Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.
The GreyEnergy APT primarily uses phishing emails as its initial infection method, according to analysis by Nozomi Networks. The malware has been targeting industrial control systems in ...
A phishing campaign is attempting to steal login credentials from Spotify users, according to researchers at AppRiver. The emails ask users to click a hyperlink to confirm their accounts, ...
The National Republican Congressional Committee (NRCC) was hacked during the 2018 midterm elections, according to a report from Politico. Republican officials said that hackers had access ...
As predicted, the Marriott breach is heaven for bad guys. KnowBe4 customers are using the (free) Phish Alert Button to report in the wild phishing attacks using the recent news.
So I guess we have just reached the tipping point, it's "privacy game over" for business travelers.
We’ve mentioned this before, but the misconception has surfaced again, and it’s worth mentioning again. Looking for the padlock as a sign of a secure legitimate website isn’t an accurate ...
InfoSecBuzz asked a number of security experts for their advice on the top security threats and how to avoid them. These are specialists from Alienvault, Cylance, Cybereason, F5 Networks, ...
I found a great article in SecurityWeek by Alastair Paterson, the CEO of Digital Shadows. Could not have said it better myself, and he alerted everyone about an attack vector that was ...
According to the latest research from RSA, attacks intent on committing financial fraud most frequently begin with tried and true phishing.
This does not happen too often, and these attackers must be outside of Russia. If hackers inside Russia attack their own country, the FSB is on their doorstep with a SWAT team in no time.
Kaspersky Lab blocked 137 million phishing attempts in the third quarter of 2018, a 28 percent increase compared to Q2 2018. A report by the anti-virus company reveals that phishing ...
A growing Ransomware-as-a-Service model uses affiliate attackers with proven track records to spread the malware, offering a percentage of the ransom.
SecurityWeek reported about a Palo Alto Networks warning: "A malicious group known as the “Inception” attackers has been using a year-old Office exploit and a new backdoor in recent ...
This is an excellent opportunity to sit down with your young'uns and explain the risks of online scams.
A phishing scam is using fake login pages to target League of Legends players, according to Avast Blog. At the moment, the attacks are taking place primarily in western Europe, mainly ...
Howard, KnowBe4's HackBusters Discussion Forum Moderator reported on this very interesting phone call he got:
By Roger A. Grimes, KnowBe4's Data-Driven Defense Evangelist. Microsoft recently announced a big update to their Microsoft Office 365 (O365) anti-phishing technical capabilities. ...
By Eric Howes, KnowBe4 Principal Lab Researcher. It will surprise few people to learn that during our daily review of suspicious emails forwarded to us by users of the Phish Alert Button ...
Attacks leveraging look-alike federated logon pages are more dangerous than malware-laden attachments in email.
The latest results of KnowBe4's quarterly top-clicked phishing email subjects is now available. We report on three different categories: general emails, social media related subjects, and ...
