Human Risk Management Blog

New “Early Warning” System in the U.K. Tips Off Ransomware Targets

British Intelligence has come up with a potentially very effective means to disrupt ransomware attacks, but there seems to still be a few kinks in the system.

CyberheistNews Vol 13 #35 New KnowBe4 Callback Phishing Feature Boosts Your Users' Security Awareness

CyberheistNews Vol 13 #34 [Must Know] Cybercriminals May Already Have Hacked Your LinkedIn Account. How to Secure.

[Must Know] Cybercriminals May Already Have Hacked Your LinkedIn Account. How To Secure.

New reports show many LinkedIn users have reported complaints about accounts being taken over by bad actors.

CyberheistNews Vol 13 #33 [INFOGRAPHIC] Uncovered: Top-Clicked Q2 Phishing Tests Are from Your HR

Record ¥3 bil stolen via phishing in Japan in 1st half of 2023

A record 2,322 scams in Japan to steal internet banking IDs and passwords have resulted in unauthorized money transfers totaling a record of around 3 billion yen ($21 million) in the ...

CyberheistNews Vol 13 #32 [HEADS UP] Google's Huge Inactive Account Deletion - What You Need to Know

Fraud Masquerades as Anti-Fraud

Many of us have received a phone call or other notification from a credit card company telling us that they’ve detected suspicious activity on our card. Was it us? Did we just spend $500 ...

Vendor Email Compromise Attacks Use the Same Playbook for Multiple Attacks

Seeking very large paydays, Vendor Email Compromise (VEC) threat actors are finding out what works and repurposing their content and processes to increase chances of seeing a massive ...

CyberheistNews Vol 13 #31 [Beware of the Barbie Scams] What You Need to Know After the Recent Movie Release

CyberheistNews Vol 13 #30 [IN MEMORIAM] Kevin David Mitnick (Aug 6, 1963 - July 16, 2023)

CyberheistNews Vol 13 #29 [Heads Up] Phishing Attacks Now Use QR Codes to Steal Your User Credentials

CyberheistNews Vol 13 #28 [Beware] Microsoft Teams Exploit Uses Social Engineering to Spread Malware

CyberheistNews Vol 13 #27 [Heads Up] Massive Impersonation Phishing Campaign Imitates Over 100 Brands and Thousands of Domains

CyberheistNews Vol 13 #27 | July 5th, 2023 [Heads Up] Massive Impersonation Phishing Campaign Imitates Over 100 Brands and Thousands of Domains A year-long phishing campaign has been ...

CyberheistNews Vol 13 #26 [Eyes Open] The FTC Reveals the Latest Top Five Text Message Scams

CyberheistNews Vol 13 #26 | June 27th, 2023 [Eyes Open] The FTC Reveals the Latest Top Five Text Message Scams The U.S. Federal Trade Commission (FTC) has published a data spotlight ...

Extremely Persistent Threat Group Demonstrates a Strong Understanding of the Modern Incident Response Frameworks

A threat actor tracked as “Muddled Libra” is using the 0ktapus phishing kit to gain initial access to organizations in the software automation, business process outsourcing, ...

CyberheistNews Vol 13 #25 [Fingerprints All Over] Stolen Credentials Are the No. 1 Root Cause of Data Breaches

CyberheistNews Vol 13 #25 | June 20th, 2023 [Fingerprints All Over] Stolen Credentials Are the No. 1 Root Cause of Data Breaches Verizon's DBIR always has a lot of information to unpack, ...

France Accuses Russia of Spoofing Foreign Ministry Website in ‘Typosquatting’ Campaign

The French government is taking a stand against the increasing threat of digital warfare. Publicly accusing Russia of conducting an extensive online manipulation campaign, France is ...

CyberheistNews Vol 13 #24 [The Mind's Bias] Pretexting Now Tops Phishing in Social Engineering Attacks

CyberheistNews Vol 13 #24 | June 13th, 2023 [The Mind's Bias] Pretexting Now Tops Phishing in Social Engineering Attacks The New Verizon DBIR is a treasure trove of data. As we will cover ...

CyberheistNews Vol 13 #23 [Wake-Up Call] It's Time to Focus More on Preventing Spear Phishing

CyberheistNews Vol 13 #23 | June 6th, 2023 [Wake-Up Call] It's Time to Focus More on Preventing Spear Phishing Fighting spear phishing attacks is the single best thing you can do to ...