[CASE STUDY] Healthcare Organization Hardens Employee Defenses Against Insidious Callback Phishing Attacks

May 1, 2024 1:57:28 PM By Stu Sjouwerman

A major U.S. healthcare provider significantly reduced their employees' susceptibility to callback phishing attacks after using KnowBe4's callback phishing simulation and training ...

Phishing Failures: How Not to Phish Your Users

Apr 30, 2024 1:42:21 PM By Javvad Malik

This blog was co-written by Javvad Malik and Erich Kron. Let’s dive into the cautionary world of phishing simulations gone wrong. You know, those attempts to train users not to fall for ...

How New College Graduates Can Avoid Increasingly Personalized Job Scams

Apr 30, 2024 1:42:05 PM By Stu Sjouwerman

For many fresh out of college, the drive to land that first professional role is a top priority. Yet, new graduates can be exposed to sophisticated scams that can jeopardize not just ...

Targeted Smishing Attacks by Threat Group “The Com” On The Rise

Apr 29, 2024 2:03:09 PM By Stu Sjouwerman

Cyber activity by the group "The Com," which leverages (SIM) swapping, cryptocurrency theft, swatting, and corporate intrusions, is increasing.

The Art of Huh?

Apr 29, 2024 2:03:05 PM By Roger Grimes

One of the best things you can teach yourself, your family, and your organization is how to recognize the common signs of phishing and how to mitigate and appropriately report it.

Phishing Campaigns Spoof the U.S. Postal Service

Apr 29, 2024 2:03:02 PM By Stu Sjouwerman

Researchers at Akamai have found that phishing sites impersonating the U.S. Postal Service get as much traffic as the real USPS website.

Next Week is World Password Day!

Apr 26, 2024 8:20:19 AM By Roger Grimes

May 2nd is World Password Day. Despite the computer industry telling us for decades that our passwords will soon be gone, we now have more than ever!

AI-Assisted Phishing Attacks Are on the Rise

Apr 25, 2024 8:23:39 AM By Stu Sjouwerman

Threat actors are increasingly using generative AI tools to improve their phishing campaigns, according to a new report from Zscaler.

Phishing Campaign Exploits Nespresso Domain

Apr 23, 2024 11:37:04 AM By Stu Sjouwerman

Attackers are launching phishing campaigns using an open-redirect vulnerability affecting a website belonging to coffee machine company Nespresso, according to researchers at Perception ...

USPS Surges to Take Top Spot as Most Impersonated Brand in Phishing Attacks

Apr 23, 2024 10:00:21 AM By Stu Sjouwerman

New data shows phishing attacks are deviating from the traditional focus on technology and retail sectors and are opting for alternate brands with widespread appeal.

4 out of 5 of Physicians Were Impacted by February’s Cyber Attack on Change Healthcare

Apr 22, 2024 9:32:58 AM By Stu Sjouwerman

A new survey of physicians details the devastating impact of the Change Healthcare cyber attack on the healthcare sector.

Kudos! CEO Reveals He Got Phished

Apr 22, 2024 9:31:26 AM By Stu Sjouwerman

The other day I was participating in a company’s employee meeting when the CEO revealed he had been “caught” that morning by a real phishing attack email.

Half of U.K. Businesses Experienced a Security Breach or Cyber Attack in the Last 12 Months

Apr 19, 2024 9:04:17 AM By Stu Sjouwerman

Analysis of cyber attacks targeting U.K. organizations highlights the effectiveness of social engineering attacks and the fact that businesses are missing the mark on how to stop it.

Phishing Frenzy: Microsoft and Google Most Mimicked Brands in Cyber Scams

Apr 16, 2024 1:38:34 PM By Stu Sjouwerman

Microsoft and Google were the most frequently impersonated brands in phishing attacks during the first quarter of 2024, according to a report from Check Point.

[WARNING] FBI Issues Alert on Major Phishing Campaign That Impersonates US Toll Services

Apr 15, 2024 3:57:18 PM By Stu Sjouwerman

The FBI has issued an alert warning of a widespread SMS phishing (smishing) campaign targeting people in several US states with phony notices of unpaid tolls, BleepingComputer reports.

You Really Are Being Surveilled All the Time

Apr 15, 2024 3:56:30 PM By Roger Grimes

“If the product is free, you are the product!” No truer words have ever been spoken. But in today’s internet-connected, ad-everywhere world, even if you are paying for the product or ...

State-Sponsored Disinformation Campaigns Targeting Africa Driving Instability And Violence

Apr 12, 2024 1:46:34 PM By Stu Sjouwerman

A shocking report shows how email-based disinformation campaigns can have material real-world impacts to the citizens in the targeted countries.

U.S. Department of Health Alert: Hackers are Targeting IT Help Desks at Healthcare Organizations

Apr 12, 2024 1:46:29 PM By Stu Sjouwerman

A new sector alert published by the U.S. Department of Health and Human Services outlines new attacks in which social engineering is used to obtain credentials for online fraud.

UK Councils Under Cyber Attack: The Urgent Need for a Culture of Cybersecurity and Resilience

Apr 12, 2024 8:48:09 AM By Javvad Malik

The very fabric that stitches our society together — our councils and local governing bodies — is under a silent siege from cyber attacks. The recent ransomware assault on Leicester ...

Top Tax Scams of 2024 Your Organization Should Watch Out For

Apr 11, 2024 8:19:01 AM By Stu Sjouwerman

As the April 15, 2024 filing deadline approaches, tax scammers are working overtime to take advantage of rushed or stressed taxpayers.

Security Awareness Training Blog

Phishing Blog

View Topics