 83% Experience At Least One Ransomware Attack a Year

Jun 20, 2022 10:10:51 AM By Stu Sjouwerman

With exactly half of cybersecurity incidents caused by organizations having an outdated security posture, the ability to stop breaches involves some re-investment in measures that really ...

Anna Collard, SVP Content Strategy & Evangelist, KnowBe4 Africa Has Been Acknowledged as a Global Influencer in Cyber

Jun 16, 2022 9:54:29 AM By Stu Sjouwerman

IFSEC Global recently acknowledged our very own Anna Collard as a IFSEC Global Influencer in Security for 2022! She was one of the few nominated by a panel of highly respected judges, and ...

A Closer Look at HR Scams: Does Niceness Have a Downside?

Jun 16, 2022 8:43:51 AM By Stu Sjouwerman

Threat actors are targeting HR employees who are looking to hire new people, according to Lisa Vaas at Contrast Security. As part of their job, HR employees frequently interact with ...

Spear Phishing Campaign Targets Former Israeli Officials

Jun 15, 2022 9:20:03 AM By Stu Sjouwerman

An Iranian threat actor is conducting a spear phishing operation against Israeli officials, according to researchers at Check Point. The targets have included the former Foreign Minister ...

CyberheistNews Vol 12 #24 [Heads Up] What About the Risks of Your Password Manager?

Jun 14, 2022 9:52:59 AM By Stu Sjouwerman

Monkeypox Scams Continue to Increase

Jun 14, 2022 9:19:28 AM By Stu Sjouwerman

Attackers are taking advantage of the current news about monkeypox to trick people into clicking on malicious links, Pickr reports. Researchers at Mimecast have spotted a phishing ...

Facebook Phishing Scam Steals Millions of Credentials

Jun 13, 2022 8:32:18 AM By Stu Sjouwerman

Researchers at PIXM have uncovered a major Facebook Messenger phishing scam that’s “potentially impacted hundreds of millions of Facebook users.” More than eight million people have ...

Approaching Ransomware Victims Privately

Jun 9, 2022 12:02:12 PM By Stu Sjouwerman

Researchers at KELA warn that ransomware gangs are increasingly refraining from mentioning their victims’ names after the initial attack, giving the victims a chance to pay up before the ...

What About Password Manager Risks?

Jun 9, 2022 10:13:18 AM By Roger Grimes

In KnowBe4’s new Password Policy ebook, What Your Password Policy Should Be, we recommend that all users use a password manager to create and use perfectly random passwords. A perfectly ...

Karakurt Adds Irritating Phone Calls to its Crimes

Jun 8, 2022 9:23:51 AM By Stu Sjouwerman

The US Cybersecurity and Infrastructure Security Agency (CISA) and its partners have issued a joint alert on Karakurt, a data theft extortion group that harasses victims’ employees, ...

40% of CSOs say Their Organization is Not Prepared for Cyberattacks as Phishing is the Top Likely Cause of Breaches

Jun 7, 2022 7:17:38 PM By Stu Sjouwerman

A new survey of executives sheds light on how well organizations fared with cyberattacks in the last 12 month as well as what attack vectors are going to increase future breaches.

Old Dog, New Trick: Hackers Use Logons in URLs to Bypass Email Scanners

Jun 7, 2022 7:17:26 PM By Stu Sjouwerman

A new phishing method uses a decades-old special URL format to take advantage of how security solutions and email clients interpret URLs, tricking victims into clicking.

“Five Eyes” Nations Cybersecurity Authorities Issue Warning to MSPs of Stepped-Up Cyberattacks

Jun 7, 2022 7:17:12 PM By Stu Sjouwerman

The world’s five leading cybersecurity authorities have again issued a joint report about an increase in malicious cyber activity targeting managed service providers they expect to ...

The Good, the Bad, and the Necessary State of Cyber Insurance

Jun 7, 2022 7:16:59 PM By Stu Sjouwerman

New data from security vendor Sophos shows that while the presence of cyber insurance coverage has increased, it’s the experiencing of attacks that’s driving the need.

Phishing Attacks Reach an All-Time High, More Than Tripling Attacks in Early 2022

Jun 7, 2022 7:16:28 PM By Stu Sjouwerman

Reaching more than 1 million attacks in a single quarter for the first time, new data on phishing attacks in Q1 of 2022 show an emphasis on impersonation and credential theft.

Security Awareness Training Blog

View Topics