Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

View Topics

IRS Warns of Phishing Attacks Targeting Car Dealerships

Jul 16, 2024 11:37:55 AM By Stu Sjouwerman
The US Internal Revenue Service (IRS) has issued an advisory warning of phishing campaigns targeting car dealerships. The IRS says car dealers should be on the lookout for targeted ...
Continue Reading

Phishing Continues to Be the Primary Entry to Ransomware Attacks

Jul 15, 2024 10:54:34 AM By Stu Sjouwerman
Phishing remains a top initial access vector for ransomware actors, according to researchers at Cisco Talos. The threat actors often use phishing to steal legitimate credentials so they ...
Continue Reading

[Warn Your Users] High Scam Risk After Failed Trump Assassination

Jul 14, 2024 8:05:51 AM By Stu Sjouwerman
Pictures of Donald Trump rushed from a campaign stage, his cheek brushed with blood from an assassination attempt, are an unsettling shock.
Continue Reading

Phishing Attacks Against State and Local Governments Are Surging

Jul 11, 2024 2:01:51 PM By Stu Sjouwerman
Researchers at Abnormal Security have observed a 360% increase in phishing attacks against state and local government entities over the past year.
Continue Reading

Russian Spear Phishing Campaigns Target NATO Entities

Jul 10, 2024 10:00:52 AM By Stu Sjouwerman
Researchers at Mandiant (part of Google Cloud) warn that Russian government threat actors continue to target NATO member countries with spear phishing attacks. APT29 in particular has ...
Continue Reading

From Policy to Practice in Security Culture: What Security Frameworks Recommend

Jul 10, 2024 10:00:48 AM By Anna Collard
Recently I had to prepare for a governance, risk and compliance conference. I promptly realized that although I used to be quite immersed in this field as an ISO 27k implementation ...
Continue Reading

Dodgy New Phishing Platform Targets Microsoft 365 Accounts at Financial Firms

Jul 9, 2024 1:59:55 PM By Stu Sjouwerman
Analysis of the latest phishing-as-a-service (PhaaS) platform ONNX Store highlights just how successful these platforms can be.
Continue Reading

Amazon-Related Scams Spike Ahead of Prime Day

Jul 9, 2024 1:59:52 PM By Stu Sjouwerman
Researchers at Check Point observed more than a thousand newly registered malicious or suspicious web domains related to Amazon last month. The criminals are likely gearing up to target ...
Continue Reading

Phishing Attacks Target High Profile YouTube Accounts

Jul 9, 2024 8:32:05 AM By Stu Sjouwerman
Researchers at ESET warn of phishing attacks that are attempting to hack high-profile YouTube channels in order to spread scams or malware.
Continue Reading

State-Sponsored Phishing Campaigns Target 40,000 VIP Individuals

Jul 5, 2024 2:00:10 PM By Stu Sjouwerman
Researchers at Menlo Security discovered three state-sponsored phishing campaigns that have targeted 40,000 important individuals over the past three months. “In a recent 90-day period, ...
Continue Reading

Don't Fall for It: How to Spot Social Media Job Scams a Mile Away

Jul 5, 2024 9:24:24 AM By Anna Collard
As social media becomes more intertwined with our daily routines, cybercriminals are using it to trick people with fake job offers. What are these social-media recruitment scams, and how ...
Continue Reading

Phishing Attacks Themed Around Popular Weight Loss Drugs Increase 183%

Jul 5, 2024 9:24:12 AM By Stu Sjouwerman
As popularity grows for these proven methods of weight loss, scammers have taken note and have placed a significant focus on separating victims from their money.
Continue Reading

New “Paste and Run” Phishing Technique Makes CTRL-V A Cyber Attack Accomplice

Jul 5, 2024 7:40:28 AM By Stu Sjouwerman
A new phishing campaign tries to trick email recipients into pasting and executing malicious commands on their system that installs DarkGate malware.
Continue Reading

[Urgent Alert] 5 Critical Steps to Shield Your Teens from Rising Sextortion

Jul 2, 2024 1:55:47 PM By Anna Collard
A few weeks ago, I was privileged to visit the 8th grade of a high-school here in Cape Town and talk to the students about cybersecurity, social media, and emerging technology. It was a ...
Continue Reading

Ransomware Attack on U.K. Health Service Laboratory Disrupts Major London Hospital Services

Jul 2, 2024 1:55:38 PM By Stu Sjouwerman
What likely started as a quick ransomware “smash and grab” has turned into a headline case resulting in responses from both U.K. and U.S. law enforcement.
Continue Reading

Hacked Customer Support Portal Being Used to Send Phishing Emails

Jul 2, 2024 1:55:30 PM By Stu Sjouwerman
A hacked customer support portal belonging to router manufacturer Mercku is being used to respond to customer queries with phishing emails, BleepingComputer reports.
Continue Reading

Russian Threat Actor Launches Spear Phishing Attacks Against French Diplomats

Jun 27, 2024 1:46:32 PM By Stu Sjouwerman
France’s cybersecurity agency ANSSI has issued an alert outlining a Russian spear phishing campaign targeting French diplomats, the Record reports. The agency attributes the campaign to ...
Continue Reading

FBI Warns of Phishing Campaign Targeting the Healthcare Industry

Jun 27, 2024 1:46:27 PM By Stu Sjouwerman
The US FBI and the Department of Health and Human Services (HHS) have released a joint advisory warning of a social engineering campaign that’s targeting the healthcare industry.
Continue Reading

The Double-Edged Sword of AI: Empowering Cybercriminals and the Need for Heightened Cybersecurity Awareness

Jun 26, 2024 2:33:03 PM By Javvad Malik
The BBC recently reported that Booking.com is warning that AI is driving an explosion in travel scams. Up to 900% in their estimation - making it abundantly clear that while AI can be a ...
Continue Reading

Simulated Phishing Tests Matter

Jun 26, 2024 1:51:18 PM By Roger Grimes
If you had to choose between regular cybersecurity training and simulated phishing testing, the data shows you should choose simulated phishing tests.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews