Email Sandboxes Are Detected and Rendered Useless in New Office 365 Phishing Attack

Nov 23, 2020 4:25:45 PM By Stu Sjouwerman

A new threat tactic is being used to determine if sandbox environments are being used to gain more information about a potential phishing attack, allowing the bad guys to avoid detection.

The COVID-19 Vaccine: The Next Wave of Coronavirus Phishing Emails & What You Can Do About It

Nov 23, 2020 12:36:53 PM By Eric Howes

With infection rates once again soaring in the United States and other countries around the world, the race to produce a COVID-19 vaccine has generated welcome news for a population ...

You're Fired (Not Really, Just Clicked on a Phishing Email)

Nov 23, 2020 8:33:59 AM By Stu Sjouwerman

The operators of the BazarLoader malware are using phishing emails that inform people they’ve been terminated from their jobs, according to Linn Freedman, a partner at Robinson & Cole ...

[Scam of the Week] Black Friday & Cyber Monday Top 10 Cybersecurity Tips

Nov 23, 2020 7:00:00 AM By Stu Sjouwerman

The bad guys are at it again with holiday phishing scams, and this time from the comfort of your user's home. Because we are in the middle of a pandemic, retailers have already started ...

Phishing Attacks Rose by 220% At Pandemic Peak Amid Global COVID-Related Fears

Nov 20, 2020 11:15:41 AM By Stu Sjouwerman

At a time when the last thing we need is more phishing attacks, new data shows that cybercriminals have been stepping up their game, taking full advantage of the pandemic.

Google's Free Services and Phishing Campaigns: A Likely Pair

Nov 19, 2020 11:32:17 AM By Stu Sjouwerman

Cybercriminals are now launching phishing campaigns that abuse Google's free productivity tools while also using social engineering to trick you into installing malware.

Nearly Half of Spear Phishing Emails Bypass Security Filters

Nov 18, 2020 8:29:30 AM By Stu Sjouwerman

47% of payloadless phishing emails are able to bypass the most popular secure email gateways (SEGs), according to researchers at IronScales. These are emails that don’t contain malicious ...

Phishing in Facebook's Pond

Nov 16, 2020 2:28:01 PM By Stu Sjouwerman

A scam targeting Facebook users duped hundreds of thousands of people out of their money and information, according to researchers at vpnMentor. The researchers discovered an exposed ...

New “Election Interference” Phishing Scams Infect Victims with Qbot Trojan

Nov 11, 2020 3:58:56 PM By Stu Sjouwerman

At a time when tensions are high with questionable election results, lawsuits, and an apparent “president-elect”, makers of Qbot are taking full advantage of the opportunity.

University Research Shows Security Awareness Training is a Necessary Layer of Defense

Nov 11, 2020 8:58:46 AM By Stu Sjouwerman

A research paper in the Journal of Computer Information Systems says that security awareness training is a necessary complement to technical defenses and security policies, SC Magazine ...

Cyber Security Awareness Month is Over... Now What?

Nov 9, 2020 2:52:31 PM By Javvad Malik

October was Cyber Security Awareness Month, the month during which many organisations and individuals contributed their ideas, shared content and helped educate each other on the ...

Unfortunate Learning Lessons from Clicking on a Suspicious Phishing Email

Nov 5, 2020 11:19:02 AM By Stu Sjouwerman

Israeli news source YNet released a story about a woman who clicked on a suspicious phishing link, was fired from her job, and was accused of fraud with a criminal indictment.

Phishing Links Sent Via Legitimate Google Drive Notifications

Nov 5, 2020 8:24:27 AM By Stu Sjouwerman

Scammers are abusing a Google Drive feature to send phishing links in automated email notifications from Google, WIRED reports. By mentioning a Google user in a Drive document, the ...

Thinking Skeptically About Smishing

Nov 4, 2020 8:55:48 AM By Stu Sjouwerman

Organizations need to train their employees to be on the lookout for SMS phishing (smishing), according to Jennifer Bosavage at Dark Reading. Bosavage explains that attackers exploit ...

Organizational Security Posture Effectiveness Declines by 38% Due to COVID

Nov 4, 2020 7:02:00 AM By Stu Sjouwerman

Remote workforces, insecure devices, a lack of multi-factor authentication, and a lack of user education all add up to a security nightmare for the average organization today.

[SCAM OF THE WEEK] Sean Connery's Final Wish is Revealed

Nov 2, 2020 2:02:20 PM By Stu Sjouwerman

After the sad passing of famous actor Sir Sean Connery, Yahoo News released an article that revealed his final wish after he passed away peacefully with his family at his side.

[HEADS UP] British Broadcasting Corporation Receives 250,000 Phishing Emails a Day

Nov 2, 2020 10:02:13 AM By Stu Sjouwerman

Popular public service broadcasting station British Broadcasting Corporation (BBC) has received a quarter of a million phishing emails per day, according to a Freedom of Information (FOI) ...

JavaScript Obfuscation on Phishing Pages Continues to Rise by 70%

Nov 2, 2020 8:23:41 AM By Stu Sjouwerman

The use of JavaScript to obfuscate phishing pages increased by 70% in the ten months between November 2019 and August 2020, according to researchers at Akamai. Attackers use this ...

Famous VC Firm: "The New Attack Surface is Your Life"

Nov 2, 2020 8:00:00 AM By Stu Sjouwerman

As a CEO with VC investors, I follow what happens in the venture capital space and what things VCs are interested in regarding their investment strategies. I was happily surprised to see ...

Learn to Combat These Three Cybersecurity Monsters This Halloween and Beyond

Oct 30, 2020 9:45:00 AM By Perry Carpenter

It’s that time of year again. The air feels a bit crisper; the days are a bit shorter; and children around the world prepare to go trick or treating. Even as an adult, Halloween is ...

Security Awareness Training Blog

Phishing Blog

View Topics