Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

View Topics

Warning: Phishing Campaign Targets Germany with New Malware

Feb 3, 2025 4:25:21 PM By Stu Sjouwerman
Researchers at Cisco Talos warn that a new phishing campaign is targeting users in Germany and Poland in an attempt to deliver several strains of malware, including a new backdoor dubbed ...
Continue Reading

Beware: Mobile Phishing Mimicking the USPS Is On the Rise

Jan 30, 2025 4:28:17 PM By Stu Sjouwerman
Researchers at Zimperium warn that a large phishing campaign is impersonating the US Postal Service (USPS) to target mobile devices with malicious PDF files.
Continue Reading

The Rising Tide of Cybercrime Concerns in Africa

Jan 30, 2025 4:27:01 PM By Anna Collard
Our recent Africa Cybersecurity Awareness survey has revealed a startling surge in cybersecurity concerns among African users, with 58% of respondents expressing high levels of worry ...
Continue Reading

Using Genuine Business Domains and Legitimate Services to Harvest Credentials

Jan 28, 2025 6:15:38 PM By Martin Kraemer
A KnowBe4 Threat Lab Publication Authors: Jeewan Singh Jalal, Anand Bodke, and Martin Kraemer
Continue Reading

Microsoft is Still the Most Commonly Impersonated Brand in Phishing Attacks

Jan 28, 2025 4:05:32 PM By Stu Sjouwerman
Microsoft, Apple, and Google were the most commonly impersonated brands in phishing attacks last quarter, according to researchers at Check Point.
Continue Reading

Beware of Toll Scam Texts: How Cybercriminals are Targeting U.S. Drivers

Jan 27, 2025 3:59:53 PM By Stu Sjouwerman
Drivers across the U.S. are being bombarded with fraudulent text messages claiming to come from toll operators like E-ZPass.
Continue Reading

Nearly Three-Quarters of UK Education Orgs Have Sustained Cyberattacks

Jan 27, 2025 3:58:39 PM By Stu Sjouwerman
73% of educational institutions in the UK have sustained at least one cyberattack or breach in the past five years, according to researchers at ESET.
Continue Reading

Phishing is the Top Security Threat For Smartphone Users

Jan 24, 2025 8:26:27 AM By Stu Sjouwerman
Phishing attacks are the most common security issue for smartphone users, according to a new study by Omdia.
Continue Reading

84% of Healthcare Organizations Sustained Cyberattacks Last Year

Jan 24, 2025 8:25:59 AM By Stu Sjouwerman
A new survey by cybersecurity vendor Netwrix found that 84% of healthcare organizations spotted a cyberattack in the past twelve months, with phishing attacks accounting for 63% of these ...
Continue Reading

Malvertising Campaign Abuses Google Ads to Target Advertisers

Jan 22, 2025 9:53:14 AM By Stu Sjouwerman
Researchers at Malwarebytes are tracking a major malvertising campaign that’s abusing Google Ads to target individuals and businesses interested in advertising.
Continue Reading

Threat Actors Abuse Google Translate to Craft Phishing Links

Jan 20, 2025 8:03:56 AM By Stu Sjouwerman
Threat actors are abusing Google Translate’s redirect feature to craft phishing links that appear to belong to Google, according to researchers at Abnormal Security.
Continue Reading

Phishing Campaign Attempts to Bypass iOS Protections

Jan 20, 2025 8:03:20 AM By Stu Sjouwerman
An SMS phishing (smishing) campaign is attempting to trick Apple device users into disabling measures designed to protect them against malicious links, BleepingComputer reports.
Continue Reading

From Pig Butchering to People Talking

Jan 20, 2025 8:02:32 AM By Javvad Malik
Interpol has recently recommended discontinuing the use of the term "Pig Butchering" in cybercrime discussions, expressing concern that such terminology may discourage victims from ...
Continue Reading

Effective Security Awareness Training Really Does Reduce Data Breaches

Jan 17, 2025 4:53:23 PM By Roger Grimes
Social engineering and phishing are involved in 70% - 90% of data breaches. No other root cause of malicious hacking (e.g., unpatched software and firmware, eavesdropping, cryptography ...
Continue Reading

Ransomware Gangs Claimed More Than 5,000 Attacks in 2024

Jan 17, 2025 8:32:19 AM By Stu Sjouwerman
Ransomware groups claimed responsibility for 5,461 attacks in 2024, with 1,204 of these attacks being publicly confirmed by victim organizations, according to Comparitech’s latest ...
Continue Reading

Brad Pitt Romance Scams Pushed By AI-Enabled Deepfakes

Jan 17, 2025 8:31:27 AM By Roger Grimes
I have helped people detect romance scams for decades. It is still very common for romance scammers to leverage both pictures of celebrities and pictures of innocent, everyday people as ...
Continue Reading

First Ever Magic Quadrant™ for Email Security Platforms by Gartner®

Jan 16, 2025 10:04:45 AM By Stu Sjouwerman
In cybersecurity, email has always been a critical concern. However, we feel the new 2024 Gartner® Magic Quadrant for Email Security Platforms™ has signaled a shift in how we approach ...
Continue Reading

Japan Attributes More Than 200 Cyberattacks to China Threat Actor "MirrorFace"

Jan 15, 2025 10:34:45 AM By Stu Sjouwerman
Japan’s National Police Agency (NPA) has attributed more than 200 cyber incidents over the past five years to the China-aligned threat actor “MirrorFace,” Infosecurity Magazine reports.
Continue Reading

Phishing Campaign Abuses Legitimate Services to Send PayPal Requests

Jan 9, 2025 4:37:41 PM By Stu Sjouwerman
A phishing campaign is abusing Microsoft 365 test domains to send legitimate payment requests from PayPal, according to Fortinet’s CISO Dr. Carl Windsor.
Continue Reading

Malicious WordPress Plugin Assists in Phishing Attacks

Jan 9, 2025 4:36:54 PM By Stu Sjouwerman
Researchers at SlashNext warn that cybercriminals are using a WordPress plugin called “PhishWP” to spoof payment pages and steal financial information.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews