Why Are You Being Phished?

Dec 8, 2020 4:05:42 PM By Roger Grimes

People often wonder, why are they being phished? Why are they being phished by a hacker in the first place? What does their organization have that some hacker decided they were noteworthy ...

Embarrassment is Better Than Regret - Report Suspected Phishing Emails

Dec 8, 2020 4:05:05 PM By Javvad Malik

There are many great things I can say about my time at KnowBe4. Colleagues are fun, approachable, witty, and have a phrase for most eventualities. The phrase that goes around in my mind ...

Election-themed Phishing is Likely to Persist

Dec 8, 2020 8:47:24 AM By Stu Sjouwerman

The US elections have come and gone, but people should still be on the lookout for election-themed phishbait, according to Roger Kay at Inky. Emotions are still running high in the US, ...

Phishing Campaign Targets COVID Vaccine Cold Supply Chain

Dec 5, 2020 10:50:50 AM By Stu Sjouwerman

Researchers at IBM’s X-Force have identified a phishing campaign targeting the COVID-19 vaccine “cold chain” (the part of the supply chain focused on “the safe preservation of vaccines in ...

Exploits Leveraging Excel 4.0 Macros Increase as Organizations Continue to Rely on this Legacy Technology

Dec 4, 2020 11:12:56 AM By Stu Sjouwerman

Despite being nearly 30 years old, Excel’s very functional macro technology appears to be a little too functional, as attackers have stepped up its use to advance cyberattacks.

New “Back to Work” HR-Themed Phishing Scam Works to Steal Internal User Credentials

Dec 4, 2020 11:11:11 AM By Stu Sjouwerman

Using a fake internal memo from HR, per-user custom-named email attachments, SharePoint Online, and a realistic-looking HR form, this phishing attack has all the ingredients to trick your ...

How Are Credential-Theft Phishing Websites Avoiding Detection? They Just Invert the Website Background

Dec 3, 2020 8:21:40 AM By Stu Sjouwerman

Sometimes the easiest solution is the best solution. And in the case of phishing attacks intent of stealing credentials using a fake logon page, it appears that background inversion does ...

Number of Phishing Websites Double and Unique Phishing Campaigns Triple in Q3

Dec 3, 2020 8:19:09 AM By Stu Sjouwerman

New data shows the bad guys have been working diligently to step up their game on both the front and back end of phishing attacks, despite still being mid-pandemic.

Dutch Government Sees Phishing More Than Double in 2020

Dec 1, 2020 1:48:47 PM By Jelle Wieringa

In an exclusive article, the Dutch IRS gave its perspective on the cyber threat landscape in the Netherlands. December is typically one of the busiest months of the year for cybercrime ...

South African Post Office Issues Warning on Postal Phishing Attack

Dec 1, 2020 11:51:55 AM By Stu Sjouwerman

The South African Post Office recently issued a warning about a phishing attack. The post office advised everyone to delete the email immediately.

Zoom Impersonation a New Variant of Familiar Phishbait

Dec 1, 2020 8:23:31 AM By Stu Sjouwerman

Zoom-themed phishing attacks have spiked since the start of the pandemic, the Better Business Bureau (BBB) warns. Attackers adapted quickly earlier this year when a large portion of ...

Fake Zoom Invite Leads to one Australian Company's Downfall

Nov 30, 2020 1:19:51 PM By Stu Sjouwerman

We've previously written blog posts to be cautious of suspicious Zoom meeting links, and we even reported a huge increase in phishing attacks using Zoom of August this year. The heads-up ...

Is the Secret to Stopping Cyberattacks Making Users "Phishing Aware"?

Nov 30, 2020 10:02:08 AM By Stu Sjouwerman

The sheer volume of successful phishing attacks indicates that security solutions – at very least – aren’t stopping all attacks. So how does security awareness training help top attacks ...

Phishing Attacks in the U.K. Rise by 73% During Pandemic Months as Vishing and Smishing Attacks Also Increase

Nov 30, 2020 9:58:43 AM By Stu Sjouwerman

Cybercriminals have taken full advantage of COVID-19 by launching themed phishing attacks in previously unseen numbers targeting both individuals and businesses.

Journalists Need Phishing Awareness, Too

Nov 30, 2020 8:25:33 AM By Stu Sjouwerman

All types of journalists need to be wary of phishing and other social engineering attacks, according to Jacob Granger, writing at Journalism.co.uk. Granger quotes digital security expert ...

[Heads-Up] A Hacker Is Selling Access To The Email Accounts Of Hundreds Of C-Level Executives

Nov 27, 2020 11:52:05 AM By Stu Sjouwerman

ZDNet's Zero Day column just reported one of the best reasons why you should step your users through new-school security awareness training yet:

How Many Phishing Sites? Over 2 Million in 2020 (so far)

Nov 24, 2020 9:47:27 AM By Stu Sjouwerman

Google has flagged 2.02 million phishing sites since the beginning of the year, averaging forty-six thousand sites per week, according to researchers at Atlas VPN. The researchers note ...

Email Sandboxes Are Detected and Rendered Useless in New Office 365 Phishing Attack

Nov 23, 2020 4:25:45 PM By Stu Sjouwerman

A new threat tactic is being used to determine if sandbox environments are being used to gain more information about a potential phishing attack, allowing the bad guys to avoid detection.

The COVID-19 Vaccine: The Next Wave of Coronavirus Phishing Emails & What You Can Do About It

Nov 23, 2020 12:36:53 PM By Eric Howes

With infection rates once again soaring in the United States and other countries around the world, the race to produce a COVID-19 vaccine has generated welcome news for a population ...

You're Fired (Not Really, Just Clicked on a Phishing Email)

Nov 23, 2020 8:33:59 AM By Stu Sjouwerman

The operators of the BazarLoader malware are using phishing emails that inform people they’ve been terminated from their jobs, according to Linn Freedman, a partner at Robinson & Cole ...

Security Awareness Training Blog

Phishing Blog

View Topics