And Just When You Thought Locky Ransomware Had Disappeared...

Apr 22, 2017 9:47:47 AM By Stu Sjouwerman

Locky ransomware reappeared with a vengeance Friday, this time not using Office documents combined with social engineering to have the user enable macros, but with a PDF that has a Word ...

[ALERT] Aaron Hernandez Death Phishing Scams

Apr 20, 2017 8:04:33 AM By Stu Sjouwerman

Low-life scum is exploiting the deaths of famous people, such as the suicide yesterday of former N.E. Patriots player Aaron Hernandez.

First Quarter 2017 Top-Clicked Phishing Email Subjects [INFOGRAPHIC]

Apr 13, 2017 5:30:13 PM By Stu Sjouwerman

KnowBe4 customers run millions of phishing tests per year, and we report frequently on the top-clicked phishing topics so that our customers know what the highest-risk phishing templates ...

Scammers Phishing for financial credentials on Twitter

Apr 8, 2017 5:21:21 PM By Stu Sjouwerman

Steve Ragan at CSO wrote: "Scammers are using Twitter as a vehicle to target people looking for customer support or asking general questions. They interject themselves into legitimate ...

Cybersecurity IQ: Americans Have Trouble Recognizing Phishing Attacks

Apr 8, 2017 10:26:11 AM By Stu Sjouwerman

A new Pew Research Center survey titled "What the Public Knows about Cybersecurity." tallied responses from 1,055 adults last year about their understanding of concepts important to ...

Which phishing emails fooled the most people? [INFOGRAPHIC]

Apr 7, 2017 2:45:22 PM By Stu Sjouwerman

Kevin Mitnick, our Chief Hacking Officer forwarded this great poster to me he found on Twitter today: "Which phishing emails fooled the most people?" Share it with your users!

Scam Of The Week: The Evil Airline Phishing Attack

Apr 1, 2017 8:29:53 AM By Stu Sjouwerman

Our friends at Barracuda run their Email Threat Scanner over hundreds of thousands of customer mailboxes and discovered a highly effective phishing attack that tricks a whopping 90% of ...

SecureWorks Exposes Phishing Russian Hacker Gang APT28

Mar 31, 2017 7:27:13 AM By Stu Sjouwerman

Atlanta-based SecureWorks has a Counter Threat Unit which has been closely watching the Russian hacker gang APT28 over the last few years and released brand new research. This group of ...

Who Were The Two Big US Tech Companies That Lost $100 Million In CEO Fraud?

Mar 23, 2017 6:51:21 AM By Stu Sjouwerman

4/28/2017 UPDATE: Facebook and Google confirmed as victims of $100M phishing scam. Story at The Verge. In an update on an earlier post of April 2016, more detail came known about this ...

Scam Of The Week: New FBI and IRS Alerts Against W-2 Phishing

Mar 18, 2017 8:11:27 AM By Stu Sjouwerman

There is a wave of W-2 phishing attacks going on. We see these coming in through thousands of reported scam attempts via our Phishing Alert Button. The FBI and the IRS have repeatedly ...

SEC Phishing Emails Target Execs For Inside Info

Mar 11, 2017 3:07:06 PM By Stu Sjouwerman

A sophisticated phishing attack is trying to get confidential corporate information. Bad guys are sending spoofed emails claiming to be from the Security and Exchange Commission, and ...

Scary new malware hides in memory, uses DNS to communicate, and spreads through phishing

Mar 6, 2017 1:26:26 PM By Stu Sjouwerman

Cisco has a separate threat research group called Talos. They just published a report on a scary new form of malware that’s hard to detect. They called it DNSMessenger, and the malicous ...

Verizon: "Most Breaches Trace to Phishing, Social Engineering"

Mar 6, 2017 9:57:55 AM By Stu Sjouwerman

BankInfoSecurity wrote: "Ninety percent of data breaches seen by Verizon's data breach investigation team have a phishing or social engineering component to them. Not coincidentally, one ...

2016 Exceeds All Records in Numbers of Phishing Attacks

Feb 28, 2017 10:14:06 AM By Stu Sjouwerman

Year over year sustained growth in phishing campaigns produces yet another record number of attacks The Anti-Phishing Working Group (APWG) observed that 2016 ended as the worst year for ...

Which User Will Infect Your Network With Ransomware?

Feb 26, 2017 1:56:48 PM By Stu Sjouwerman

We've got something really cool for you: the new Phishing Security Test v2.0! It's got several great new features, and sending simulated phishing emails to train your employees is a fun ...

Phishing Attack Uses Stuxnet Technology And Makes PCs Into Roombugs

Feb 26, 2017 9:43:16 AM By Stu Sjouwerman

Researchers have uncovered an advanced malware-based operation that siphoned more than 600 gigabytes from about 70 targets in a broad range of industries, including news media, and ...

Survey: Most Hackers Break In Within Six Hours

Feb 25, 2017 10:09:05 AM By Stu Sjouwerman

A recent survey of 70 professional hackers and penetration testers found that 60% of them take a maximum of just six hours to compromise a target. The research titled The Black Report, ...

Google: "Office Inbox Receives 6.2X More Phishing And 4.3X More Malware Than Your Inbox At Home".

Feb 17, 2017 8:26:44 PM By Stu Sjouwerman

Google Research analyzed over a billion emails passing through Gmail, and the results were presented yesterday at the RSA security conference in San Francisco. Extremely interesting ...

Scam Of The Week: Valentine’s Day Phishing Attacks

Feb 11, 2017 3:11:31 PM By Stu Sjouwerman

It is time to remind your users that heartless con artists use social engineering tactics to trick people looking for love. The FBI's Internet Crime Complaint Center warns every year that ...

Careless Licking Gets A Nasty Ransomware Phishing Infection: 1,000+ Machines Down

Feb 4, 2017 9:40:14 AM By Stu Sjouwerman

More than 1,000 government computer systems shut down. A county in Ohio, US, has had to shut down its entire IT infrastructure due to a ransomware infection. County Auditor Mike Smith ...

Security Awareness Training Blog

Phishing Blog

View Topics