Russia Weaponizes Israel-Hamas Conflict in Targeted Phishing Attack

Dec 12, 2023 12:18:27 PM By Stu Sjouwerman

Researchers at IBM X-Force are tracking a phishing campaign that’s using themes related to the Israel-Hamas war to deliver Headlace, a backdoor exclusively used by the suspected Russian ...

Russian Hackers Indicted for Phishing Attacks Against U.S. and Allies

Dec 11, 2023 10:34:40 AM By Stu Sjouwerman

The US Justice Department has indicted two individuals for launching spear phishing attacks against the US, the UK, Ukraine and various NATO member countries on behalf of the Russian ...

Phishing Defense: Train Often to Avoid the Bait

Dec 8, 2023 3:40:51 PM By Roger Grimes

Surveys, unfortunately, show that the vast majority of organizations do little to no security awareness training. The average organization, if it does security awareness training, does it ...

Nearly Every CIO Identifies at Least One Cyber Threat as a Risk to their Business

Dec 8, 2023 3:40:05 PM By Stu Sjouwerman

When 97% of CIOs all see things the same way, it’s probably a sign to take the risk of cyber threats seriously – a problem new data shows is only going to get worse in the next five years.

Phishing-Resistant MFA Will Not Stop Phishing Attacks

Dec 7, 2023 10:25:31 AM By Roger Grimes

You would be hard-pressed to find an author and organization (KnowBe4) that has pushed the use of phishing-resistant multi-factor authentication (MFA) harder.

Don't Be Fooled By This Sneaky Disney+ Phishing Scam

Dec 6, 2023 2:23:33 PM By Stu Sjouwerman

A callback phishing campaign is impersonating Disney+ with phony invoices, according to researchers at Abnormal Security. The phishing emails targeted individuals at 22 organizations.

New York Unit of Worlds Largest Bank Becomes Ransomware Victim

Dec 6, 2023 2:23:26 PM By Stu Sjouwerman

The ransomware attack on ICBC Financial Services caused disruption of trading of U.S. Treasuries and marked a new level of breach that could have massive repercussions.

Financial Institutions are the Most Affected by Phishing Attacks and Scams

Dec 5, 2023 11:38:56 AM By Stu Sjouwerman

New data shows how the overwhelming majority of phishing attacks on financial institutions dwarf every other industry sector by as much as a factor of 30-to-1.

PDFs: Friend or Phishing Foe? Don't Get Caught by the Latest Scam Tactic

Dec 5, 2023 11:38:52 AM By Stu Sjouwerman

Researchers at McAfee warn that attackers are increasingly utilizing PDF attachments in email phishing campaigns.

Phishing Kits Undergo an Evolution in Feature Set, Demand, and Branding

Dec 4, 2023 10:33:44 AM By Stu Sjouwerman

Now being commonly referred to as “Scama” – short for Scamming Method – these kits are being sold promoting highly advanced feature sets, turning the novice scammer into a pro.

Guarding Against the Rise of QR Code Phishing Attacks: How to Protect Yourself and Your Organization

Dec 4, 2023 10:33:41 AM By Stu Sjouwerman

In the ever-evolving landscape of cyber threats, scammers and hackers are relentless in exploiting every avenue of communication. From emails to texts, calls to QR codes, malicious actors ...

[On-Demand Webinar] Combatting Rogue URL Tricks: Quickly Identify and Investigate the Latest Phishing Attacks

Dec 4, 2023 8:00:00 AM By Stu Sjouwerman

Everyone knows you shouldn’t click phishy links. But are your end users prepared to quickly identify the trickiest tactics bad actors use before it’s too late? Probably not.

Security Awareness Training Can Help Defeat Deepfake and AI Phishing

Dec 1, 2023 12:26:58 PM By Roger Grimes

There is no doubt that more pervasive deepfake and AI technologies will make for more realistic, sophisticated, phishing attacks, and add to an already huge problem.

Vishing Gang Takes Victims for “Tens of Millions” Using Little More than Social Engineering

Dec 1, 2023 12:26:52 PM By Stu Sjouwerman

Czech and Ukrainian police have arrested six individuals responsible for a call center-based vishing scam designed to trick victims into thinking they were already victims of fraud.

The Israel-Hamas Conflict is the Latest Example of Phishing Attacks Taking Advantage of Current Events

Nov 30, 2023 11:12:12 AM By Stu Sjouwerman

Using something as simple as an attachment with an Israel/Hamas-related filename seems to be all it takes for new social engineering attacks disguised as donation confirmations.

Criminals Are Cautious About Adopting Malicious Generative AI Tools

Nov 30, 2023 11:12:08 AM By Stu Sjouwerman

Researchers at Sophos have found that the criminal market for malicious generative AI tools is still disorganized and contentious.

Top Four Security Tips for Cyber Safety on National Computer Security Day

Nov 30, 2023 8:00:00 AM By Erich Kron

To celebrate National Computer Security Day, which is recognized on November 30 every year, KnowBe4 encourages all IT and security professionals to train their workforce how to stay safe ...

No One Knows How Online Pharmacy Company was Hit with a Data Breach Impacting 2.3 Million Customers

Nov 29, 2023 10:56:21 AM By Stu Sjouwerman

This is a cautionary tale of both how your data can legally end up in the hands of an organization you never intended and how victims can be largely left in the dark post-breach.

QR Code Phishing Campaigns on the Rise

Nov 29, 2023 10:55:48 AM By Stu Sjouwerman

There’s been a “precipitous rise” in QR code phishing campaigns in 2023, according to Matthew Tyson at CSO.

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

Nov 29, 2023 8:00:00 AM By Stu Sjouwerman

Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.

Security Awareness Training Blog

Phishing Blog

View Topics