Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

CyberheistNews Vol 5 #9 Mar 3, 2015 How To Get The OK To Phish Your Own Employees

CyberheistNews Vol 5 #9 Mar 3, 2015 How To Get The OK To Phish Your Own Employees IT people responsible for network security talk to us all the time. Almost all of them agree that ...
Continue Reading

How To Get The OK To Phish Your Own Employees

IT people responsible for network security talk to us all the time. Almost all of them agree that end-users are their number one headache and managing that problem continues to be a big ...
Continue Reading

Scam Of The Week: Death In The Family

Cybercrime is innovating on a known and disgusting scam; preying on people that have recently suffered a loss. Used to be that old time scam artists read the obituary notices in the ...
Continue Reading

More Phishing Attacks Going After Financial Data

Kaspersky recently reported that 28.8 percent of phishing attacks in 2014 tried to steal financial data from consumers. The results show how cybercrime has shifted its focus to payment ...
Continue Reading

New KnowBe4 Console V4.0 Released

We are excited to announce Version 4.0 of the KnowBe4 console with some exciting new phishing features! Here are the two main highlights and the rest of the list is below. - Random ...
Continue Reading

Anthem Hack Caused By A Phished System Admin?

The foreign hackers who stole up to 80 million records from Anthem social engineered their way into the company's network by obtaining the credentials of five tech workers. Thomas Miller, ...
Continue Reading

Antivirus Products Are Slow at Making Malware Signatures

The traditional malicious software detection approach is far from being sufficient, especially in corporate environments. More and more it's found that antivirus products can take months ...
Continue Reading

Anthem Breach Began with Phishing of Employees

Last updated 2/12/2015 - The foreign hackers who stole up to 80 million records from Anthem social engineered their way into the company's network by obtaining the credentials of five ...
Continue Reading

Hacked Lawyers Office Sends Phishing Attack To Customers

An interesting new wrinkle in phishing attacks is in the wild as we speak. A system administrator reported the following on the spiceworks forum:
Continue Reading

Malware Hijacks Microsoft Outlook And Spreads Banking Trojan

I mentioned a few months ago that I expected something like this, but it has materialized faster than I expected. Trend Micro researchers discovered a new version of the Dyre banking ...
Continue Reading

Brand new ransomware strain encrypts files from memory

Security researchers at venture-backed Fairfax, Virginia-based Invincea have discovered a new Russian ransomware strain they called "Fessleak" which delivers its malicious code straight ...
Continue Reading

Slideshow: The Worst Of The Worst Phishing Scams

www.CSOonline.com provides news, analysis and research on a broad range of security and risk management topics. Areas of focus include information security, physical security, business ...
Continue Reading

Graphics Make Phishing Attacks Work Better

A successful phishing attack has several elements that all together convince the victim that the email is legit and that they need to act on the message. One of these elements sems to be ...
Continue Reading

Fake Chrome Update Phishing Email Installs Ransomware

Jerome Segura at MalwareBytes was the first to report about a phishing attack that uses a fake "Chrome Update" to trick end-users into installing ransomware on their workstation. So, I ...
Continue Reading

RansomWeb: Cyber Criminals Hold Whole Website Hostage

Now this is a whole new wrinkle in criminal ransomware. Malicious hacker crews have started taking over whole websites, injecting some code to file-by-file first encrypt and then decrypt ...
Continue Reading

Scam Of The Week Child Predator Phishing Scam

Child Predator Phishing Scam Preys On Parents Fears Please send a link to this blog post to your friends and family right away?
Continue Reading

Scam Of The Week: LinkedIn Support Phishing Emails

The scam is at least 15 years old if not more, but unfortunately this type of social engineering still works. Remind your users one more time that emails like this can hit their inbox at ...
Continue Reading

FBI Alert: Ransomware Infection Leads To Wire Transfer Fraud

OK, Heads-up! Here is the deal. The FBI and the Internet Crime Complaint Center (IC3) two days ago warned about a new version of a man-in-the-middle scam that targets your CEO, CTO, CFO, ...
Continue Reading

A new strain of "ransomware" is striking

Mitch Lipka of CBS Moneywatch wrote:
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews