Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

View Topics

Microsoft was the Most Impersonated Brand in Q2, 2023

Jul 20, 2023 3:25:44 PM By Stu Sjouwerman
Microsoft was the most impersonated brand in phishing attacks during Q2, 2023, according to Check Point’s latest Brand Phishing Report.
Continue Reading

Threat Actors Add ".Zip" Domains to Phishbait

Jul 19, 2023 9:54:36 AM By Stu Sjouwerman
Cybercriminals are exploiting the introduction of “.ZIP” as a new generic Top-Level Domain (gTLD) to launch phishing attacks, according to researchers at Fortinet.
Continue Reading

[INFOGRAPHIC] KnowBe4’s Content Library by the Numbers

Jul 19, 2023 9:27:35 AM By Stu Sjouwerman
KnowBe4 offers the world’s largest library of always-fresh security awareness and compliance training content that includes assessments, interactive training modules, videos, games, ...
Continue Reading

Nearly One-Quarter of All Emails Are Considered to be Malicious

Jul 14, 2023 8:14:31 AM By Stu Sjouwerman
The quantity of emails involved in scams and cyber attacks continues to grow as credential theft and response-based phishing persist as top attack variants.
Continue Reading

Phishing Attacks Employing QR Codes Are Capturing User Credentials

Jul 12, 2023 10:11:56 AM By Stu Sjouwerman
Using a new twist to bypass detection from security solutions, cyber attacks are now employing QR codes that your users will not recognize as anything suspicious.
Continue Reading

Phishing Campaigns Are Now Targeting the Hospitality and Tourism Ponds

Jul 11, 2023 9:01:05 AM By Stu Sjouwerman
A phishing campaign is targeting the tourism and hospitality industries, according to researchers at Votiro.
Continue Reading

New Phishing Benchmarks Unlocked: Is Your Organization Ahead of the Curve in 2023

Jul 10, 2023 10:51:29 AM By Stu Sjouwerman
Cybercriminals continue to rely on proven attack methods while developing new ways to infiltrate digital environments and break through your human defense layer.
Continue Reading

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

Jul 10, 2023 8:00:00 AM By Stu Sjouwerman
Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.
Continue Reading

Amazon Prime Day Alert: Beware of Fake Logins, Gift Card Scams

Jul 7, 2023 11:39:18 AM By Stu Sjouwerman
A new threat alert from ConsumerAffairs and TrendMicro proves more than just shoppers will take advantage of Amazon’s upcoming Prime Day.
Continue Reading

Email-Based Cyber Attacks in Europe Increase 7-Fold in Just One Year

Jul 7, 2023 10:50:09 AM By Stu Sjouwerman
An abnormally massive focus on business email compromise attacks in Europe has fueled an equally large growth in overall email attacks there, with the U.S. also seeing significant attack ...
Continue Reading

Threat Actors are Using Image-Based Phishing Emails to Lure Victims

Jul 6, 2023 7:30:00 AM By Stu Sjouwerman
Attackers are increasingly using images in phishing to evade text-based security filters, according to researchers at INKY.
Continue Reading

The Better Business Bureau Warns of Process-Server Phishbait

Jul 3, 2023 10:51:41 AM By Stu Sjouwerman
The Better Business Bureau (BBB) has warned of a scam in which attackers pose as process servers in order to steal information and commit identity theft.
Continue Reading

The face of 2023's cyber-threat landscape was an alarming surge in ransomware and phishing attacks

Jun 29, 2023 6:46:30 AM By Stu Sjouwerman
When KnowBe4 went public in April 2021, I got to know a select group of analysts that served as co-managers on our IPO. These professionals all know our industry very well and we spoke ...
Continue Reading

Newly Discovered Phishing Attacks Target Bank Customers

Jun 28, 2023 11:16:49 AM By Stu Sjouwerman
First National Bank has warned of an increase in phishing and smishing attacks, IT-Online reports.
Continue Reading

National Cyber Security Centre Notes UK Law Firms are Main Target for Cybercriminals

Jun 28, 2023 11:16:46 AM By Stu Sjouwerman
In the most recent Cyber Threat report from the National Cyber Security Centre (NCSC), it is clear that UK law firms are a gold mine for cybercriminals.
Continue Reading

Massive Impersonation Phishing Campaign Imitates over 100 Brands and Thousands of Domains

Jun 28, 2023 8:24:49 AM By Stu Sjouwerman
A year-long phishing campaign has been uncovered that impersonates 100+ popular clothing, footwear, and apparel brands using at least 10 fake domains impersonating each brand.
Continue Reading

Russian Threat Actor Targets Ukraine Government And Military With Spear Phishing Emails

Jun 27, 2023 8:54:25 AM By Stu Sjouwerman
Russia’s APT28 (also known as “Fancy Bear” or “BlueDelta”) is using spear phishing to compromise Ukrainian government and military entities, according to researchers at Recorded Future. ...
Continue Reading

New Cryptocurrency Coinbase Phishing Campaign Uses Social Engineering

Jun 26, 2023 9:12:26 AM By Stu Sjouwerman
A phishing campaign is impersonating cryptocurrency trading platform Coinbase, Tech.co reports. Crypto trader Jacob Canfield described the campaign in a Twitter thread, stating that the ...
Continue Reading

Want To Stop All Scams? Here Is How!

Jun 23, 2023 2:25:52 PM By Roger Grimes
There are many ways to be socially engineered and phished, including email, websites, social media, SMS texts, chat services, phone calls and in-person. These days, it is hard to sell ...
Continue Reading

“Picture in Picture” Phishing Attack Technique Is So Simple, It Works

Jun 23, 2023 11:35:38 AM By Stu Sjouwerman
Using credibility-building imagery and creating a need for the user to click what may or may not be perceived as an image is apparently all it takes to engage potential phishing victims.
Continue Reading
Subscribe

Search Our Blog


Free Phishing Security Resource Kit

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews