Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

New evil android phishing trojans empty your bank account

Infragard warned that the FBI has identified two Android malware families, SlemBunk and Marcher, actively phishing for specified US financial institutions’ customer credentials. The ...
Continue Reading

The Hidden Dangers of .HTML Attachments

By Eric Howes, KnowBe4's Principal Lab Researcher Over the past six to nine months .DOC and .JS file attachments have dominated the news surrounding the rise in phishing attacks. The ...
Continue Reading

Verizon 2016 Data Breach Report: "Phishing Tops The List Of Increasing Concerns"

Verizon yearly does a comprehensive report on security and data breaches. It is excellent ammo to get budget approval for new-school security awareness training. Why? Hundreds of security ...
Continue Reading

[ALERT] 2016 Is A Ransomware Horror Show. Here's The Roundup Of 32 New Strains!

If you've been in the IT trenches over the past year, you've probably noticed the announcements of new strains of ransomware are accelerating. The research team at Proofpoint just ...
Continue Reading

The Phishing Attack That Came Out Of Zendesk

Yesterday, April 25 2016, we encountered a new phishing email being delivered through Zendesk. The credentials phish itself is a straightforward social engineering attack. The email body ...
Continue Reading

[ FTC ALERT ] Don't Get Scammed By Earthquake Phishing Emails

It's the old story. A disaster strikes and 24 hours later you get emails with urgent request for help as hundreds of wounded victims need food, water and shelter. And the bad guys are at ...
Continue Reading

Phishing Attacks Hit the C-Suite With High Value Scams [INFOGRAPHIC]

OK, here is great ammo to get more IT security budget. Why? This article and infographic make it real to the C-suite that they themselves have a big phishing target on their back. You all ...
Continue Reading

Pinellas Man Falls Victim To Ransomware

Pinellas County resident Scott Germak thought he was getting free Tampa Bay Rays tickets based on a phishing email that appeared to be a legitimate message coming from GTE Financial, his ...
Continue Reading

Scam Of The Week: TurboTax Phishing Attack

It's tax season and the bad guys are in full swing. They try to get your Accounting or HR team to send over the W-2s of all employees, but they also target employees in the office and/or ...
Continue Reading

New KnowBe4 Phishing Templates

We have added a dozen new phishing templates in the past few days. All are based on actual bad guy phishing emails seen in the last 2 weeks. At least one is less than 24 hours old. Most ...
Continue Reading

IRS Warns Against A Widespread CEO Fraud Phishing Scam

OK, heads up! This tax season there is a widespread new scam that specifically targets your HR and Accounting professionals. They get an urgent email from "the CEO" who asks them for all ...
Continue Reading

Fresh KnowBe4 2016 Datasheet with new Phish Alert button

We have just published a brand new 2016 datasheet that includes all the main features added over the last 12 months. What I'm highlighting is this exciting free option if you use Outlook ...
Continue Reading

Scam Of The Week: Phish With Hidden Sting

As you may have heard, KnowBe4 has released a no-charge Outlook Add-in that allows employees to report phishing attacks to their Incident Response team with just one click. It's called ...
Continue Reading

Scam Of The Week: Massive LinkedIn Spam Steals Passwords

"I feel like a complete idiot. I just got taken by a LinkedIn spam that may have just stolen my banking password." These words dropped in my inbox, written a while ago by Dan Tynan, ...
Continue Reading

ISIS "Celebrates" Paris With Video - Inoculate Users Against Phishing Attacks

OK, bad news first. The world is shocked and angry about the attacks in Paris. That often causes emotional reactions, which the bad guys on the Internet are exploiting. ISIS has released ...
Continue Reading

How to Phish Your Own Users And Why

Over the last few years, thousands of organizations in the U.S have started to phish their own users. IT pros have realized that doing this is urgently needed as an additional security ...
Continue Reading

WSJ Gives Powerful Ammo For More InfoSec Budget

A front page article in the Wall Street Journal describes the escalating arms race for a possible cyberwar. This article is a great way to get C-level execs a crash course about ...
Continue Reading

Teach your execs well: Stop phishing in the C-suite

J. Peter Bruzzese is an InfoWorld columnist and five-time-awarded Microsoft MVP (current technical expertise Office 365, previous four years Exchange). He is a technical speaker, author ...
Continue Reading

Postal employees fall to internal phishing sting

Aaron Boyd wrote: "Determined not to fall victim to another network breach, the U.S. Postal Service is phishing its own employees, testing their ability to recognize a scam before it's ...
Continue Reading

[INFOGRAPHIC] Men Twice As Likely To Fall For Phishing Attacks

In the never ending battle of the sexes, it looks as though women are winning the phishing fight according to new research from KnowBe4. In an analysis done by KnowBe4 of 201,755 phishing ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews