Phishing Campaigns Using Google Firebase Storage

May 26, 2020 8:31:52 AM By Stu Sjouwerman

Scammers are hosting phishing pages on Google Firebase Storage to bypass email security filters, Threatpost reports. Firebase is a Google-owned application development platform that ...

Nearly Every Organization is More Concerned about Cybersecurity Than Before COVID-19

May 20, 2020 4:36:21 PM By Stu Sjouwerman

New data from security vendor Tripwire highlights how the shift to remote working has changed the face of cybersecurity for both the current work climate and the future.

Your Next Ransomware Attack May Require Two Payments!

May 20, 2020 4:34:25 PM By Stu Sjouwerman

In a case of adding insult to injury, a new strain of ransomware is looking for one payment to decrypt, and a second payment to not publish stolen files.

Preying on the Unemployed

May 20, 2020 8:20:01 AM By Stu Sjouwerman

An SMS phishing campaign has been exploiting the COVID-19 crisis by spoofing the website of a job placement agency, the New York Daily News reports. The scammers set up a website that ...

Biases People Take Home With Them

May 19, 2020 8:01:01 AM By Stu Sjouwerman

Employees will naturally follow their cognitive biases unless organizations proactively engage them in security processes, according to Georgia Crossland, a Ph.D. researcher at Royal ...

The Three Pillars of the Three Computer Security Pillars

May 18, 2020 8:31:59 AM By Roger Grimes

Much of the world, or at least the United States, is coalescing around the NIST Cybersecurity Framework. It’s a pretty good one to follow out of the many dozens that have been proposed ...

Paying the Ransom Doubles the Cost of a Ransomware Attack

May 14, 2020 8:20:38 AM By Stu Sjouwerman

The total cost of the average ransomware attack more than doubles if the victim decides to pay the ransom, according to Sophos’s State of Ransomware 2020 report. The Sophos-commissioned ...

[HEADS UP] Coronavirus Phishing Attacks Skyrocket to 30% Increase

May 12, 2020 11:29:10 AM By Stu Sjouwerman

Scammers riding the COVID-19 wave are adapting to new scenarios as the pandemic evolves. Checkpoint recently discovered that over 192,000 coronavirus-related phishing attacks per week ...

Why Does Someone Click and Become a Victim of a Scam?

May 12, 2020 11:25:03 AM By Stu Sjouwerman

One of the keys to thwarting social engineering attacks is knowing what makes us want to click on links or respond to emails, according to cybersecurity expert Raef Meeuwisse. In an ...

Hacker Group Compromises the Email Accounts of More Than 150 Company’s High-Ranking Executives

May 12, 2020 10:03:18 AM By Stu Sjouwerman

The latest string of attacks leverage traditional spear-phishing techniques mixed with the use of Microsoft’s newsletter service, Sway, to trick executives into giving up their Office 365 ...

Healthcare Providers Get Free Assistance with Remediating Ransomware Attacks

May 12, 2020 10:00:12 AM By Stu Sjouwerman

In the wake of ransomware attacks continuing on healthcare providers, despite the obvious need for hospitals and urgent care clinics to remain operational, one company is offering some ...

Half of Employees Put the Organization at Risk by Watching Adult Content on Work Computers

May 12, 2020 9:57:50 AM By Stu Sjouwerman

New data from Kaspersky shows how the pandemic has changed the way people work… and how these new habits increase the organization’s risk of cyberthreat.

Your Ransomware Task Force: Response, Recovery, and Remediation Tips from the Pros

May 11, 2020 8:29:51 AM By Stu Sjouwerman

When you realize your organization has been hit with a ransomware attack there are a few things that need to happen. One… take a deep breath. Two… contain the damage. And three… initiate ...

It Starts with a Phish: Employee PII at Risk When Pipeline Development Outsourcer Falls Victim to Ransomware Attack

May 7, 2020 10:36:01 AM By Stu Sjouwerman

The latest example of a modern-day ransomware attack demonstrates how data encryption and ransom can no longer be the assumed extent of an attack.

Cybercriminals Lean Heavily on Social Engineering Tactics to Gain Access to Bank Accounts

May 7, 2020 10:30:09 AM By Stu Sjouwerman

A series of attack anecdotes shared by Brian Krebs shows how persistent and sophisticated scammers are in using social engineering tactics to gain access to their victim’s bank account ...

It's World Password Day 2020 - Is Your Organization Safe?

May 7, 2020 8:22:37 AM By Stu Sjouwerman

Today is World Password Day, a holiday created by Intel on the first Thursday of May to ensure everyone knows password best practices. “P@ssW0rd” has never been a safe password to use to ...

Some Phishers Who Know Their Trade

May 7, 2020 8:19:31 AM By Stu Sjouwerman

Researchers at Votiro have come across well-crafted phishing emails that purport to come from UPS, FedEx, and DHL. All of the emails contain malicious Excel attachments that will install ...

What is the Right Password Policy?

May 7, 2020 8:15:00 AM By Roger Grimes

What is the right password policy? Conventional password policies say you must have a password at least 8-12 characters long…16 characters or longer if it belongs to an elevated ...

Implausible Phishbait, But Someone May Bite

May 6, 2020 8:24:27 AM By Stu Sjouwerman

Scammers are impersonating FINRA, the Financial Industry Regulatory Authority, in an attempt to deliver malware or steal SharePoint credentials, Help Net Security reports. FINRA issued an ...

Reuters: 'State-backed hackers targeting coronavirus responders'

May 5, 2020 11:25:35 AM By Stu Sjouwerman

LONDON/WASHINGTON (Reuters) - Government-backed hackers are attacking healthcare and research institutions in an effort to steal valuable information about efforts to contain the new ...

Security Awareness Training Blog

KnowBe4 Blog

View Topics