KnowBe4

Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

Is IT Even Trying to Thwart Social Engineering Attacks?

With so much else on their plate, are today’s IT organizations doing enough to protect the organization against social engineering and phishing attacks?
Continue Reading

Social Media Facial Recognition Could Make the Bad Guys Worse

Trustwave shows how the latest advancements in technology could be used to aid cybercriminal activity.
Continue Reading

Why Doesn’t Cyber Insurance Have Phishing Prevention Discounts?

Whether online-related or not, insurance is insurance. So, shouldn’t there be discounts for organizations who demonstrate cyber-responsibility?
Continue Reading

[Heads-up] Warn Your Employees. This Is The Year That Sextortion Spear Phishing Is Skyrocketing...

Intrepid cyber-investigative reporter Brian Krebs noticed that a story published on his blog July 12 about a new sextortion-based spear phishing scheme—which uses a real password used by ...
Continue Reading

OK, Guys, this one is for you. Yes, you. The guy who keeps friending strange women on Facebook

This was sent to me by a friend that I know is legit. It's a fun read and has some good tips on how to stay safe using social media.
Continue Reading

Phishing Continues to be on the Rise in 2018!

It should come as no surprise that the most successful attack tactic is being used more in 2018. APWG’s latest report shows us the trends and what to expect for the remainder of 2018.
Continue Reading

New UK Phishing Campaigns Lure Industry Targets With Compromised Email Contacts

A new batch of U.K. phishing campaigns is using compromised email contacts to lure targets from the engineering, transport and defense sectors.
Continue Reading

Spam Remains the Criminals' Favorite Online Tool

Spam is forty years old, and it's still the enduring favorite of cyber criminals. What's reckoned to have been the first spam was distributed in 1978 over ARPANET. ARPANET would evolve ...
Continue Reading

UK Insurer Beazley: "Phishing attacks up in second quarter."

Attacks that target business email accounts continued to increase in the second quarter of 2018, accounting for 23% of incidents reported to Beazley P.L.C. clients, the insurer said ...
Continue Reading

Snail-Mail Phishing with a CD as Bait

Several state government offices in the US have received CDs by mail, infected with malware. It's a clumsy attempt, according to an alert the Multi-State Information Sharing and Analysis ...
Continue Reading

Why Using Brands Is An Essential Element Of Phishing Simulations

It's clear to everyone that company's brand is a valuable property. Often hundreds of millions of dollars were used to create the brand over decades. It creates instant recognition and ...
Continue Reading

Emotet Phishing Epidemic: Infections Costing Orgs Up to $1 Million Per Incident

US-CERT alert sounds the alarm on Emotet, one of the most costly and destructive malware strains currently active.
Continue Reading

Beware of Free Gift Card Phishing Scams

People can’t resist the lure of free stuff. Cyber criminals know this and are always looking for ways to make a quick effortless buck. Put these two together and you have the perfect ...
Continue Reading

Is it Shark Week at your Organization?

Curiosity for one of the most aggressive and dangerous beasts in the ocean has us dedicating a week to learning about it. Should cyberattacks that put your organization at risk get equal ...
Continue Reading

Second Quarter 2018 Top-Clicked Phishing Email Subjects [INFOGRAPHIC]

We've been reporting on the top-clicked phishing email subjects every quarter for a while now across three different categories: general emails, those related to social media, and 'in the ...
Continue Reading

Scam Of The Week: *Another* New CEO Fraud Phishing Wrinkle

So, here's a new CEO Fraud phish: see these fresh screen shots from emails reported to us through the free KnowBe4 Phish Alert Button. Bad guys spoof the managing partner and CPA and an ...
Continue Reading

Russian Reminders: Phishing is Fruitful

The recent indictment by special counsel Robert Mueller of 12 Russian military officials for the hacking of Democratic servers and emails in 2016 is a powerful reminder – phishing works.
Continue Reading

New Report: Mobile Phishing on the Rise

With users being three times more likely to click on a suspicious link on their mobile device, along with over half of mobile users tapping on a phishing URL, mobile phishing is a bigger ...
Continue Reading

From the Phishing Archives: Just How Far Will Cybercriminals Go for a Scam? Apparently into Outer Space.

The Nigerian Prince scam was found taking a turn upwards to the stars, seeking your help to bring a poor lonely astronaut home.
Continue Reading

Sextortion Phishing Campaign Uses Recipient's Hacked Passwords

Krebs on Security has posted a new item: "Here's a clever new twist on an old email scam that could serve to make the con far more believable. The message purports to have been sent from ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews