79% of Employee-Reported Phishing Emails Go Completely Undetected by Cybersecurity Solutions

Mar 15, 2023 1:43:39 PM By Stu Sjouwerman

As cybercriminals increasingly turn to malwareless phishing attacks, the ability for security solutions to correctly identify a malicious email is becoming more and more difficult.

Newest FBI Report Shows $10B in Losses Last Year Due to Internet Scams

Mar 14, 2023 2:15:30 PM By Stu Sjouwerman

The 2022 Internet Crime Report by the FBI reported at least $10.3 billion in losses due to internet scams last year.

One-Quarter of Users Fall for Online Scams Despite an Overconfidence in an Ability to Spot Them

Mar 10, 2023 9:46:46 AM By Stu Sjouwerman

A new survey of individuals across seven countries shows that users may have had luck on their side, as a majority aren’t sure about their device security or how to spot malicious sites ...

Google: Analysis of Cyberattacks Targeting Ukraine Shed Light on What a Cyberwar Strategy Looks Like

Mar 10, 2023 9:46:29 AM By Stu Sjouwerman

A look back at the last year of attacks on Ukraine by Google’s Threat Analysis Group (TAG) provides insight into attacks on NATO countries to gain a cyberspace advantage.

Use of Malware Decreases in Cyber Attacks as Exploit Usage Skyrockets

Mar 10, 2023 9:46:12 AM By Stu Sjouwerman

New data on cyberattacks from last quarter provides a lens of what kinds of attack techniques to expect to see from cyber attackers this year.

Phishing for Ring Customers

Mar 9, 2023 9:17:15 AM By Stu Sjouwerman

INKY warns that a phishing campaign is targeting users of the Ring video security system. The scammers are sending brief phishing emails instructing recipients to click on the attached ...

Half of all Sites Used in Phishing Attacks Impersonate Financial Institutions

Mar 8, 2023 9:24:04 AM By Stu Sjouwerman

As credential theft-focused phishing attacks continue to assist initial access brokers, new data shows banking fraud continues to be a material threat to individuals and businesses alike.

Google Phishing Pages Jump 1,560% YoY

Mar 8, 2023 9:23:56 AM By Stu Sjouwerman

Vade has released a report looking at phishing trends in 2022. The researchers say the top three most-impersonated brands last year were Facebook, Microsoft, and Google.

Financial Services Sector at Risk of More Significant Impacts of Email-Based Cyber Attacks

Mar 3, 2023 8:00:00 AM By Stu Sjouwerman

Financial services businesses are already in the sights of cybercriminals, and understanding how cyber attacks impact this sector specifically can help establish the need for improved ...

Customer Care Numbers as Phishbait

Mar 2, 2023 8:50:50 AM By Stu Sjouwerman

Researchers at CloudSEK have published a report looking at fraudulent customer service phone numbers in India. The researchers found around 20,000 of these phone numbers targeting users ...

NameCheap’s SendGrid Email Account Compromised, Used to Send Phishing Emails

Mar 1, 2023 1:52:16 PM By Stu Sjouwerman

Since phishing attacks need legitimacy to increase their deliverability, this latest twist shows how phishing scammers and hackers are working together to ensure phishing attacks continue.

Blind Eagle Goes Phishing

Feb 28, 2023 11:52:11 AM By Stu Sjouwerman

BlackBerry has published a report on a threat actor, Blind Eagle, also known as APT-C-36, which has been operating against targets in Ecuador and Colombia since at least 2019. Its most ...

Thousands of NPM Packages Used to Spread Phishing Links

Feb 27, 2023 8:39:49 AM By Stu Sjouwerman

Researchers at Checkmarx warn that attackers uploaded more than 15,000 packages to NPM, the open-source repository for JavaScript packages, to distribute phishing links. The packages ...

Malware Report: The Number of Unique Phishing Emails in Q4 Rose by 36%

Feb 23, 2023 11:28:45 AM By Stu Sjouwerman

With nearly 280 million phishing emails detected by just one vendor, and the increase in the number of unique emails, organizations have a lot to be worried about in 2023.

W-2s Are Just the Beginning of Tax-Related Scams This Year

Feb 23, 2023 11:28:23 AM By Stu Sjouwerman

Email scammers can’t pass up a tried and true theme that is almost guaranteed to produce results. And with W-2 forms being sent out, it marks the start of this year’s expected campaigns.

Ransomware Attacks Using Extortion Tactics Reaches Critical Mass at 96% of all Attacks

Feb 23, 2023 11:28:04 AM By Stu Sjouwerman

New cyber attack data from 2022 is providing insight into what to expect in 2023, including ransomware campaigns.

Should You Click on Unsubscribe?

Feb 21, 2023 4:36:29 PM By Roger Grimes

Some common questions we get are “Should I click on an unwanted email’s ’Unsubscribe’ link? Will that lead to more or less unwanted email?”

[HEADS UP] Russian Hacker Group Launches New Spear Phishing Campaign with Targets in US and Europe

Feb 16, 2023 9:17:56 AM By Stu Sjouwerman

The Russian-based hacking group Seaborgium is at it again with increased spear phishing attacks targeting US and European countries in the last year.

New Survey Reveals Employees are the Attack Surface

Feb 15, 2023 9:18:35 AM By Stu Sjouwerman

A survey by Tanium has found that IT security professionals in the UK say that 64% of avoidable cyber attacks are due to human error, which usually involves falling for phishing attacks. ...

Reddit is the Latest Victim of a Spear Phishing Attack Resulting in a Data Breach

Feb 15, 2023 8:18:20 AM By Stu Sjouwerman

There is a lot to learn from Reddit's recent data breach, which was the result of an employee falling for a “sophisticated and highly-targeted” spear phishing attack.

Security Awareness Training Blog

Phishing Blog

View Topics