Facebook Work-From-Home “Job” Posting Scam Goes the Extra Mile to Trick Victims

Jan 19, 2024 12:50:46 PM By Stu Sjouwerman

A new job posting scam found by IT security company Qualysys is focused on capturing victim’s identity details, accessing victim’s Facebook accounts, and committing fraud. In this new ...

More Than Half of Data Breaches in the U.K.’s Legal Sector are Due to Insider Error

Jan 18, 2024 2:32:22 PM By Stu Sjouwerman

A new analysis of data breaches in the United Kingdom's legal sector shows that organizations need to be looking inward more and look for ways to elevate the security awareness of ...

Ninety-Four Percent of Organizations Sustained Phishing Attacks Last Year

Jan 18, 2024 8:18:57 AM By Stu Sjouwerman

A survey by Egress has found that 94% of organizations were hit by phishing attacks in 2023, Infosecurity Magazine reports. Additionally, 91% of firms experienced data loss and ...

Malicious APKs Drain Bank Accounts

Jan 16, 2024 2:00:08 PM By Stu Sjouwerman

A phishing campaign is targeting Chinese users in an attempt to distribute malicious apps, according to researchers at Palo Alto Networks’s Unit 42.

Cryptocurrency Drainer Distributed Through Phishing

Jan 16, 2024 1:59:42 PM By Stu Sjouwerman

Mandiant has published a report on “CLINKSINK,” a cryptocurrency Drainer-as-a-Service (DaaS) that’s targeting users of the Solana currency.

LinkedIn is Being Used for Dating – It’s a Recipe for Disaster

Jan 16, 2024 10:20:50 AM By Stu Sjouwerman

A new article explains how business professionals are beginning to be not-so-professional and seeking to make personal connections. It’s only a matter of time before cybercriminals jump ...

Analysis of Phishing Emails Shows High Likelihood They Were Written By AI

Jan 15, 2024 10:28:06 AM By Stu Sjouwerman

It’s no longer theoretical; phishing attacks and email scams are leveraging AI-generated content based on testing with anti-AI content solutions.

Women CyberSecurity Society Targeted by Smishing Campaign

Jan 15, 2024 8:23:44 AM By Stu Sjouwerman

The Canada-based Women CyberSecurity Society (WCS2) has warned that its leadership, members, and volunteers are being targeted by an SMS phishing (smishing) campaign, IT World Canada ...

Three-Quarters of Organizations Have Experienced Phishing Attack in the Last 12 Months

Jan 15, 2024 8:23:41 AM By Stu Sjouwerman

Regardless of whether your environment remains on-premise, resides in the cloud, or is a hybrid configuration, new data makes it clear that your biggest risk is phishing attacks.

[New Phishing Template] Formula 1 Exclusive: Gene Haas on Guenther Steiner's Departure

Jan 11, 2024 3:51:51 PM By Stu Sjouwerman

In a surprising turn of events for Formula 1 enthusiasts, the Haas F1 Team is grappling with the departure of its widely-respected Team Principal, Guenther Steiner. Let's dive into the ...

Beware of "Get to Know Me" Surveys

Jan 11, 2024 1:46:46 PM By Roger Grimes

Trained security awareness professionals are aware that whatever someone says about themselves and personal experiences can be used against them in a social engineering scam. It is always ...

Microsoft Takes the Lead in Q4 2023 for Alarming Phishing Attempts

Jan 11, 2024 1:46:12 PM By Stu Sjouwerman

Microsoft was the most impersonated brand last quarter, accounting for a third (33%) of all brand phishing attempts in October, November, and December 2023, according to Check Point’s ...

FTC Issues Warning About the Dangers of QR Code-Based Scams

Jan 11, 2024 1:45:50 PM By Stu Sjouwerman

The latest consumer alert posted by the federal trade commission (FTC) signals that the upticks in QR code-based scams are being seen by cybersecurity vendors are indeed a valid growing ...

Pikabot Malware Spreading Through Phishing Campaigns

Jan 10, 2024 2:52:40 PM By Stu Sjouwerman

Researchers at Trend Micro warn that a threat actor known as “Water Curupira” is distributing the Pikabot malware loader via widespread phishing campaigns.

Red Flags for Phishing: Verizon Outlines Latest Scams to Watch Out For

Jan 9, 2024 9:24:06 AM By Stu Sjouwerman

Verizon has published an article outlining various forms of social engineering attacks, including SMS/text messaging phishing (smishing), voice phishing (vishing), and spear phishing ...

Black Basta Ransomware Decryptor Released to Help Some Victims

Jan 5, 2024 1:19:14 PM By Stu Sjouwerman

A flaw found by security researchers in the encryption software allows victim organizations to use “Black Basta Buster” to recover some of their data – but there’s a catch.

Beware of Fraudulent Charge Messages

Jan 5, 2024 1:19:09 PM By Roger Grimes

Be careful of emails, SMS messages, or calls claiming to be from your bank about your card being used fraudulently. If this ever happens, call the phone number on the back of your card.

Phishing Reigns as the Most Likely and Most Feared Cyber Attack

Jan 5, 2024 9:00:05 AM By Stu Sjouwerman

With over half of organizations being the victim of password-based attacks in the last year, new data sheds light on the risk of phishing attacks and the use of password-based credentials.

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

Jan 4, 2024 8:00:00 AM By Stu Sjouwerman

Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.

Lockbit 3.0 Ransomware Disrupts Emergency Care at Multiple German Hospitals

Jan 3, 2024 10:57:52 AM By Stu Sjouwerman

Hitting three hospitals within a Germany-based hospital network, the extent of the damage in this confirmed ransomware attack remains undetermined but has stopped parts of operations.

Security Awareness Training Blog

Phishing Blog

View Topics