Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

View Topics

New COVID-19 Phishing Wave Misuses Google Forms to Steal Victim Information

Oct 18, 2022 2:41:20 PM By Stu Sjouwerman
This new credential harvesting scam impersonates a real U.S. Government COVID-related grant program to harvest credentials and personal details using a blatantly obvious Google form.
Continue Reading

[HEADS UP] South African Post Office Sends Warning of Targeted Phishing Attacks

Oct 18, 2022 1:31:01 PM By Stu Sjouwerman
The South Africa Post Office (SAPO) recently warned customers of phishing emails to portray the post office. These cybercriminals are asking for outstanding customs fees that require ...
Continue Reading

Name-and-Shame Scams on Discord

Oct 18, 2022 10:05:18 AM By Stu Sjouwerman
Scammers are sending Discord messages with phony accusations to trick users into clicking on phishing links, according to Shan Abdul at MakeUseOf. The messages are sent from compromised ...
Continue Reading

How To Stop Job Scams

Oct 17, 2022 4:01:57 PM By Roger Grimes
I am reading and hearing about a ton of job scams these days. So many, I wondered how anyone could get a real job or employee, especially in these days of often full-time, work-from-home ...
Continue Reading

New Phishing Campaign Uses Office Docs to Install Cobalt Strike Beacon

Oct 14, 2022 9:03:08 AM By Stu Sjouwerman
Under the guise of determining applicant eligibility for a U.S. federal government job, this latest phishing attack plants the seed for a future attack on the victim organization.
Continue Reading

German Hackers Arrested for Stealing €4 Million in 7-Month Banking Phishing Scams

Oct 14, 2022 9:02:56 AM By Stu Sjouwerman
The recent arrest demonstrates how very small and unsophisticated a cybercriminal team can be to launch a very successful phishing campaign that takes victims for millions.
Continue Reading

Small Business Grants as Phishbait

Oct 13, 2022 9:10:04 AM By Stu Sjouwerman
INKY has published a report on the use of small business grants as phishing lures. Scammers are impersonating the US Small Business Administration (SBA) to distribute phony grant ...
Continue Reading

Three-Quarters of Ethical Hackers Can Collect and (Potentially) Exfiltrate Data in 10 Hours or Less

Oct 12, 2022 12:00:00 PM By Stu Sjouwerman
New insight from the SANS Institute surveying 300 ethical hackers sheds some light on how they perceive your security stance – and how easy it is for them to break in despite your efforts.
Continue Reading

Could 100% of Phishing Be Eliminated One Day?

Oct 11, 2022 12:59:34 PM By Roger Grimes
Occasionally you will hear people or organizations claiming that they are on the verge of eliminating all social engineering from reaching end-users. Could it be true? Could it happen one ...
Continue Reading

[Heads Up] Almost 19 percent of phishing emails bypass Microsoft Defender

Oct 9, 2022 1:05:35 PM By Stu Sjouwerman
Check Point Software is one of the world's best-known and largest infosec companies. In September 2021 they acquired email security company Avanan and recently they updated Check Point's ...
Continue Reading

Top 5 Phishing Do's & Don'ts

Oct 5, 2022 9:25:36 AM By James McQuiggan
Here's the Top 5 Do’s and Don'ts for your phishing simulation exercises.
Continue Reading

IRS Warns of A Spike in Smishing Attacks

Oct 5, 2022 9:22:59 AM By Stu Sjouwerman
The US Internal Revenue Service (IRS) has issued an alert warning of a significant rise in text message phishing scams (smishing) impersonating the IRS since the beginning of the year.
Continue Reading

German Police Collar Alleged Phishing Cybercriminals

Oct 3, 2022 9:07:51 AM By Stu Sjouwerman
The Bundeskriminalamt (BKA), Germany's federal criminal police, raided three homes on Thursday, September 29th, in the course of an investigation of a cyber criminal operation the BKA ...
Continue Reading

Response-Based Phishing Scams Targeting Corporate Inboxes Hit New Records

Sep 30, 2022 9:14:06 AM By Stu Sjouwerman
Setting a record for both highest count and share in volume with other types of phishing scams, response-based attacks are at their highest since 2020 and are continuing to grow.
Continue Reading

American Airlines Traces Breach to Phishing Incident

Sep 28, 2022 9:05:46 AM By Stu Sjouwerman
American Airlines has disclosed that an attacker used phishing attacks to breach the company’s systems, BleepingComputer reports.
Continue Reading

FBI: Cyber Criminals Will Continue Targeting Healthcare Payment Processors Through Phishing Campaigns and Social Engineering

Sep 27, 2022 9:00:42 AM By Stu Sjouwerman
Despite the pandemic being largely considered over, a recent Private Industry Notification focused on the Healthcare industry indicates that organizations should remain vigilant.
Continue Reading

Fake Emails Purporting to be from UK Energy Regulator

Sep 27, 2022 9:00:35 AM By Stu Sjouwerman
A phishing campaign is impersonating UK energy regulator Ofgem, according to Action Fraud, the UK’s cybercrime reporting centre.
Continue Reading

Sentence in a Catphishing Case

Sep 26, 2022 9:59:32 AM By Stu Sjouwerman
A convict serving twenty-five years in South Carolina for voluntary manslaughter and attempted armed robbery, Darnell Kahn, has now also been convicted in a US court on Federal sextortion ...
Continue Reading

Phishing Campaign Targets GitHub Users

Sep 23, 2022 9:15:50 AM By Stu Sjouwerman
GitHub has issued an alert warning of a phishing campaign targeting users by impersonating the popular DevOps tool CircleCI, BleepingComputer reports. The phishing emails inform users ...
Continue Reading

Security Practices Are Improving, But Cybercriminals Are Keeping Up

Sep 21, 2022 2:48:10 PM By Stu Sjouwerman
A survey by the Spanish GetApp software rating site has found that the number of organizations using phishing simulations has risen from 30% in 2019 to 70% in 2022. Despite this positive ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews