Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

How Are Credential-Theft Phishing Websites Avoiding Detection? They Just Invert the Website Background

Sometimes the easiest solution is the best solution. And in the case of phishing attacks intent of stealing credentials using a fake logon page, it appears that background inversion does ...
Continue Reading

Number of Phishing Websites Double and Unique Phishing Campaigns Triple in Q3

New data shows the bad guys have been working diligently to step up their game on both the front and back end of phishing attacks, despite still being mid-pandemic.
Continue Reading

Dutch Government Sees Phishing More Than Double in 2020

In an exclusive article, the Dutch IRS gave its perspective on the cyber threat landscape in the Netherlands. December is typically one of the busiest months of the year for cybercrime ...
Continue Reading

South African Post Office Issues Warning on Postal Phishing Attack

The South African Post Office recently issued a warning about a phishing attack. The post office advised everyone to delete the email immediately.
Continue Reading

Zoom Impersonation a New Variant of Familiar Phishbait

Zoom-themed phishing attacks have spiked since the start of the pandemic, the Better Business Bureau (BBB) warns. Attackers adapted quickly earlier this year when a large portion of ...
Continue Reading

Fake Zoom Invite Leads to one Australian Company's Downfall

We've previously written blog posts to be cautious of suspicious Zoom meeting links, and we even reported a huge increase in phishing attacks using Zoom of August this year. The heads-up ...
Continue Reading

Is the Secret to Stopping Cyberattacks Making Users "Phishing Aware"?

The sheer volume of successful phishing attacks indicates that security solutions – at very least – aren’t stopping all attacks. So how does security awareness training help top attacks ...
Continue Reading

Phishing Attacks in the U.K. Rise by 73% During Pandemic Months as Vishing and Smishing Attacks Also Increase

Cybercriminals have taken full advantage of COVID-19 by launching themed phishing attacks in previously unseen numbers targeting both individuals and businesses.
Continue Reading

See Ridiculously Easy Security Awareness Training and Phishing

Join us for a live demo on Security Awareness Training and phishing in action!
Continue Reading

Journalists Need Phishing Awareness, Too

All types of journalists need to be wary of phishing and other social engineering attacks, according to Jacob Granger, writing at Journalism.co.uk. Granger quotes digital security expert ...
Continue Reading

[Heads-Up] A Hacker Is Selling Access To The Email Accounts Of Hundreds Of C-Level Executives

ZDNet's Zero Day column just reported one of the best reasons why you should step your users through new-school security awareness training yet:
Continue Reading

How Many Phishing Sites? Over 2 Million in 2020 (so far)

Google has flagged 2.02 million phishing sites since the beginning of the year, averaging forty-six thousand sites per week, according to researchers at Atlas VPN. The researchers note ...
Continue Reading

Email Sandboxes Are Detected and Rendered Useless in New Office 365 Phishing Attack

A new threat tactic is being used to determine if sandbox environments are being used to gain more information about a potential phishing attack, allowing the bad guys to avoid detection.
Continue Reading

The COVID-19 Vaccine: The Next Wave of Coronavirus Phishing Emails & What You Can Do About It

With infection rates once again soaring in the United States and other countries around the world, the race to produce a COVID-19 vaccine has generated welcome news for a population ...
Continue Reading

Beware of Black Friday Deals That Are Too Good To Be True

Black Friday is a great day for anyone looking to nab a retail bargain. And retailers want to see products fly off their physical and virtual shelves by putting out unbelievable offers. ...
Continue Reading

You're Fired (Not Really, Just Clicked on a Phishing Email)

The operators of the BazarLoader malware are using phishing emails that inform people they’ve been terminated from their jobs, according to Linn Freedman, a partner at Robinson & Cole ...
Continue Reading

[Scam of the Week] Black Friday & Cyber Monday Top 10 Cybersecurity Tips

The bad guys are at it again with holiday phishing scams, and this time from the comfort of your user's home. Because we are in the middle of a pandemic, retailers have already started ...
Continue Reading

Phishing Attacks Rose by 220% At Pandemic Peak Amid Global COVID-Related Fears

At a time when the last thing we need is more phishing attacks, new data shows that cybercriminals have been stepping up their game, taking full advantage of the pandemic.
Continue Reading

Google's Free Services and Phishing Campaigns: A Likely Pair

Cybercriminals are now launching phishing campaigns that abuse Google's free productivity tools while also using social engineering to trick you into installing malware.
Continue Reading

Nearly Half of Spear Phishing Emails Bypass Security Filters

47% of payloadless phishing emails are able to bypass the most popular secure email gateways (SEGs), according to researchers at IronScales. These are emails that don’t contain malicious ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews