Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

July 4th and Current Events Phishing Templates

For KnowBe4 customers, we have some new templates available in Current Events and Holiday: Three July 4th-related templates in the Holiday category Five new Current Events templates ...
Continue Reading

Scam Of The Week: DMV Warns Drivers About Traffic Ticket Phishing

Online reporter Doug Olenick at SC Media was the first to point to a press release from the NY State Department of Motor Vehicles warning about a phishing scam where New York drivers are ...
Continue Reading

Did you know how the word Phishing came to be?

I found this at ComputerWorld: "The word phishing was coined around 1996 by hackers stealing America Online accounts and passwords. By analogy with the sport of angling, these Internet ...
Continue Reading

Scam Of The Week: Massive DocuSign Phishing Attacks

DocuSign has admitted they were the victim of a data breach of customer email addresses only that has led to massive phishing attacks which used the exfiltrated DocuSign information. ...
Continue Reading

Macron Campaign Fought Off Phishing Attacks With Cyberdeception Techniques

Gadi Evron is the Founder and CEO at IT security company Cymmetrica. He wrote a long-ish post on hackernoon (which is powered by Medium). I'm giving you the upshot, but first, what is ...
Continue Reading

Top 10 Most Dangerous Phishing Attack Of The Week

KnowBe4 gets thousands of phishing attacks reported weekly through our free Phish Alert Button, and we pick the 10 most tricky ones, defang them, and put these into a phishing campaign ...
Continue Reading

Massive Google Doc Phishing Attack Propagated Through Social Engineering

Think Before You Click On Random Google Doc Invitation Links A very convincing Google Docs phishing scheme raced through the internet yesterday, looking like it came from someone you ...
Continue Reading

Ransomware Causes 90-day Downtime And 700K Damages For Law Firm

PROVIDENCE, R.I. — Cybercriminals held a Providence law firm hostage for months by encrypting its files and demanding $25,000 in ransom paid in Bitcoin to restore access, according to a ...
Continue Reading

Northrop Grumman can make a stealth bomber – but falls for W-2 phishing attack

US military contractor Northrop Grumman notified their employees that hackers managed to gain access to their W-2 tax records. As The Register just reported, the makers of America’s ...
Continue Reading

Newark City Hall Computers Infected With Ransomware

NEWARK, N.J. (CBSNewYork) — . The City of Newark’s computer system has been disabled by hackers demanding thousands in ransom money, according to a published report. Hackers are demanding ...
Continue Reading

Cyber Insurer Beazley Sees New Phishing Threats Emerge

New York, April 25, 2017 - Beazley, a pioneer in cyber and data breach response insurance, today released its Beazley Breach Insights – April 2017 findings based on its response to client ...
Continue Reading

French Presidential Candidate Target Of Russian Hacker Phishing Attack

The French presidential election has been hit with a case of déjà vu. Emmanuel Macron's campaign said its staff received phishing emails meant to steal their passwords. Trend Micro said ...
Continue Reading

This Week's Top "In The Wild" Phishing Attacks

And here are this week's Top 10 "In The Wild" phishing attacks that we received from our customers by employees clicking the Phish Alert Button and sending the email to us for analysis. ...
Continue Reading

And Just When You Thought Locky Ransomware Had Disappeared...

Locky ransomware reappeared with a vengeance Friday, this time not using Office documents combined with social engineering to have the user enable macros, but with a PDF that has a Word ...
Continue Reading

[ALERT] Aaron Hernandez Death Phishing Scams

Low-life scum is exploiting the deaths of famous people, such as the suicide yesterday of former N.E. Patriots player Aaron Hernandez.
Continue Reading

First Quarter 2017 Top-Clicked Phishing Email Subjects [INFOGRAPHIC]

KnowBe4 customers run millions of phishing tests per year, and we report frequently on the top-clicked phishing topics so that our customers know what the highest-risk phishing templates ...
Continue Reading

Scammers Phishing for financial credentials on Twitter

Steve Ragan at CSO wrote: "Scammers are using Twitter as a vehicle to target people looking for customer support or asking general questions. They interject themselves into legitimate ...
Continue Reading

Cybersecurity IQ: Americans Have Trouble Recognizing Phishing Attacks

A new Pew Research Center survey titled "What the Public Knows about Cybersecurity." tallied responses from 1,055 adults last year about their understanding of concepts important to ...
Continue Reading

Which phishing emails fooled the most people? [INFOGRAPHIC]

Kevin Mitnick, our Chief Hacking Officer forwarded this great poster to me he found on Twitter today: "Which phishing emails fooled the most people?" Share it with your users!
Continue Reading

Scam Of The Week: The Evil Airline Phishing Attack

Our friends at Barracuda run their Email Threat Scanner over hundreds of thousands of customer mailboxes and discovered a highly effective phishing attack that tricks a whopping 90% of ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews