Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Multi-Million Dollar Scam Call Center Shut Down by Multinational Police Efforts

Last month, Latvian and Lithuanian police – in conjunction with Europol – coordinated a raid on 3 call centers responsible for an international effort to defraud victims worldwide.
Continue Reading

Mailchimp Phishing Attack Results in Potential Hit on 100K Trezor Crypto Wallets

Stolen client data from Mailchimp put customers of the cryptocurrency hardware wallets on notice of potential social engineering attacks claiming to be Trezor.
Continue Reading

“Europol Calling” (Not Necessarily)

Scammers are impersonating Europol with fraudulent phone calls in an attempt to steal personal and financial information, according to Kristina Ohr at Avast. The German Federal Criminal ...
Continue Reading

Microsoft Warns of Lapsus$ “Targeting Organizations for Data Exfiltration and Destruction”

The group behind the recent attacks on Okta, NVIDIA, and Microsoft may be moving on to less-prominent organizations, using their data destruction extortion model on new victims.
Continue Reading

Info Stealer Malware Vidar Uses Microsoft Help Files to Launch Attacks

It appears that the use of Microsoft CHM files is gaining popularity, and from the way this latest attack works, it’s a rather ingenious and flexible method that could become more ...
Continue Reading

Ransomware Victims See Ransom Demands and Payments Increase as The Number of Published Data Victims Spikes

Cybercriminals Groups and “as a Service” threat actor affiliates alike seem to be doing well, according to a new report on the state of ransomware from Palo Alto Networks’ Unit42.
Continue Reading

Social Engineering from Tehran

Social engineering continues to be a core component of the Iranian government’s hacking operations, according to researchers at Recorded Future.
Continue Reading

CyberheistNews Vol 12 #14 [EYE OPENER] A Lack of Employee Cyber Hygiene is the Next Big Threat

[EYE OPENER] A Lack of Employee Cyber Hygiene is the Next Big Threat Email not displaying? | View Knowbe4 Blog CyberheistNews Vol 12 #14 | Apr. 5th., 2022 [EYE OPENER] A Lack of Employee ...
Continue Reading

Social Engineering by "Emergency Data Request"

Bloomberg has reported that forged "Emergency Data Requests" last year induced Apple and Meta to surrender "basic subscriber details, such as a customer’s address, phone number and IP ...
Continue Reading

Your KnowBe4 Fresh Content Updates from March 2022

Check out the 74 new pieces of training content added in March, alongside the always fresh content update highlights and new features.
Continue Reading

Simple Facebook Phishing Scam Takes an Unexpected Turn to Throw Potential Victims Off the Scent

Rather than take the usual path of sending an email and linking to a spoofed logon page, this attack takes a different set of actions that at first make no sense but may actually be ...
Continue Reading

Cisco: Web 3.0 Will be the Next Frontier for Social Engineering and Phishing Attacks

A look at what makes up Web 3.0 and how it may be used includes insight into what kinds of cyberattacks may plague it, as cybercriminals look for new profitable opportunities.
Continue Reading

Cost of Internet Crimes in 2021 Increase 64% Exceeding $6.9 Billion

New data from the FBI’s Internet Crime Complaint Center (IC3) shows a massive increase in the cost of internet crimes, with phishing and BEC topping the list.
Continue Reading

Obvious Phishbait, But Someone Will Bite

A widespread phishing scam is circulating in Facebook Messenger, according to Jeff Parsons at Metro. The phishing messages simply contain the words, “Look what I found,” along with a ...
Continue Reading

FBI Warns of Phishing Attacks Targeting Election Officials

The FBI has issued a Private Industry Notification warning of phishing emails designed to steal login credentials from election officials. The Bureau believes these attacks will increase ...
Continue Reading

A Lack of Employee Cyber Hygiene is the Next Big Threat

A new report suggests that everything from endpoints, to passwords, to training, to security policies, to a lack of awareness is all contributing to much higher risk of cyberattack.
Continue Reading

Ransomware Attack Volume Increases by 18% As the Number of Variants Jumps to 34 in Only One Quarter

A new report reviewing ransomware activity in 2021 shows an impressive uptick in the number of targeted attacks in Q4 of 2021 to 772 as more players join (or rejoin) the game.
Continue Reading

Mobile Device Usage Have Led to Security Incidents in Nearly Half of Organizations

The shift in devices used by today’s workforce has resulted in increases in cybersecurity concerns and incidents, despite a majority of orgs with defined BYOD programs in place.
Continue Reading

CyberheistNews Vol 12 #13 [Heads Up] Published Zelenskyy Deepfake Video Demonstrates the Modern War is Online

[Heads Up] Published Zelenskyy Deepfake Video Demonstrates the Modern War is Online Email not displaying? | View Knowbe4 Blog CyberheistNews Vol 12 #13 | Mar. 29th., 2022 [Heads Up] ...
Continue Reading

Email Conversation Hacking to Distribute Malware

Researchers at Intezer warn that attackers are hijacking email conversations to distribute the IcedID banking Trojan. This technique makes the phishing emails appear more legitimate and ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews