Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

View Topics

Phishing Impersonation and Attack Trends in 2021

Mar 9, 2022 8:50:37 AM By Stu Sjouwerman
Facebook overtook Microsoft as the most impersonated brand in phishing attacks last year, according to a new report from Vade Secure.
Continue Reading

[World Premiere] KnowBe4’s New Season 4 of Netflix-Style Security Awareness Video Series - ‘The Inside Man’

Mar 8, 2022 8:30:14 AM By Stu Sjouwerman
We’re thrilled to announce the long-awaited fourth season of the award-winning KnowBe4 Original Series - ‘The Inside Man’ is now available in the KnowBe4 ModStore!
Continue Reading

By the Way, There's No Draft - Smishing Campaign Alert

Mar 7, 2022 9:48:53 AM By Stu Sjouwerman
Scammers are sending phony text messages (aka Smishing or SMS Phishing) informing people in the US that they’ve been drafted by the US Army, according to Army Times.
Continue Reading

Phishing Attacks Impersonating LinkedIn are up 232% in the Last Month Alone!

Mar 4, 2022 8:34:15 AM By Stu Sjouwerman
During the period the world has dubbed “the great resignation”, phishing scammers are shifting tactics to take advantage of those looking for a new career or place of employment.
Continue Reading

Data Breach Volumes in the U.S. Grow by 10% in 2021

Mar 2, 2022 1:32:16 PM By Stu Sjouwerman
New data shows despite decreases in global data breach levels (-5%) in 2021, the U.S. experienced proportionally more data breaches than in the previous year.
Continue Reading

UK ICO Sees a Massive Increase in Targeted Email Attacks

Mar 2, 2022 1:31:34 PM By Stu Sjouwerman
New data obtained from the UK’s Information Commissioner’s Office by think tank Parliament Street shows an unprecedented rise in attacks against the UK’s information rights organization.
Continue Reading

Phishing Emails Warn of a Suspicious Login From Russia

Mar 2, 2022 8:48:36 AM By Stu Sjouwerman
Researchers at Malwarebytes warn that a phishing campaign is informing users that someone logged into their account from an IP address in Moscow. The email contains a button to report the ...
Continue Reading

Scammers Will Take Advantage of New IRS Rules

Mar 1, 2022 9:42:52 AM By Stu Sjouwerman
New IRS requirements will soon be used as phishbait, according to Gene Marks, owner of Marks Group PC and a columnist for the Guardian.
Continue Reading

Wartime Suffering as Phishbait

Feb 28, 2022 10:45:46 AM By Stu Sjouwerman
It’s easy to forget, when a hybrid war like the one currently raging in Ukraine is occupying so much attention, that ordinary criminal lowlifes continue to seek victims, and the war only ...
Continue Reading

When the Phishers Want a Reply, not a Click

Feb 23, 2022 9:46:21 AM By Stu Sjouwerman
A sextortion phishing campaign is targeting French speakers accusing them of viewing child abuse content, according to Paul Ducklin at Naked Security. The emails purport to come from the ...
Continue Reading

New Phishing Campaign Angles for Monzo Banking Customers

Feb 22, 2022 9:02:06 AM By Stu Sjouwerman
A phishing campaign is targeting users of the UK-based digital banking company Monzo, BleepingComputer reports. Security researcher William Thomas came across an SMS phishing (smishing) ...
Continue Reading

Phishing Campaign Targets NFT Speculators

Feb 21, 2022 2:50:06 PM By Stu Sjouwerman
Scams follow fashion because money follows fashion. So it’s no surprise that non-fungible tokens (NFTs), which have become a hot speculative property, have drawn scam artists for phishing ...
Continue Reading

[Heads Up] There Is A Whole New Type of Blockchain Scam Called "Ice phishing"

Feb 20, 2022 2:56:23 PM By Stu Sjouwerman
In a post Wednesday last week, Microsoft issued a warning that they are seeing a brand new type of blockchain-centric attack aimed at web3 -- a term used to describe the decentralized ...
Continue Reading

Coinbase’s QR Code Superbowl Ad Only Helps Normalize QR-Based Scams

Feb 17, 2022 10:08:51 AM By Stu Sjouwerman
Use of QR codes is becoming a mainstream part of advertising, but also is getting the attention of scammers intent on redirecting you to a malicious site they control.
Continue Reading

Scammers Use a Mix of Stolen Credentials, Inbox Rules, and a Rogue Outlook Client Install to Phish Internal and External Victims

Feb 17, 2022 10:08:48 AM By Stu Sjouwerman
Organizations that are not using Microsoft’s multi-factor authentication are finding themselves victims of credential attacks that involve threat actors installing Outlook on a controlled ...
Continue Reading

Traits of Most Scams

Feb 16, 2022 3:01:55 PM By Roger Grimes
There are a lot of scams in the world, and they seem to be proliferating at an exponential rate. My Facebook friend’s accounts are compromised all the time and I get sent scam requests ...
Continue Reading

Phishing Attacks on Social Media Doubled Over 2021

Feb 16, 2022 8:38:03 AM By Stu Sjouwerman
Phishing attacks on social media doubled over the course of 2021, according to a new report from PhishLabs by HelpSystems. Most (68%) of these attacks targeted organizations in the ...
Continue Reading

Meta Files Lawsuit Over Phishing Attacks

Feb 14, 2022 8:54:05 AM By Stu Sjouwerman
Meta (Facebook’s corporate parent) and the digital banking company Chime have filed a joint lawsuit against two Nigerian citizens for allegedly impersonating Chime in phishing attacks, ...
Continue Reading

New Cyberattack Campaign Delivers Multiple RATs via Trusted Cloud Services

Feb 11, 2022 8:52:41 AM By Stu Sjouwerman
Abusing cloud providers including Microsoft Azure and AWS, cybercriminals are setting up malicious infrastructure to hide their operations and avoid detection.
Continue Reading

Brand Impersonation and the Healthcare Sector

Feb 10, 2022 8:44:51 AM By Stu Sjouwerman
The healthcare sector is particularly vulnerable to phishing attacks, according to Mike Azzara at Mimecast. Employees in the healthcare industry need to be wary of brand impersonation ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews