[NEW PhishER Feature] Remove, Inoculate, and Protect Against Email Threats Faster With PhishRIP

Sep 16, 2020 7:00:00 AM By Stu Sjouwerman

Your users are likely already reporting potentially dangerous emails in some fashion within your organization. The increase of this email traffic can present a new problem!

The Dangerous Attraction of Original Gangsters

Sep 9, 2020 8:27:21 AM By Stu Sjouwerman

Users need to be mindful of the ways in which hackers can take over their accounts, according to Brian Krebs. Krebs says his experience as the owner of an “OG” Gmail address made him ...

Legitimate Services, but still Hook, Line, and Sinker

Sep 8, 2020 7:03:00 AM By Stu Sjouwerman

A malware distribution campaign is abusing organizations’ contact forms to send malicious emails designed to catch the attention of companies’ customer support personnel. The attackers ...

The New Version of Qbot Trojan Steals Damn Near Everything, Hijacks Email Threads to Spread Infection

Sep 8, 2020 7:01:00 AM By Stu Sjouwerman

Originally seen all the way back in 2008, this banking trojan is continuously being developed. Its latest iteration is downright nasty and has already infected 5% of all organizations ...

Check Your Email Rules for Maliciousness

Sep 2, 2020 4:07:15 PM By Roger Grimes

Email rules have been used maliciously for decades. Learn about email rules and what you need to do to defend your organization against their malicious misuse.

U.K. National Health Service Targeted with Over 40,000 Email Scams Aimed at Stealing Patient Data

Aug 18, 2020 4:49:59 PM By Stu Sjouwerman

The last few months have been very busy for cyber attackers targeting the NHS, as the number of phishing emails reported within the NHS shows a continual barrage of attacks.

43,000+ NHS Staff Hit With Phishing Emails Since March

Aug 14, 2020 11:27:25 AM By Stu Sjouwerman

A Freedom of Information (FOI) request revealed that over 43,000 National Health Service (NHS) staff have had phishing emails slip through the cracks and into their inboxes in the past ...

Cybercriminals Target Execs in Microsoft 365 Credential Attack to Launch Internal BEC Scams

Aug 11, 2020 9:30:40 AM By Stu Sjouwerman

A new phishing attack spotted in the wild by security researchers at Trend Micro demonstrates how compromised data in an initial cyberattack is purposed in subsequent attacks.

Leaked U.S.-UK Trade Documents Show How Devastating Compromised Email Can Be

Aug 6, 2020 4:15:57 PM By Stu Sjouwerman

An ongoing criminal investigation highlights how classified documents stolen by Russian hackers from former U.K. trade minister Liam Fox may have been used to impact the British 2019 ...

[Heads Up] The First-Ever Russian BEC Gang, Cosmic Lynx, Was Uncovered. They Spear Phish Multinational & Fortune 500 Senior Executives

Jul 7, 2020 10:13:48 AM By Stu Sjouwerman

“This is a historic shift to the global email threat landscape and portends new and sophisticated social engineering attacks that CISOs around the world must brace for now,” according to ...

‘New VPN Configuration’ Email Tricks Microsoft 365 Users Out of Credentials

Jun 24, 2020 4:17:48 PM By Stu Sjouwerman

Scammers are taking advantage of the prominent use of VPNs by remote workforces to send out this very topically relevant phishing email that just wants to steal your credentials.

Microsoft 365 to Provide Detonation Details About Malicious Email Content

Jun 19, 2020 4:29:28 PM By Stu Sjouwerman

In a step towards educating customers on why attachments and URLs are deemed “malicious”, Microsoft’s is set to augment its Advanced Threat Protection product in July.

Excel Macros Bypass Your Filters and Slip in Malware Payloads

Jun 4, 2020 9:56:26 AM By Stu Sjouwerman

Researchers at Lastline warn that attackers are increasingly utilizing Excel 4[.]0 macros to deliver malware while avoiding detection by security products. Excel 4[.]0 (XL4) macros were ...

Organizations Need To Be Wary Of Home Worker Phishing Risks

Mar 19, 2020 5:31:33 PM By Stu Sjouwerman

Security experts warn that phishing attacks against home workers will rise.

FTC Alert: Coronavirus Scammers Love Scary Bad News

Feb 11, 2020 4:19:10 PM By Stu Sjouwerman

Scary news stories in the headlines always bring out the bad guys looking to make a quick illegal buck.

How Can You Check If Your Email Is Compromised?

Sep 16, 2019 6:52:18 AM By Stu Sjouwerman

Rudy Friederich, a KnowBe4 friend at Marshal Security LLC sent me the following interesting tips related to finding out if you are the victim of Business Email Compromise. He wrote:

DMARC and Its Place in Email Security

Sep 10, 2018 2:31:59 PM By Stu Sjouwerman

Dealing with business email compromise (BEC) requires people, process, and technology. As we've noted before, the problem is growing. Harder to detect and evolving in sophistication, ...

New Large Email Security Gap Analysis Shows a Massive 15% Failure Rate

Apr 23, 2018 10:00:00 AM By Stu Sjouwerman

We thought it was bad when we saw Cyren's recent analysis that 10.5% of bad emails made it through the filters. It could even be worse than that. "Mimecast's latest ESRA (email security ...

New Security Tool: Mailserver Security Assessment [It's Free]

Apr 5, 2018 9:56:49 AM By Stu Sjouwerman

Do you know what's getting through your mail filters? KnowBe4 is excited to announce that now you can use our brand new, innovative Mailserver Security Assessment (MSA), to help you ...

Email Security Vulnerability Affects Half of the Internet's Servers

Mar 6, 2018 5:45:27 PM By Stu Sjouwerman

Our friends at Bleepingcomputer wrote: "A critical vulnerability affects hundreds of thousands of email servers. A fix has been released but this flaw affects more than half of the ...

Security Awareness Training Blog

View Topics

[NEW PhishER Feature] Remove, Inoculate, and Protect Against Email Threats Faster With PhishRIP

The Dangerous Attraction of Original Gangsters

Legitimate Services, but still Hook, Line, and Sinker

The New Version of Qbot Trojan Steals Damn Near Everything, Hijacks Email Threads to Spread Infection

Check Your Email Rules for Maliciousness

U.K. National Health Service Targeted with Over 40,000 Email Scams Aimed at Stealing Patient Data

43,000+ NHS Staff Hit With Phishing Emails Since March

Cybercriminals Target Execs in Microsoft 365 Credential Attack to Launch Internal BEC Scams

Leaked U.S.-UK Trade Documents Show How Devastating Compromised Email Can Be

[Heads Up] The First-Ever Russian BEC Gang, Cosmic Lynx, Was Uncovered. They Spear Phish Multinational & Fortune 500 Senior Executives

‘New VPN Configuration’ Email Tricks Microsoft 365 Users Out of Credentials

Microsoft 365 to Provide Detonation Details About Malicious Email Content

Excel Macros Bypass Your Filters and Slip in Malware Payloads

Organizations Need To Be Wary Of Home Worker Phishing Risks

FTC Alert: Coronavirus Scammers Love Scary Bad News

How Can You Check If Your Email Is Compromised?

DMARC and Its Place in Email Security

New Large Email Security Gap Analysis Shows a Massive 15% Failure Rate

New Security Tool: Mailserver Security Assessment [It's Free]

Email Security Vulnerability Affects Half of the Internet's Servers

Search Our Blog

Subscribe To Our Blog

Posts By Topic

Get the latest about social engineering

Subscribe to CyberheistNews

Get the latest about social engineering

Subscribe to CyberheistNews

Products & Services

About Us

Free Tools

Contact Us

Contact Support

Search