Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

View Topics

Scam Of The Week: The 1 Billion Yahoo Hack

Dec 18, 2016 8:15:13 AM By Stu Sjouwerman
This is getting old. It's all over the press... again. Here is a Reuters article where I am quoted, which covers the most recent billion-record Yahoo hack. Some people asked me after our ...
Continue Reading

KnowBe4 and Barracuda Team Up to Educate and Protect Users Against Phishing Attacks

Dec 17, 2016 9:37:33 AM By Stu Sjouwerman
KnowBe4, the most popular security awareness training and simulated phishing platform, and Barracuda Networks, Inc. (NYSE: CUDA), a leading provider of cloud-enabled security and data ...
Continue Reading

And Another Billion More Yahoo Accounts Hacked

Dec 14, 2016 9:40:21 PM By Stu Sjouwerman
In the September/ October timeframe this year it became clear that Yahoo had lost more than 500 million records which was the biggest hack of the year. Who knew that they would top ...
Continue Reading

Phishing from the Middle: Social Engineering Refined

Dec 8, 2016 7:55:05 AM By Stu Sjouwerman
By Eric Howes, KnowBe4 Principal Lab Researcher. Phishing attacks have long been associated with malicious emails that spoof well-known institutions in order to trick users into coughing ...
Continue Reading

Phishing Reply Tracking Is Now Available for All KnowBe4 Customers

Dec 6, 2016 10:48:48 AM By Stu Sjouwerman
Two of the big cybersecurity attacks are the CEO Fraud (aka Business Email Compromise) which has caused $3.4 billion in damages as well as the W-2 Scams which social engineer ...
Continue Reading

Kaspersky: DDoS Often Smokescreen For Phishing Attack

Dec 4, 2016 9:13:03 AM By Stu Sjouwerman
Distributed denial of service attacks, also known as DDoS, are becoming a major threat. They can bring websites and networks down, and generally make a lot of noise demanding attention. ...
Continue Reading

Phishing Attack Hits Saudi Govt Networks With Disk-Wiping Malware

Dec 3, 2016 11:10:07 AM By Stu Sjouwerman
Hackers penetrated six Saudi Arabian government agencies including its General Authority of Civil Aviation, and bricked thousands of computers with the well-known Shamoon disk-wiper ...
Continue Reading

10 Ways To Avoid Holiday Scams

Nov 23, 2016 3:55:35 PM By Stu Sjouwerman
With the biggest cybercriminal hacking holidays of the year upon us, it's time for a reminder of red flags to pay attention to when shopping either online or in brick-and-mortar stores.
Continue Reading

New Phishing Category: Controversial/NSFW*Offensive Language*

Nov 18, 2016 1:09:18 PM By Stu Sjouwerman
We get thousands of real phishing emails in, reported to us by customers using the free KnowBe4 Phish Alert Button. On a daily basis, these reported phishing emails get analyzed by the ...
Continue Reading

KnowBe4’s Phish Alert Button Now Works With G Suite!

Nov 17, 2016 1:14:42 PM By Stu Sjouwerman
Do your users know what to do when they receive a suspicious email? Should they call the help desk, or forward it? Should they forward to IT including all headers? Delete and not report ...
Continue Reading

The LinkedIn Phishing Attack: How They Did It

Nov 11, 2016 5:08:46 PM By Stu Sjouwerman
by Eric Howes (Principal Lab Researcher) & Ryann Falke (Sales Development Representative) Last week we documented several interesting credentials phishes delivered through LinkedIn ...
Continue Reading

City Of El Paso Victim Of 3 Million Dollar Phishing Scam

Nov 5, 2016 3:36:25 PM By Stu Sjouwerman
During a news conference Wednesday afternoon, city officials revealed that cybercriminals pretending to be a vendor scammed the city's Accounts Receivable Department out of about $3 ...
Continue Reading

Yes, that email is really from LinkedIn. And, yes, it's really malicious.

Nov 4, 2016 7:29:23 AM By Stu Sjouwerman
By Eric Howes, KnowBe4 Principal Lab Researcher. Several months ago we blogged about a startling discovery by threat researchers at Proofpoint: the bad guys had figured out a way to turn ...
Continue Reading

How Podesta got hacked: HelpDesk said 'Password' phishing email was real

Oct 29, 2016 10:09:40 AM By Stu Sjouwerman
John Podesta, Chairman of the 2016 Hillary Clinton presidential campaign was a victim of social engineering and rushed advice from his IT helpdesk. It's a comedy of errors. The helpdesk ...
Continue Reading

A Slick Phish with a Hidden Surprise

Oct 20, 2016 4:44:22 PM By Stu Sjouwerman
By Eric Howes, KnowBe4 Principal Lab Researcher. Yesterday one of our customers was hit with a highly targeted phishing attack -- one of the slicker attacks we've seen in a while. Once we ...
Continue Reading

Brazen: Phishing Attacks The Bad Guys Send When No One's Looking

Sep 28, 2016 4:21:56 PM By Stu Sjouwerman
When we talk with folks outside the security industry about what we see from the bad guys on a daily basis, we often get the response, "Wow! That's really sneaky." And it's true. The bad ...
Continue Reading

These 500 Million Hacked Yahoo Accounts Are A Phishing Paradise. Warn Your Users!

Sep 23, 2016 7:55:54 AM By Stu Sjouwerman
It's all over the press. Here is a quote from Reuters: "Yahoo Inc said on Thursday information associated with at least 500 million user accounts was stolen from its network in 2014 by ...
Continue Reading

Scam Of The Week: Apple Store Phishing Attack Goes For Whole Enchilada

Sep 21, 2016 4:49:55 PM By Stu Sjouwerman
Phishing attacks using false Apple Store email messages, fake landing pages and sometimes fake login pages are still a very popular attack vector. They still make it through all the ...
Continue Reading

Bad Guy FAIL! or, When a Simple Credentials Phish Goes Horribly Wrong

Sep 21, 2016 1:49:22 PM By Stu Sjouwerman
By Eric Howes, KnowBe4 Principal Lab Researcher. Anyone who works a job in the computer security industry inevitably develops a kind of dark appreciation for the mad skills so often ...
Continue Reading

Reported Phishes of the Week

Sep 20, 2016 3:58:20 PM By Stu Sjouwerman
KnowBe4's Templates Mistress Katie has been busy again adding a new batch of phishing templates to the collection of "System Templates" available to active subscribers.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews