New Wave of Hospitality Phishing Attacks: Compromise User Credentials, Then Go Phish

The hospitality sector is seeing a new wave of phishing attacks. These new attacks are more plausible because they begin with compromised credentials and move to fraudulent emails sent ...

September 25, 2023 Stu Sjouwerman

[NEW RELEASE]: Unleash the Power of Cybersecurity Education with KnowBe4’s 'Hack-A-Cat' on Roblox

What do cheese, fish and cybersecurity training have in common? Each of these comes together to help keep kids informed about cyber threats and cybersecurity best practices with KnowBe4’s ...

September 25, 2023 Stu Sjouwerman

Cybercriminals Use Google Looker Studio to Host Crypto Scam to Steal Money and Credentials

Security researchers at Check Point have discovered yet another attack that leverages legitimate web applications to host attacks in order to bypass security scanners.

September 25, 2023 Stu Sjouwerman

Tools From Cybercrime Software Vendor W3LL Found to be Behind the Compromise of 56K Microsoft 365 Accounts

A new report uncovers the scope and sophistication found in just one cybercrime vendor’s business that has aided credential harvesting and impersonation attacks for the last 6 years.

September 25, 2023 Stu Sjouwerman

MFA Defenses Fall Victim to New Phishing-As-A-Service Offerings

ZeroFox warns that phishing-as-a-service (PhaaS) offerings are increasingly including features to bypass multi-factor authentication.

September 21, 2023 Stu Sjouwerman

Vanishing Act: The Secret Weapon Cybercriminals Use in Your Inbox

Researchers at Barracuda describe how attackers use legitimate email inbox rules to control compromised accounts and evade detection.

September 20, 2023 Stu Sjouwerman

Scam-as-a-Service Classiscam Expands Impersonation in Attacks to Include Over 250 Brands

Now entering its third year in business, the phishing platform, Classicam, represents the highest evolution of an “as a service” cybercrime, aiding more than 1000 attack groups worldwide.

September 20, 2023 Stu Sjouwerman

USPS Customers Become the Latest Target of the Chinese Smishing Group Called “Smishing Triad”

A new SMS-based phishing attack uses a smishing kit-as-a-service to impersonate the U.S. Postal Service.

September 20, 2023 Stu Sjouwerman

Data Breach Costs Rise, But Cybersecurity Pros Still Take Risks

The latest data from IBM shows that the average cost of a data breach has gone up by 2% to a whopping $4.45 million. You would think that in the cybersecurity industry, people would be ...

September 19, 2023 Stu Sjouwerman

Romance Scams That Run Your Crypto Wallet Dry

Scammers are using dating sites to lure victims into phony cryptocurrency investment schemes, according to Sean Gallagher at Sophos.

KnowBe4 Blog

Phishing

View Topics

New Wave of Hospitality Phishing Attacks: Compromise User Credentials, Then Go Phish

[NEW RELEASE]: Unleash the Power of Cybersecurity Education with KnowBe4’s 'Hack-A-Cat' on Roblox

Cybercriminals Use Google Looker Studio to Host Crypto Scam to Steal Money and Credentials

Tools From Cybercrime Software Vendor W3LL Found to be Behind the Compromise of 56K Microsoft 365 Accounts

MFA Defenses Fall Victim to New Phishing-As-A-Service Offerings

Vanishing Act: The Secret Weapon Cybercriminals Use in Your Inbox

Scam-as-a-Service Classiscam Expands Impersonation in Attacks to Include Over 250 Brands

USPS Customers Become the Latest Target of the Chinese Smishing Group Called “Smishing Triad”

Data Breach Costs Rise, But Cybersecurity Pros Still Take Risks

Romance Scams That Run Your Crypto Wallet Dry

Subscribe To Our Blog

Posts By Topic

Get the latest insights, trends and security news. Subscribe to CyberheistNews.

Get the latest insights, trends and security news. Subscribe to CyberheistNews.