FBI: Beware of a New Google Voice Authentication Scam – Even if You Don’t Use Google Voice!

Jan 12, 2022 12:11:13 PM By Stu Sjouwerman

A new advisory warns of a scam that can affect literally anyone designed as a precursor to additional vishing scams and/or to perform Gmail account takeovers.

Payment Fraud Moves to the Real World with Fake QR Codes on Parking Meters

Jan 12, 2022 12:11:06 PM By Stu Sjouwerman

Scammers are using the professional-looking stickers to point those parking to an alternate pay site to collect credit card details in the perfect situation where victims would be none ...

U.S. Government Warns of More Cyberattacks Targeting Critical Infrastructure

Jan 12, 2022 10:31:17 AM By Stu Sjouwerman

A new joint cybersecurity advisory from CISA, the FBI, and the NSA cautions organizations against Russian-based attacks and provides mitigations to be implemented.

It’s a Fact: Cyberattacks Continue Because Your Users Forget

Jan 12, 2022 9:37:22 AM By Stu Sjouwerman

The weakest part of your cybersecurity can be identified by looking at how cyberattacks take place, and how well your defenses stand up. But did you know the answer comes from the year ...

“Information Disorder”: Giving a Name to One of the Most Impactful Parts of Phishing Scams

Jan 12, 2022 9:37:18 AM By Stu Sjouwerman

At the core of every phishing scam is a combination of a bunch of lies and (sometimes) a few truths. A new focus on better defining the misuse of information provides insight into why ...

Over 200 Ransomware Strains Detected in Last Part of 2021

Jan 12, 2022 9:37:15 AM By Stu Sjouwerman

With the news focused on just a few key ransomware strains, it’s understandable to think you’ll never be a target. But newly-released data shows who’s doing the attacking and who’s being ...

KnowBe4 Named a Leader in the Winter 2022 G2 Grid Report for Security Awareness Training

Jan 12, 2022 8:00:00 AM By Stu Sjouwerman

The latest G2 Grid Report compares Security Awareness Training (SAT) vendors based on user reviews, customer satisfaction, popularity and market presence.

Business Email Compromise Attack Leads to Millions in Non-Profit Loss

Jan 11, 2022 9:52:45 AM By Stu Sjouwerman

A business email compromise attack at Illinois’s Office of the Special Deputy Receiver led to a loss of $6.85 million, Ray Long at the Chicago Tribune reports. Long describes the Office ...

CyberheistNews Vol 12 #02 [Eye Opener] 3 Tips To Pass Your Certified Security Awareness and Culture Professional (SACP) Exam

Jan 11, 2022 9:31:56 AM By Stu Sjouwerman

Ransomware Attacks Could Result in Higher Cybersecurity Stocks

Jan 7, 2022 8:23:08 AM By Stu Sjouwerman

Ransomware attacks have been dominant for hackers. And according to Investor's recent article, this means good news for cybersecurity stocks.

Your KnowBe4 Fresh Content Updates from December 2021

Jan 7, 2022 8:00:00 AM By Stu Sjouwerman

Check out the 38 new pieces of training content added in December, alongside the always fresh content update highlights and new features.

Hive Ransomware-as-a-Service Races to the Top as Affiliates Breach 350 Organizations in Just 4 Months

Jan 6, 2022 2:20:00 PM By Stu Sjouwerman

A mere blip on the ransomware radar a quarter ago, the massive onslaught of attacks using Hive Ransomware demonstrates how dangerous the “as-a-Service” model really is.

Over 1200 Man-in-the-Middle Phishing Toolkits Designed to Intercept 2FA Found in the Wild

Jan 6, 2022 2:19:54 PM By Stu Sjouwerman

An academic partnership between Stony Brook University and Palo Alto Networks uncovered a massive use of tools that will steal authentication cookies mid-stream instead of credentials.

121 Brands Impersonated in Massive 91-Country Survey-Turned-Fraud Scam

Jan 6, 2022 2:19:37 PM By Stu Sjouwerman

With an estimated take of over $80 million a month, this scam uses new evasive tactics designed to make detection and investigation of these attacks difficult at best.

Obvious, but Probably Effective: Konni RAT Screensaver

Jan 6, 2022 1:20:04 PM By Stu Sjouwerman

A North Korean threat actor is targeting users in Russia with a New Year’s Eve-themed phony screensaver file, the Record reports. Researchers at Cluster25 spotted the activity, and say ...

New York State Warns of Credential Stuffing

Jan 6, 2022 1:17:59 PM By Stu Sjouwerman

New York Attorney General Letitia James has released a guide to help businesses defend themselves against credential stuffing attacks. Credential stuffing is a type of brute-force attack ...

CyberheistNews Vol 12 #01 [Heads Up] New Omicron-Themed Phishing Attack is Now Running Rampant

Jan 5, 2022 9:17:59 AM By Stu Sjouwerman

Cryptocurrency Scam Profits Jump 81% in 2021 to $7.7 Billion

Jan 4, 2022 10:04:02 AM By Stu Sjouwerman

Despite a drop in crypto scams in 2020 due to the pandemic, a new report highlights the massive growth in crypto scams… and the profitable results they’re yielding.

Reducing Stress with CBD Is the Latest Theming for Phishing Attacks

Jan 4, 2022 10:03:58 AM By Stu Sjouwerman

Spanning three languages and at least 15,000 unique phishing emails, this latest phishing campaign targets stressed out workers in the U.S. and France, avoiding detection and promising to ...

Copyright Infringement Notice to Instagram Users Serves as Newest Phishbait

Jan 4, 2022 10:03:54 AM By Stu Sjouwerman

Scammers are sending phony accusations of copyright infringement to Instagram users in a new phishing attack, Paul Ducklin writes at Naked Security. The scammers are taking advantage of ...

Security Awareness Training Blog

View Topics