Combatting Rogue URL Tricks: How You Can Quickly Identify and Investigate the Latest Phishing Attacks

Jun 4, 2020 8:58:47 AM By Stu Sjouwerman

Don't click phishy links. Everyone knows that. But are your end users prepared to quickly identify today's tricky tactics being used by the bad guys? Probably not. Cybercriminals have ...

Remote Work Isn’t Good for Corporate Security (Part 2): 30% of Organizations Have Been the Victim of Phishing Scams Since the Lockdown

Jun 4, 2020 8:24:05 AM By Stu Sjouwerman

Lots of new data is now just coming out of the woodwork demonstrating some of the harsh realities of having employees work from home without proper security in place.

Remote Work Isn’t Good for Corporate Security (Part 1): 6 in 10 Employee’s Online Accounts Have Been Compromised Since Working Remotely

Jun 4, 2020 8:20:45 AM By Stu Sjouwerman

Working from home has its advantages. But, according to new data, one of them isn’t keeping the organization secure.

Pandemics, Killer Insects, and Riots Stir Up Cybercriminals

Jun 3, 2020 7:00:00 AM By Erich Kron

What a year 2020 has been. We have not even gotten half way into the year and we have dealt with a global pandemic, potential murder hornets, protests and riots and even the possibility ...

Phishing for Supermarket Deliveries

Jun 2, 2020 9:00:23 AM By Stu Sjouwerman

Scammers are exploiting the increased demand for online shopping by setting up spoofed supermarket websites, Teiss reports. Researchers at Mimecast recently found thirty websites ...

How Low Will Cybercriminals Go?

Jun 2, 2020 8:58:04 AM By Javvad Malik

Surely Bond villains only exist in movies -- I mean people aren’t truly evil are they? Especially ones who sit behind a computer. This was part of a discussion I was having with my ...

The Latest Ransomware Attacks Can Require a Data Breach Notification

Jun 2, 2020 8:46:46 AM By Stu Sjouwerman

Ransomware variants shifting tactics to include extortion may be cause for organizations to treat them as data breaches and, therefore, quickly notify affected parties.

Human Performance as a Risk Factor

Jun 1, 2020 8:25:33 AM By Stu Sjouwerman

Most organizations don’t place enough focus on the human elements of cybersecurity, according to Stephen A. Wilson, Dean Hamilton, and Scott Stallbaum from consulting firm Wilson Perumal ...

Supreme Court “Summons” is the Latest Phishing Attack Aimed at Stealing Your Microsoft 365 Credentials

May 30, 2020 8:31:22 AM By Stu Sjouwerman

Even the Supreme Court isn’t safe from brand impersonation in this scam intent on getting victims to click on a link to a supposed subpoena to attend a hearing.

Verizon: Phishing is the Attack Vector Most Often Seen in Data Breaches

May 30, 2020 8:28:10 AM By Stu Sjouwerman

This year’s much-anticipated Verizon Data Breach Investigations Report sheds some light on how cybercriminals use phishing to achieve their goal of stealing data.

EasyJet Becomes the Latest Victim of Data Breach Impacting 9 Million Customers

May 30, 2020 8:25:32 AM By Stu Sjouwerman

In an apparent attack intent on stealing intellectual property, EasyJet announced that their customer’s personal data had been “accessed” as part of the attack.

What to do About BEC?

May 28, 2020 8:23:39 AM By Stu Sjouwerman

Funds transfer fraud, also known as business email compromise (BEC), is a much more widespread problem than it seems, according to lawyers at Ice Miller LLP. The attorneys believe this ...

Beware of Phony LogMeIn Security Updates

May 27, 2020 9:32:29 AM By Stu Sjouwerman

Researchers at Abnormal Security warn that a phishing campaign is trying to steal LogMeIn remote desktop credentials. The attackers are sending phishing emails that purport to come from ...

Phishing Campaigns Using Google Firebase Storage

May 26, 2020 8:31:52 AM By Stu Sjouwerman

Scammers are hosting phishing pages on Google Firebase Storage to bypass email security filters, Threatpost reports. Firebase is a Google-owned application development platform that ...

Nearly Every Organization is More Concerned about Cybersecurity Than Before COVID-19

May 20, 2020 4:36:21 PM By Stu Sjouwerman

New data from security vendor Tripwire highlights how the shift to remote working has changed the face of cybersecurity for both the current work climate and the future.

Your Next Ransomware Attack May Require Two Payments!

May 20, 2020 4:34:25 PM By Stu Sjouwerman

In a case of adding insult to injury, a new strain of ransomware is looking for one payment to decrypt, and a second payment to not publish stolen files.

Preying on the Unemployed

May 20, 2020 8:20:01 AM By Stu Sjouwerman

An SMS phishing campaign has been exploiting the COVID-19 crisis by spoofing the website of a job placement agency, the New York Daily News reports. The scammers set up a website that ...

Biases People Take Home With Them

May 19, 2020 8:01:01 AM By Stu Sjouwerman

Employees will naturally follow their cognitive biases unless organizations proactively engage them in security processes, according to Georgia Crossland, a Ph.D. researcher at Royal ...

The Three Pillars of the Three Computer Security Pillars

May 18, 2020 8:31:59 AM By Roger Grimes

Much of the world, or at least the United States, is coalescing around the NIST Cybersecurity Framework. It’s a pretty good one to follow out of the many dozens that have been proposed ...

Paying the Ransom Doubles the Cost of a Ransomware Attack

May 14, 2020 8:20:38 AM By Stu Sjouwerman

The total cost of the average ransomware attack more than doubles if the victim decides to pay the ransom, according to Sophos’s State of Ransomware 2020 report. The Sophos-commissioned ...

Security Awareness Training Blog

KnowBe4 Blog

View Topics