Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

KnowBe4 Blog

Phishing

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

View Topics

July 23, 2020 Perry Carpenter

Testing 1… 2… 3…

Let’s face it, very few organizations thought they’d still be in workforce limbo as we near the six-month mark of the pandemic. This situation has stretched many organizations to adopt ...

July 23, 2020 Stu Sjouwerman

I Testified Before U.S. Congress About COVID-19 Phishing Scams

Yesterday, July 21, 2020 I testified before U.S. congress about COVID-19 phishing scams. I was invited by the Senate Commerce Committee's subcommittee on manufacturing, trade, and ...

July 22, 2020 Stu Sjouwerman

“Service Desk” Phishes in Enterprise Waters

A phishing campaign is impersonating an IT help desk and abusing legitimate cloud services to fool users, according to Ax Sharma at BleepingComputer. The emails are sent from the ...

July 21, 2020 Stu Sjouwerman

Emotet Returns Using Familiar Phishing Tactics

Emotet, the venerable commodity banking Trojan, is being actively distributed again, according to researchers at Malwarebytes. Emotet’s botnets began sending out phishing emails on July ...

July 20, 2020 Stu Sjouwerman

New “servicedesk.com” Phishing Attack Uses Microsoft, IBM Cloud Services to Add Legitimacy

Focused on stealing victim credentials, this new attack uses a number of tactics to establish credibility, avoid raising red flags, and ensure they get the victim’s real credentials.

July 20, 2020 Stu Sjouwerman

Phishing Attack in Finland Uncovers Sophisticated Smishing Scheme

The Helinski Police Department is investigating a sophisticated smishing scheme in which attackers were able to steal more than 200,000 euros (US$228,736), Yle reports. The scammers sent ...

July 17, 2020 Stu Sjouwerman

Phorpiex Botnet Attacks Spike So High in June, 2% of *All* Organizations Were Hit

The rise in the use of this dangerous botnet, notorious for distributing malware via phishing campaigns and responsible for fueling Sextortion scams, should put organizations on edge.

July 17, 2020 Stu Sjouwerman

Impermissible: Be Suspicious of Permission Requests

Users need to be wary of requests for information or permissions, even if they appear to come from legitimate sources, according to Don MacLennan, Senior Vice President of Engineering and ...

July 16, 2020 Roger Grimes

Like Twitter, MFA Will Not Save You!

I’m sure we are all interested in the latest Twitter hack. As the author of the soon to be released Wiley book called Hacking Multifactor Authentication, I have to laugh at the “experts” ...

July 16, 2020 Stu Sjouwerman

Microsoft Warns of Application-based Phishing

Microsoft has issued an advisory warning about “consent phishing,” or application-based phishing attacks that rely on users granting permissions to malicious apps. These attacks aren’t as ...

Subscribe

Subscribe To Our Blog

Know Who Your AI Agents Are. Control What They Can Do.

Posts By Topic

View all topics >