Expect More Travel-Themed Phishing Scams as 80% of Americans Plan to Travel

Jul 7, 2022 9:01:18 AM By Stu Sjouwerman

The lure of last-minute deals to get away after staying home for the last 2 years is so strong, scammers are using it to their advantage with scams intent on stealing online credentials.

New Phishing Campaign is Targeting TrustWallet With Impersonation Emails

Jul 6, 2022 10:53:00 AM By Stu Sjouwerman

Vade Secure warns that a phishing campaign is targeting TrustWallet cryptocurrency wallet users with phony verification emails.

Email-Based Threats Double as Malware, Credential Phishing, and BEC Detections Increase

Jul 6, 2022 8:02:51 AM By Stu Sjouwerman

Newly released data from TrendMicro about high-risk email threats in 2021 shows where cybercriminals are placing their focus and where yours should be as well.

New Phishing Campaign Impersonates Canada Revenue Agency

Jul 5, 2022 12:10:24 PM By Stu Sjouwerman

A phishing campaign is impersonating the Canada Revenue Agency (CRA) in an attempt to steal Canadians’ personal information, according to Rene Holt at ESET. The phishing emails inform ...

Wars and Lechery, Nothing Else Holds Fashion for Phishing Attacks

Jun 29, 2022 10:03:52 AM By Stu Sjouwerman

Shakespeare said it first, and things haven’t changed: suffering and desire continue to drive victims to the social engineers. Researchers at Bitdefender have observed a phishing campaign ...

80% of Organizations Await “Inevitable” Negative Consequences From Email-Born Cyberattacks

Jun 29, 2022 9:26:57 AM By Stu Sjouwerman

With nearly every organization experiencing some form of phishing attack, new data suggests these attacks are improving in sophistication, effectiveness, and impact.

New Evasive Phishing Techniques Help Cybercriminals Launch “Untraceable” Campaigns

Jun 29, 2022 9:26:51 AM By Stu Sjouwerman

Scary new details emerge of cybercriminals using reverse tunneling and URL shorteners to evade detection by security solutions, allowing them to take victims for their credentials and ...

MetaMask Crypto Wallet Phishing

Jun 27, 2022 9:56:17 AM By Stu Sjouwerman

A phishing campaign is attempting to steal credentials for MetaMask cryptocurrency wallets, according to Lauryn Cash at Armorblox.

Amazon Prime Day 2022 is Coming: Here are Quick Cybersecurity Tips to Help You Stay Safe

Jun 23, 2022 1:56:47 PM By Erich Kron

Amazon Prime Days this year are July 12 - 13th 2022. As a result, cybercriminals are taking every step to capitalize on the holiday with new phishing attacks. I have been getting asked ...

Pre-Hijacking of Online Accounts are the Latest Method for Attackers to Impersonate and Target

Jun 23, 2022 11:21:31 AM By Stu Sjouwerman

Rather than run a complex credential harvesting phishing scam, attackers use existing information about their victim and hijack a popular web service account *before* it’s created.

Phishing Scammers Leverage Telegraph’s Loose Governance to Host Crypto and Credential Scams

Jun 23, 2022 11:21:18 AM By Stu Sjouwerman

The free and unmonitored webpage publishing platform has been identified as being used in phishing scams dating back as early as mid-2019, as a key part to bypass security solutions.

Spear Phishing Campaign Targets the US Military

Jun 22, 2022 8:59:46 AM By Stu Sjouwerman

Researchers at Zscaler warn that a spear phishing campaign is targeting the US military and other sectors with phishing emails that purport to be voicemail notifications. The emails ...

Smishing Text Scams Have Doubled in the Last Three Years

Jun 20, 2022 10:12:52 AM By Stu Sjouwerman

New data shows a rise in the use of text messages as an effective vehicle to connect with potential victims for social engineering scams as Americans increase their preference of the ...

New PDF-Based Phishing Attack Demonstrates that Office Docs Aren’t Passé – They are Just Obfuscated!

Jun 20, 2022 10:12:11 AM By Stu Sjouwerman

Security researchers have discovered a cunning PDF-based phishing attack that leverages social engineering and PDF prompt specifics to trick users into opening malicious Office docs.

142 Million Customer Records From MGM Resorts Leaked for Free Download

Jun 20, 2022 10:11:30 AM By Stu Sjouwerman

The availability of such a massive number of records at no cost to any cybercriminal interested is a recipe for countless phishing campaigns using the data itself as a means of ...

New Phishing Campaign Uses ChatBot Functionality to Build Trust and Steal Credit Card Details

Jun 20, 2022 10:11:18 AM By Stu Sjouwerman

Rather than go for the phishing jugular and point the victim immediately to a webpage to steal credentials or personal details, a new phishing campaign uses a chatbot to lower victim ...

Monkeypox Scams Continue to Increase

Jun 14, 2022 9:19:28 AM By Stu Sjouwerman

Attackers are taking advantage of the current news about monkeypox to trick people into clicking on malicious links, Pickr reports. Researchers at Mimecast have spotted a phishing ...

Facebook Phishing Scam Steals Millions of Credentials

Jun 13, 2022 8:32:18 AM By Stu Sjouwerman

Researchers at PIXM have uncovered a major Facebook Messenger phishing scam that’s “potentially impacted hundreds of millions of Facebook users.” More than eight million people have ...

40% of CSOs say Their Organization is Not Prepared for Cyberattacks as Phishing is the Top Likely Cause of Breaches

Jun 7, 2022 7:17:38 PM By Stu Sjouwerman

A new survey of executives sheds light on how well organizations fared with cyberattacks in the last 12 month as well as what attack vectors are going to increase future breaches.

Old Dog, New Trick: Hackers Use Logons in URLs to Bypass Email Scanners

Jun 7, 2022 7:17:26 PM By Stu Sjouwerman

A new phishing method uses a decades-old special URL format to take advantage of how security solutions and email clients interpret URLs, tricking victims into clicking.

Security Awareness Training Blog

Phishing Blog

View Topics