A "Secure DNS" Scam: an Upgrade that's a Downgrade

Jul 1, 2020 8:27:47 AM By Stu Sjouwerman

A phishing campaign is targeting website owners with convincing, personalized emails that purport to come from WordPress, Naked Security reports. The emails claim that WordPress is ...

COVID-19 Related Phishing Scams Target Passport Details

Jun 30, 2020 10:58:28 AM By Stu Sjouwerman

The Coronavirus phishing scams have only gotten more aggressive and targeted now than ever before, InfoSecurity Magazine reports. Now researchers at Griffin Law are tracking self-employed ...

Australia Spending Nearly $1 Billion on Cyberdefense as China Tensions Rise

Jun 30, 2020 10:09:06 AM By Stu Sjouwerman

The NY Times reported some surprising numbers: "Officials promised to recruit at least 500 cyberspies and build on the country’s offensive capabilities to take the online battle overseas. ...

Phishing in Irish Streams

Jun 30, 2020 8:24:18 AM By Stu Sjouwerman

Netflix is warning users in Ireland to be on the lookout for another phishing campaign that’s impersonating the streaming service, Extra.ie reports. The emails inform recipients that ...

It's the Best of 2020! Cyber CSI: Learn How to Forensically Examine Phishing Emails to Better Protect Your Organization

Jun 29, 2020 3:10:24 PM By Stu Sjouwerman

Roger Grimes' lesson on how to forensically examine phishing emails received the highest viewer rating of any webinar so far this year. In case you missed it, make sure to watch this ...

New Dropbox-Based Pandemic Relief Payment Scam Targets U.K. Microsoft 365 Users, Bypassing Email Security

Jun 29, 2020 8:30:45 AM By Stu Sjouwerman

Using a Dropbox Transfer page, this new scam presses all the urgency buttons while eluding detection as being malicious in an effort to steal the victim’s online credentials.

One Letter Away: Impersonation, Bitcoin, and Phishing Expeditions

Jun 29, 2020 8:21:19 AM By Stu Sjouwerman

KrebsOnSecurity reports that a phishing website has been impersonating the private messaging service Privnote.com in order to steal Bitcoin. The real Privnote is a free site that allows ...

Phishing Attacks Significantly Increase in Singapore During COVID-19 Pandemic

Jun 26, 2020 8:55:57 AM By Stu Sjouwerman

The number of phishing attacks in Singapore to give up personal information has almost tripled in the last year and doubled during the COVID-19 pandemic, according to the Cybersecurity ...

‘New VPN Configuration’ Email Tricks Microsoft 365 Users Out of Credentials

Jun 24, 2020 4:17:48 PM By Stu Sjouwerman

Scammers are taking advantage of the prominent use of VPNs by remote workforces to send out this very topically relevant phishing email that just wants to steal your credentials.

Enterprises Experience Nearly Five Times as Many Mobile Phishing Attacks as Last Year

Jun 24, 2020 4:10:20 PM By Stu Sjouwerman

With every organization looking at protecting their corporate devices, the bad guys are increasingly setting their focus on one of the softest targets: the mobile device.

How To Improve Employee Engagement in Security Awareness Training

Jun 24, 2020 12:37:10 PM By Roger Grimes

One of the most common questions I get asked working for a security awareness training company is, how do I make employees more engaged with and care about the training? I get it. Who ...

Phishing and Redirection

Jun 24, 2020 8:40:11 AM By Stu Sjouwerman

Researchers at Check Point have observed a phishing campaign that, to avoid detection, abused servers belonging to Adobe, Samsung, and the University of Oxford. The attackers used several ...

Slack Phishing

Jun 23, 2020 8:27:33 AM By Stu Sjouwerman

People need to be able to use their instincts in order to spot new phishing techniques, according to Ashley Graves, a Cloud Security Researcher at AT&T Alien Labs. On the CyberWire’s ...

Pyongyang's Phishing with Job Offers

Jun 22, 2020 8:27:28 AM By Stu Sjouwerman

An attack campaign with possible ties to North Korea’s Lazarus Group targeted aerospace and military companies in Europe and the Middle East with spear phishing attacks late last year, ...

Top 12 Most Common Rogue URL Tricks

Jun 19, 2020 3:18:27 PM By Roger Grimes

It’s nearly impossible to find an Internet scam or phishing email that doesn’t involve a malicious Uniform Resource Locator (URL) link of some type. The link either directs the user to a ...

[Heads Up] North Korean State Hackers Plan a June 21 COVID-19 Phishing Attack That Targets 5 Million in Six Nations

Jun 19, 2020 10:00:17 AM By Stu Sjouwerman

ZDNet reported: "Singapore, Japan, and the US are amongst six nations targeted in a COVID-19 themed phishing campaign that is reportedly scheduled for June 21, during which 8,000 ...

[Heads Up] Australian Government and businesses hit by massive cyber attack from ‘sophisticated, state-based actor’

Jun 18, 2020 10:02:25 PM By Stu Sjouwerman

News.com.au reported that Australian Prime Minister Scott Morrison has "announced in an urgent press conference called this morning in Canberra, Mr Morrison said the ongoing, ...

Microsoft on COVID-19 Themed Cyberattacks

Jun 18, 2020 9:33:19 AM By Stu Sjouwerman

Microsoft’s Threat Protection Intelligence Team has published a report providing a detailed look into the proliferation of COVID-19-themed phishing over the past several months. The ...

[MSP News] Manage Your KnowBe4 Accounts Faster With NEW Managed Phishing Functionality

Jun 18, 2020 8:00:00 AM By Stu Sjouwerman

You have been asking for a better way to manage your multiple KnowBe4 accounts, and we heard you! We've made enhancements to the KnowBe4 phishing platform and added the NEW Managed ...

Increase in BLM Domain Names Forecasts BLM Phishing Attacks

Jun 16, 2020 3:26:04 PM By Roger Grimes

There has been a significant increase in DNS domain names containing blacklivesmatter or George Floyd’s name and there’s a good chance some of those are owned by people with malicious ...

Security Awareness Training Blog

Phishing Blog

View Topics