Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

Beware of Free Gift Card Phishing Scams

People can’t resist the lure of free stuff. Cyber criminals know this and are always looking for ways to make a quick effortless buck. Put these two together and you have the perfect ...
Continue Reading

Is it Shark Week at your Organization?

Curiosity for one of the most aggressive and dangerous beasts in the ocean has us dedicating a week to learning about it. Should cyberattacks that put your organization at risk get equal ...
Continue Reading

Second Quarter 2018 Top-Clicked Phishing Email Subjects [INFOGRAPHIC]

We've been reporting on the top-clicked phishing email subjects every quarter for a while now across three different categories: general emails, those related to social media, and 'in the ...
Continue Reading

Scam Of The Week: *Another* New CEO Fraud Phishing Wrinkle

So, here's a new CEO Fraud phish: see these fresh screen shots from emails reported to us through the free KnowBe4 Phish Alert Button. Bad guys spoof the managing partner and CPA and an ...
Continue Reading

Russian Reminders: Phishing is Fruitful

The recent indictment by special counsel Robert Mueller of 12 Russian military officials for the hacking of Democratic servers and emails in 2016 is a powerful reminder – phishing works.
Continue Reading

New Report: Mobile Phishing on the Rise

With users being three times more likely to click on a suspicious link on their mobile device, along with over half of mobile users tapping on a phishing URL, mobile phishing is a bigger ...
Continue Reading

From the Phishing Archives: Just How Far Will Cybercriminals Go for a Scam? Apparently into Outer Space.

The Nigerian Prince scam was found taking a turn upwards to the stars, seeking your help to bring a poor lonely astronaut home.
Continue Reading

Sextortion Phishing Campaign Uses Recipient's Hacked Passwords

Krebs on Security has posted a new item: "Here's a clever new twist on an old email scam that could serve to make the con far more believable. The message purports to have been sent from ...
Continue Reading

[Heads-Up] New Deceptive Strains Of Payroll Phishing: "Because that's where the money is..."

Most readers will probably be familiar with the story of bank robber Willie Sutton who, after being nailed by the cops, was asked why he robbed the bank. His answer (undoubtedly delivered ...
Continue Reading

Court Ruling: Chubb Insurance Unit Crime Policy Covers ‘Spoofed’ Phishing Wire Transfer

Very interesting article in the Insurance Journal. In a closely-watched case on insurance coverage in an age of expanding cyber risk, a federal appeals court in New York has upheld a ...
Continue Reading

Context is the Key to Phishing Success

According to the latest report from NIST, one of the most critical factors around whether a user clicks a phishing email or not is context.
Continue Reading

Nothing is Sacred: Scammers Phish Church Parishioners

Always looking for new ways to separate you from your money, cybercriminals in Canada are using names of priests and archbishops to solicit money.
Continue Reading

Homographic Domains Make Phishing Scams Easier

Is that email from citibank.com or citíbank.com? If you think that last sentence was a mistake, take another look, as you may be the next phishing victim. Cybercriminals are using ...
Continue Reading

Kiss Your Privacy Goodbye. Exactis Leaks A Database With 340 Million Personal Data Records

Whoa Nellie. Here is the ultimate spear phishing data trove. WIRED reported: "Earlier this month, security researcher Vinny Troia discovered that Exactis, a Palm Coast, Florida-based data ...
Continue Reading

[Heads-up] Employees Sue Company For W-2 Phishing Scam. Federal Court Decides Triple Damages

Imagine my surprise when I saw a picture of myself in the blog of large North Carolina Law firm Poyner Spruill. It was all good though. They had picked up an example of a real W-2 ...
Continue Reading

Exclusive Interview with Kevin Mitnick Ask Me Anything [VIDEO]

KnowBe4's Chief Hacking Officer Kevin Mitnick sat down with our team for an exclusive interview where we could ask him anything… We thought you’d like to hear his answers, too. Ever ...
Continue Reading

Penalty! Another FIFA World Cup Phishing Scam Found

As we round out the second week of the FIFA World Cup, new phishing scams continue to permeate, seeking to take advantage of fan’s interest and excitement.
Continue Reading

What Is Angler Phishing And How Do I Avoid Becoming A Victim?

Experian in an ongoing campaign to clean up their massive hack came out with a useful post: What is Angler Phishing? Angler phishing is the practice of masquerading as a customer service ...
Continue Reading

Phishing Attacks Make Mortgage Wire Fraud Easier

The stress of obtaining a mortgage has just gotten worse, thanks to cybercriminals trying to con you out of your money. In new attacks targeting companies involved in the mortgage lending ...
Continue Reading

Vacation Dream Home Phishing Nightmare (but with a Happy Ending)

Mike Malone and his wife found the vacation condo of their dreams in Florida. They were in touch with a real estate agent who was handling the deal when suddenly their condo purchase ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews