Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

Users Clicking on Multiple Mobile Phishing Links Increases 637% in Just Two Years

New data shows that phishing mobile devices as an attack vector is growing in popularity – mostly because it’s increasingly working... in exponential terms.
Continue Reading

Facebook and Microsoft Top the List of Most Impersonated Brands in 2022

As scammers continue to see massive returns on their phishing attacks, the use of impersonation with well-known brands continues to circle around the dominant players.
Continue Reading

Identifying AI-Enabled Phishing

Users need to adapt to an evolving threat landscape in which attackers can use AI tools like ChatGPT to craft extremely convincing phishing emails, according to Matthew Tyson at CSO.
Continue Reading

Report Shows Business Email Compromise (BEC) Attacks Increase and Phishing Used as Initial Attack Vector in the Last Year

Secureworks has published a report looking at cybercrime over the course of 2022, finding that business email compromise (BEC) attacks nearly doubled last year. Additionally, attacks in ...
Continue Reading

Warning Customers About Social Engineering.

It’s a familiar story: scam artists impersonate a trusted brand, a trusted business or a trusted authority in emails and on bogus sites designed to exploit that very trust to commit ...
Continue Reading

Phishing Attacks Top List of Initial Access Vectors with Backdoor Deployment as Top Objective

New data looking back at the cyber attacks observed in 2022 shows that phishing continues to dominate as initial access brokers seem to be growing their business using backdoors.
Continue Reading

92% of Organizations Have Fallen Victim to Phishing as Nearly Every Org is Concerned with Email Security

New data shows that not only has just about every organization experienced a successful phishing attack, but that they are also paying the price in a number of impactful ways.
Continue Reading

Understanding DMARC Better

I talk and present often about DMARC (and SPF and DKIM), including here. A lot of people who think they understand how DMARC works, do not really understand it as well as they think they ...
Continue Reading

[FREE RESOURCE KIT] New Phishing Security Resource Kit Now Available!

Phishing emails increase in volume every month and every year, so we created this free resource kit to help you defend against attacks. Request your kit now to learn phishing mitigation ...
Continue Reading

A 240% Rise in Dynamic Phishing

Attackers are increasingly using techniques to prevent their phishing pages from being detected by security firms, a new report from BlueVoyant has found. The report found that in 2022 ...
Continue Reading

Three-Quarters of Organizations Have Experienced an Increase in Email-Based Threats

New data on the state of email security shows that nearly every organization has been the target of a phishing attack as attacks increase in sophistication.
Continue Reading

79% of Employee-Reported Phishing Emails Go Completely Undetected by Cybersecurity Solutions

As cybercriminals increasingly turn to malwareless phishing attacks, the ability for security solutions to correctly identify a malicious email is becoming more and more difficult.
Continue Reading

Newest FBI Report Shows $10B in Losses Last Year Due to Internet Scams

The 2022 Internet Crime Report by the FBI reported at least $10.3 billion in losses due to internet scams last year.
Continue Reading

One-Quarter of Users Fall for Online Scams Despite an Overconfidence in an Ability to Spot Them

A new survey of individuals across seven countries shows that users may have had luck on their side, as a majority aren’t sure about their device security or how to spot malicious sites ...
Continue Reading

Google: Analysis of Cyberattacks Targeting Ukraine Shed Light on What a Cyberwar Strategy Looks Like

A look back at the last year of attacks on Ukraine by Google’s Threat Analysis Group (TAG) provides insight into attacks on NATO countries to gain a cyberspace advantage.
Continue Reading

Use of Malware Decreases in Cyber Attacks as Exploit Usage Skyrockets

New data on cyberattacks from last quarter provides a lens of what kinds of attack techniques to expect to see from cyber attackers this year.
Continue Reading

Phishing for Ring Customers

INKY warns that a phishing campaign is targeting users of the Ring video security system. The scammers are sending brief phishing emails instructing recipients to click on the attached ...
Continue Reading

Half of all Sites Used in Phishing Attacks Impersonate Financial Institutions

As credential theft-focused phishing attacks continue to assist initial access brokers, new data shows banking fraud continues to be a material threat to individuals and businesses alike.
Continue Reading

Google Phishing Pages Jump 1,560% YoY

Vade has released a report looking at phishing trends in 2022. The researchers say the top three most-impersonated brands last year were Facebook, Microsoft, and Google.
Continue Reading

Financial Services Sector at Risk of More Significant Impacts of Email-Based Cyber Attacks

Financial services businesses are already in the sights of cybercriminals, and understanding how cyber attacks impact this sector specifically can help establish the need for improved ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews