Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

View Topics

IT pros: Half Of Our CEOs Fall Victim To Phishing Scams

Jun 29, 2016 7:55:18 AM By Stu Sjouwerman
Executive boards need better cyber security training, given half of C-level execs fall victim to phishing attacks, according to research conducted by security firm AlienVault. The ...
Continue Reading

Scam Of The Week: Orlando Nightclub Phishing Attacks

Jun 17, 2016 5:56:24 PM By Stu Sjouwerman
Just when you think they cannot sink any lower, criminal internet scum is now exploiting the tragedy in Orlando. Unfortunately, from this spot I have been warning about these lowlifes ...
Continue Reading

New Type of Spear Phishing Directly Targeted at IT Pros

Jun 12, 2016 8:15:40 AM By Stu Sjouwerman
A member of the SpiceWorks IT forums reported he had received a new type of hybrid attack: first a phone call to his desk, followed up with a phishing email laced with malware, promoting ...
Continue Reading

Scam Of The Week: Nasty Two-factor Auth Text Hack

Jun 11, 2016 11:21:12 AM By Stu Sjouwerman
We all know that two-factor authentication (2FA) is much better than just simple user/password credentials. However, there is a nasty spoofing trick that bypasses 2FA if the user does not ...
Continue Reading

[INFOGRAPHIC] Don't Be The Victim Of A Cyberheist

Jun 2, 2016 2:48:57 PM By Stu Sjouwerman
We have created a new infographic for your users, as part of your ongoing security awareness training program. It's a few good reminders how to stay safe online, and to keep their ...
Continue Reading

Phishing Attacks Ramp Into 2016 With Major Increase

Jun 2, 2016 7:18:11 AM By Stu Sjouwerman
In its most recent Phishing Trends Report, the APWG noted a 250% increase in phishing sites between October 2015 and March 2016 — and the 2016 increase shows the never ending criminal ...
Continue Reading

The Nightmare of Exploits Past. How Phishing Attacks Use Old Vulnerabilities

May 28, 2016 11:57:16 AM By Stu Sjouwerman
By Eric Howes, KnowBe4's Principal Lab Researcher Remember .PIF files? If you're like us, the extension probably rings a bell somewhere deep in the dustiest recesses of your mind -- the ...
Continue Reading

[ALERT] Fraudsters Steal Tax, Salary Data From ADP. Are Employees At Risk?

May 18, 2016 10:33:03 AM By Stu Sjouwerman
It turns out that HR giant ADP, which provides payroll, tax and benefits administration for more than 640,000 companies, was vulnerable to an ID theft scam. The criminal hackers made off ...
Continue Reading

New evil android phishing trojans empty your bank account

May 12, 2016 7:29:31 AM By Stu Sjouwerman
Infragard warned that the FBI has identified two Android malware families, SlemBunk and Marcher, actively phishing for specified US financial institutions’ customer credentials. The ...
Continue Reading

The Hidden Dangers of .HTML Attachments

May 7, 2016 4:00:00 AM By Stu Sjouwerman
By Eric Howes, KnowBe4's Principal Lab Researcher Over the past six to nine months .DOC and .JS file attachments have dominated the news surrounding the rise in phishing attacks. The ...
Continue Reading

Verizon 2016 Data Breach Report: "Phishing Tops The List Of Increasing Concerns"

May 1, 2016 12:50:25 PM By Stu Sjouwerman
Verizon yearly does a comprehensive report on security and data breaches. It is excellent ammo to get budget approval for new-school security awareness training. Why? Hundreds of security ...
Continue Reading

[ALERT] 2016 Is A Ransomware Horror Show. Here's The Roundup Of 32 New Strains!

Apr 30, 2016 10:21:40 AM By Stu Sjouwerman
If you've been in the IT trenches over the past year, you've probably noticed the announcements of new strains of ransomware are accelerating. The research team at Proofpoint just ...
Continue Reading

The Phishing Attack That Came Out Of Zendesk

Apr 26, 2016 4:46:54 PM By Stu Sjouwerman
Yesterday, April 25 2016, we encountered a new phishing email being delivered through Zendesk. The credentials phish itself is a straightforward social engineering attack. The email body ...
Continue Reading

[ FTC ALERT ] Don't Get Scammed By Earthquake Phishing Emails

Apr 21, 2016 3:10:20 PM By Stu Sjouwerman
It's the old story. A disaster strikes and 24 hours later you get emails with urgent request for help as hundreds of wounded victims need food, water and shelter. And the bad guys are at ...
Continue Reading

Phishing Attacks Hit the C-Suite With High Value Scams [INFOGRAPHIC]

Apr 16, 2016 9:00:38 AM By Stu Sjouwerman
OK, here is great ammo to get more IT security budget. Why? This article and infographic make it real to the C-suite that they themselves have a big phishing target on their back. You all ...
Continue Reading

Pinellas Man Falls Victim To Ransomware

Apr 14, 2016 10:00:00 AM By TAMPA BAY, FL
Pinellas County resident Scott Germak thought he was getting free Tampa Bay Rays tickets based on a phishing email that appeared to be a legitimate message coming from GTE Financial, his ...
Continue Reading

Scam Of The Week: TurboTax Phishing Attack

Mar 19, 2016 1:40:48 PM By Stu Sjouwerman
It's tax season and the bad guys are in full swing. They try to get your Accounting or HR team to send over the W-2s of all employees, but they also target employees in the office and/or ...
Continue Reading

New KnowBe4 Phishing Templates

Mar 18, 2016 2:27:45 PM By Stu Sjouwerman
We have added a dozen new phishing templates in the past few days. All are based on actual bad guy phishing emails seen in the last 2 weeks. At least one is less than 24 hours old. Most ...
Continue Reading

IRS Warns Against A Widespread CEO Fraud Phishing Scam

Mar 4, 2016 3:02:57 PM By Stu Sjouwerman
OK, heads up! This tax season there is a widespread new scam that specifically targets your HR and Accounting professionals. They get an urgent email from "the CEO" who asks them for all ...
Continue Reading

Fresh KnowBe4 2016 Datasheet with new Phish Alert button

Feb 12, 2016 10:30:36 AM By Stu Sjouwerman
We have just published a brand new 2016 datasheet that includes all the main features added over the last 12 months. What I'm highlighting is this exciting free option if you use Outlook ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews