Phishing and Redirection

Jun 24, 2020 8:40:11 AM By Stu Sjouwerman

Researchers at Check Point have observed a phishing campaign that, to avoid detection, abused servers belonging to Adobe, Samsung, and the University of Oxford. The attackers used several ...

[HEADS UP] Sodinokibi Ransomware Strain Learns New Trick

Jun 23, 2020 3:14:39 PM By Stu Sjouwerman

Already one of the most dangerous forms of ransomware, now Sodinokibi looks like it could also be attempting to make money from stolen payment information too.

Slack Phishing

Jun 23, 2020 8:27:33 AM By Stu Sjouwerman

People need to be able to use their instincts in order to spot new phishing techniques, according to Ashley Graves, a Cloud Security Researcher at AT&T Alien Labs. On the CyberWire’s ...

How to Combat the Fake News and Disinformation Being Used to Attack Your Organization

Jun 22, 2020 9:29:04 AM By Stu Sjouwerman

A global cold war is being fought in cyberspace, and IT pros like you are finding themselves in the trenches. With all of this going on, how can you equip your employees and protect your ...

Pyongyang's Phishing with Job Offers

Jun 22, 2020 8:27:28 AM By Stu Sjouwerman

An attack campaign with possible ties to North Korea’s Lazarus Group targeted aerospace and military companies in Europe and the Middle East with spear phishing attacks late last year, ...

Microsoft 365 to Provide Detonation Details About Malicious Email Content

Jun 19, 2020 4:29:28 PM By Stu Sjouwerman

In a step towards educating customers on why attachments and URLs are deemed “malicious”, Microsoft’s is set to augment its Advanced Threat Protection product in July.

Microsoft Warns of New Java-Based “PonyFinal” Ransomware Used as Part of Human-Operated Attacks

Jun 19, 2020 4:25:29 PM By Stu Sjouwerman

Microsoft’s recent posts detailing a new Java attack that uses PowerShell and other legitimate tools to infect victims with ransomware sheds light on human-operated attacks.

WARNING: The List of Ransomware-Turned-Data Breach Operators is Getting Long

Jun 19, 2020 4:21:06 PM By Stu Sjouwerman

Seeing a better opportunity to generate more “revenue” from their victims, the idea of ransomware also exfiltrating data to be used to extort the payment is gaining steam.

Top 12 Most Common Rogue URL Tricks

Jun 19, 2020 3:18:27 PM By Roger Grimes

It’s nearly impossible to find an Internet scam or phishing email that doesn’t involve a malicious Uniform Resource Locator (URL) link of some type. The link either directs the user to a ...

How to Keep SOX on Track During a Pandemic

Jun 18, 2020 1:39:14 PM By Stu Sjouwerman

It’s been several weeks since COVID-19 entered our vocabulary and made working from home the new normal, according to Accounting Today. Professionals over the last month are adapting to ...

Find Out How to Use Your Organization's Data to Become a Risk Management Expert

Jun 18, 2020 11:13:37 AM By Stu Sjouwerman

Risk management is about recognizing the right risks, assigning the right likelihood, and assessing potential damage. Yet, most risk managers are doing it wrong, driven by decades of ...

Microsoft on COVID-19 Themed Cyberattacks

Jun 18, 2020 9:33:19 AM By Stu Sjouwerman

Microsoft’s Threat Protection Intelligence Team has published a report providing a detailed look into the proliferation of COVID-19-themed phishing over the past several months. The ...

[MSP News] Manage Your KnowBe4 Accounts Faster With NEW Managed Phishing Functionality

Jun 18, 2020 8:00:00 AM By Stu Sjouwerman

You have been asking for a better way to manage your multiple KnowBe4 accounts, and we heard you! We've made enhancements to the KnowBe4 phishing platform and added the NEW Managed ...

The Face of APT Actors

Jun 18, 2020 7:00:00 AM By Javvad Malik

If I were to ask you to picture in your mind a shady criminal organisation consisting of cyber mercenaries, ones that took money from clients, asked no questions, and over the period of ...

Researchers Uncover Six Years of Russian Attempts to Mold International Politics

Jun 17, 2020 4:06:43 PM By Stu Sjouwerman

Researchers uncover six-years-worth of Russian attempts to mold international politics using fake news and forged documents. Social media research group Graphika published today a ...

Phony Data Theft, Like Phony Sextortion

Jun 17, 2020 9:55:30 AM By Stu Sjouwerman

Extortionists are sending phony threats to website owners informing them that their sites’ databases will be leaked unless they pay a ransom of between $1,500 and $3,000, BleepingComputer ...

Increase in BLM Domain Names Forecasts BLM Phishing Attacks

Jun 16, 2020 3:26:04 PM By Roger Grimes

There has been a significant increase in DNS domain names containing blacklivesmatter or George Floyd’s name and there’s a good chance some of those are owned by people with malicious ...

BEC Isn't Back; It Never Left

Jun 16, 2020 8:27:32 AM By Stu Sjouwerman

Business email compromise (BEC) attacks aren’t new, but they’re growing increasingly effective, according to Zeljka Zorz at Help Net Security. Zorz cites an article from BakerHostetler, ...

Another Bitcoin Scam, with Bogus SpaceX on the Side

Jun 15, 2020 8:24:13 AM By Stu Sjouwerman

Scammers took over three popular YouTube channels and used them to impersonate the official SpaceX channel to generate cryptocurrency, according to Lisa Vaas at Naked Security. The ...

Fraudsters Are Exploiting Newborns and Recently Deceased People

Jun 12, 2020 9:21:12 AM By Stu Sjouwerman

Criminals are crafting detailed fake identities using data belonging to newly born and recently deceased people, according to Sanjay Gupta, Vice President, Global Head of Products and ...

Security Awareness Training Blog

KnowBe4 Blog

View Topics

Phishing and Redirection

[HEADS UP] Sodinokibi Ransomware Strain Learns New Trick

Slack Phishing

How to Combat the Fake News and Disinformation Being Used to Attack Your Organization

Pyongyang's Phishing with Job Offers

Microsoft 365 to Provide Detonation Details About Malicious Email Content

Microsoft Warns of New Java-Based “PonyFinal” Ransomware Used as Part of Human-Operated Attacks

WARNING: The List of Ransomware-Turned-Data Breach Operators is Getting Long

Top 12 Most Common Rogue URL Tricks

How to Keep SOX on Track During a Pandemic

Find Out How to Use Your Organization's Data to Become a Risk Management Expert

Microsoft on COVID-19 Themed Cyberattacks

[MSP News] Manage Your KnowBe4 Accounts Faster With NEW Managed Phishing Functionality

The Face of APT Actors

Researchers Uncover Six Years of Russian Attempts to Mold International Politics

Phony Data Theft, Like Phony Sextortion

Increase in BLM Domain Names Forecasts BLM Phishing Attacks

BEC Isn't Back; It Never Left

Another Bitcoin Scam, with Bogus SpaceX on the Side

Fraudsters Are Exploiting Newborns and Recently Deceased People

Search Our Blog

Subscribe To Our Blog

Posts By Topic

Get the latest about social engineering

Subscribe to CyberheistNews

Get the latest about social engineering

Subscribe to CyberheistNews

Products & Services

About Us

Free Tools

Contact Us

Contact Support

Search