Despite Cybersecurity Improvements in UK Organizations, Attacks Still Persist

Apr 1, 2024 11:43:19 AM By Stu Sjouwerman

The UK government's third phase of research shows how well UK organizations have been improving their cybersecurity efforts but indicates that the risk from certain attacks have only been ...

Thread Hijacking Phishing Attack Targets Pennsylvania Journalist

Apr 1, 2024 11:43:16 AM By Stu Sjouwerman

A journalist in Pennsylvania was targeted by phishing attacks that involved thread hijacking, according to Brian Krebs at KrebsOnSecurity.

Russian Federation-backed threat group APT29 Now Targeting German Political Parties

Mar 29, 2024 12:07:37 PM By Stu Sjouwerman

New analysis of APT29’s (aka Cozy Bear) activities and their association with Russia’s Foreign Intelligence Service (SVR) has revealed suspected attempts to collect political intelligence.

Narwhal Spider Threat Group Behind New Phishing Campaign Impersonating Reputable Law Firms

Mar 29, 2024 12:07:32 PM By Stu Sjouwerman

Using little more than a well-known business name and a invoice-related PDF, the “NaurLegal” phishing campaign aims at installing malware trojans.

New Malware Loader Delivers Agent Tesla Remote Access Trojan Via Phishing

Mar 29, 2024 11:06:12 AM By Stu Sjouwerman

A new malware loader is delivering the Agent Tesla remote access Trojan (RAT), according to researchers at Trustwave SpiderLabs. The malware is distributed by phishing emails with ...

The Number of New Pieces of Malware Per Minute Has Quadrupled in Just One Year

Mar 27, 2024 1:03:56 PM By Stu Sjouwerman

The threat of novel malware is growing exponentially, making it more difficult for security solutions to identify attachments and links to files as being malware.

A Simple 'Payment is Underway' Phishing Email Downloads RATs from AWS, GitHub

Mar 27, 2024 1:03:46 PM By Stu Sjouwerman

Analysis of a new initial access malware attack shows how simple these attacks can be while also proving that malware can reside on legitimate repositories.

New Phishing-as-a-Service Kit Attempts to Bypass MFA

Mar 26, 2024 11:38:48 AM By Stu Sjouwerman

A Phishing-as-a-Service (PhaaS) platform called “Tycoon 2FA” has surged in popularity over the past several months, according to researchers at Sekoia. The phishing kit is notable for its ...

The Average Malicious Website Exists for Less Than 10 Minutes

Mar 25, 2024 1:50:14 PM By Stu Sjouwerman

A new Chrome update brings to light Google findings about malicious websites that have serious implications on detecting malicious links, spoofed brands and the use of legitimate web ...

There Is Only So Much Lipstick You Can Put on a Cybercriminal Troll

Mar 25, 2024 1:50:11 PM By Martin Kraemer

The one thing I love about our annual conference in Orlando, KB4-CON, is its thought-provoking nature. Year after year, the events team manages to keep a fine balance between product ...

FBI: Losses Due to Cybercrime Jump to $12.5 Billion as Phishing Continues to Dominate

Mar 25, 2024 8:00:00 AM By Stu Sjouwerman

The FBI’s Internet Crime Complaint Center (IC3) newly-released Internet Crimes Report provides an unbiased big picture of the cyber crimes that were the most used and most successful.

Social Engineering The #1 Root Cause Behind Most Cyber Crimes In FBI Report

Mar 21, 2024 11:37:14 AM By Roger Grimes

The following paragraphs were cited directly from my recent article highlighting social engineering. "Social engineering and phishing are involved in 70% to 90% of all successful ...

Ransomware Group “RA World” Changes Its’ Name and Begins Targeting Countries Around the Globe

Mar 21, 2024 11:37:10 AM By Stu Sjouwerman

The threat group "RA World" (formerly RA Group) has shifted from country-specific ransomware attacks to include specific industries via a new - not previously seen - method of extortion.

[Heads-Up] Phishing Campaign Delivers VCURMS RAT

Mar 21, 2024 8:37:17 AM By Stu Sjouwerman

Researchers at Fortinet are tracking a phishing campaign that’s distributing a new version of the VCURMS remote access Trojan (RAT).

Phishing Tops 2023’s Most Common Cyber Attack Initial Access Method

Mar 19, 2024 1:18:05 PM By Stu Sjouwerman

New analysis shows that the combination of phishing, email, remote access, and compromised accounts are the focus for most threat actors.

State-Sponsored Russian Phishing Campaigns Target a Variety of Industries

Mar 19, 2024 1:18:02 PM By Stu Sjouwerman

Researchers at IBM X-Force are monitoring several ongoing phishing campaigns by the Russian state-sponsored threat actor ITG05 (also known as “APT28” or “Fancy Bear”). APT28 has been tied ...

Phishing-as-a-Service Platforms LabHost and Frappo Help Threat Actors Target Canadian Banks

Mar 19, 2024 9:41:29 AM By Stu Sjouwerman

Analysis of attacks on banking institutions in Canada can be almost perfectly tied to the use and availability of phishing-as-a-service platforms, indicating increased use by threat ...

CISA: Healthcare Organizations Should Be Wary of Increased Ransomware Attacks by ALPHV Blackcat

Mar 18, 2024 10:14:00 AM By Stu Sjouwerman

A joint cybersecurity advisory published last week discusses ransomware attack impacts on healthcare, along with ALPHV’s attack techniques, indicators of compromise (IoCs) and proper ...

If Social Engineering Accounts for up to 90% of Attacks, Why Is It Ignored?

Mar 15, 2024 10:32:57 AM By Roger Grimes

Social engineering and phishing are involved in 70% to 90% of all successful cybersecurity attacks. No other initial root hacking cause comes close.

Sophos: Over 75% of Cyber Incidents Target Small Businesses

Mar 15, 2024 10:31:48 AM By Stu Sjouwerman

New analysis of incident data shows threat actors are evolving their attack techniques to take advantage of budget and resource-strapped small businesses.

Security Awareness Training Blog

Phishing Blog

View Topics