Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

View Topics

Social Engineering Alert: Missed Call From A Mystery Number?

Feb 3, 2014 1:59:00 PM By Stu Sjouwerman
TechCrunch wrote: "The people who read our site are a pretty savvy lot. You know not to accept checks from distant princes. You can spot a phisher from a mile away. But here’s one that ...
Continue Reading

Scam Of The Week: Funeral Notification Phishing Attack

Jan 29, 2014 4:33:00 PM By Stu Sjouwerman
Another one to warn your employees about. The bad guys do not hesitate to exploit the most basic fears of people; the sudden death of a loved one. The message claims to be from a funeral ...
Continue Reading

Arg The Cat O Nine Tails For Careless Clickers

Jan 25, 2014 11:17:00 AM By Stu Sjouwerman
Arg! The Cat O' Nine Tails For Careless Clickers!
Continue Reading

SHOCKER: Point-Of-Failure Phishing Training Does Not Work

Jan 22, 2014 12:58:00 PM By Stu Sjouwerman
The Govinfosecurity site just reported on some very interesting scientific research that finds so-called "embedded training" is ineffective. Let's quickly define "embedded", they chose ...
Continue Reading

The History Of Hacking In 5 Minutes For Dummies

Jan 12, 2014 12:40:00 PM By Stu Sjouwerman
What do you do when you need to explain the history of hacking to a busy non-technical manager in five minutes or less? Here is an attempt to make this extremely complex subject into a ...
Continue Reading

Eastern European Hackers Hit Target Phish Out 40M Credit Cards

Dec 19, 2013 8:16:00 AM By Stu Sjouwerman
During the Black Friday shopping week, tens of millions of credit and debit card records were "phished" out of Target. The data breach was nationwide, and has extended for as far as ...
Continue Reading

Interesting info on phishing and social engineering on 60 minutes

Dec 16, 2013 9:57:00 AM By Stu Sjouwerman
Last weekend, 60-minutes had a special about the NSA which spoke out on Snowden and spying. The headline was: "The NSA gives unprecedented access to the agency's HQ and, for the first ...
Continue Reading

10 Social Engineering Predictions for 2014

Dec 7, 2013 1:36:00 PM By Stu Sjouwerman
Here are 10 predictions for 2014, all cyber attacks using social engineering to penetrate the network. Have fun reading, and I will try to report back in 12 months which ones came out as ...
Continue Reading

Ponemon: Phishing part of 50% of APT's

Dec 4, 2013 4:10:00 PM By Stu Sjouwerman
Continue Reading

The Antivirus Industry’s Dirty Little Secret

Nov 28, 2013 8:46:00 AM By Stu Sjouwerman
[Updated 5/1/2016]. The Antivirus industry has a dirty little secret that they really don’t want anyone to know. Despite the claims of their marketing departments, their products are not ...
Continue Reading

How To Create Strong, Complex Passwords to Protect Your Organization

Nov 19, 2013 2:20:00 PM By Stu Sjouwerman
Continue Reading

A Serious Legal Liability: Bad or No Security Awareness Training

Oct 28, 2013 7:45:00 AM By Stu Sjouwerman
Please read this article and then forward it to the head of your legal department or the person in your organization who is responsible for compliance. Recently, the Department of Health ...
Continue Reading

Is Your Security Awareness Training Program Broken?

Sep 17, 2013 4:39:00 PM By Stu Sjouwerman
Steve Ragan over at CSO Magazine wrote:
Continue Reading

Scam Of The Week: "U.S. Starts Bombing Syria"

Sep 7, 2013 3:13:00 PM By Stu Sjouwerman
This one is crafty. There is a fake CNN spam being sent with a subject that reads: "The United States began bombing!" in Syria, but clicking on it will likely result in the workstation ...
Continue Reading

Electronic ID cards join fight against phishing attacks

Aug 26, 2013 3:59:00 PM By Stu Sjouwerman
Phishing attacks are believed to have hit 37.3 million people last year, escalating online password theft 300%. To fight back against this type of cyberattack, a team of researchers at ...
Continue Reading

Cyber risk weighs heavy on minds of execs

Aug 21, 2013 4:26:00 PM By Stu Sjouwerman
Tony Bradley at CSO Mag has a good analysis: " There is good news and bad new stemming from the Lloyd’s of London Risk Index 2013 report. The good news is that cyber risk is gaining more ...
Continue Reading

Are Your Email Addresses On A Russian Phishing Site?

Aug 18, 2013 11:34:00 AM By Stu Sjouwerman
We are finding many U.S. commercial email addresses at the Russianemailsworld.boommer.ru website. It is really a 'staging' area for emails to be posted by the criminal underground. They ...
Continue Reading

Scam Of The Week: Christian Singles

Jul 28, 2013 1:21:00 PM By Stu Sjouwerman
Continue Reading

Employees the Weakest Link of Cyber Security, Report Finds

Jul 22, 2013 10:31:00 AM By Stu Sjouwerman
Antivirus company Bitdefender reported something important. Here is their blog post of July 17, 2003.
Continue Reading

Congressional Aides Targeted By Spear-phishing Attacks

Jul 19, 2013 10:05:00 AM By Stu Sjouwerman
Reuters just reported that Congressional aides in the Senate and House of Representatives said on Thursday that they were notified of a potential security risk involving email and other ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews