[HEADS UP] Recent Phishing Attack in Germany Hits Coronavirus Task Force

Jun 9, 2020 11:28:26 AM By Stu Sjouwerman

An ongoing phishing attack has been targeting executives of a company working to provide the German coronavirus task force with protective gear. The company is multinational and more than ...

[EXCLUSIVE] Indian Cyber Firm Spied on Investors and Politicians Across the Globe

Jun 9, 2020 8:51:41 AM By Stu Sjouwerman

A little-known Indian IT firm offered its phishing services to help clients spy on more than 10,000 email accounts over a period of seven years.

Combatting Rogue URL Tricks: How You Can Quickly Identify and Investigate the Latest Phishing Attacks

Jun 4, 2020 8:58:47 AM By Stu Sjouwerman

Don't click phishy links. Everyone knows that. But are your end users prepared to quickly identify today's tricky tactics being used by the bad guys? Probably not. Cybercriminals have ...

Remote Work Isn’t Good for Corporate Security (Part 2): 30% of Organizations Have Been the Victim of Phishing Scams Since the Lockdown

Jun 4, 2020 8:24:05 AM By Stu Sjouwerman

Lots of new data is now just coming out of the woodwork demonstrating some of the harsh realities of having employees work from home without proper security in place.

COVID-19 Tax Refund Phishing Attacks Offering Fake U.K. Government Grants

Jun 3, 2020 9:27:48 AM By Stu Sjouwerman

Researchers at Forcepoint describe an unusual phishing attempt that purported to come from the UK’s tax office, HM Revenue and Customs (HMRC). The email itself was clearly a phishing ...

Pandemics, Killer Insects, and Riots Stir Up Cybercriminals

Jun 3, 2020 7:00:00 AM By Erich Kron

What a year 2020 has been. We have not even gotten half way into the year and we have dealt with a global pandemic, potential murder hornets, protests and riots and even the possibility ...

Phishing for Supermarket Deliveries

Jun 2, 2020 9:00:23 AM By Stu Sjouwerman

Scammers are exploiting the increased demand for online shopping by setting up spoofed supermarket websites, Teiss reports. Researchers at Mimecast recently found thirty websites ...

Supreme Court “Summons” is the Latest Phishing Attack Aimed at Stealing Your Microsoft 365 Credentials

May 30, 2020 8:31:22 AM By Stu Sjouwerman

Even the Supreme Court isn’t safe from brand impersonation in this scam intent on getting victims to click on a link to a supposed subpoena to attend a hearing.

Verizon: Phishing is the Attack Vector Most Often Seen in Data Breaches

May 30, 2020 8:28:10 AM By Stu Sjouwerman

This year’s much-anticipated Verizon Data Breach Investigations Report sheds some light on how cybercriminals use phishing to achieve their goal of stealing data.

State Unemployment Programs Are the Latest Victim of Massive Fraud

May 30, 2020 8:22:09 AM By Stu Sjouwerman

Leveraging PII from victims in Washington, North Carolina, Massachusetts, Rhode Island, Oklahoma, Wyoming and Florida, scammers from Nigeria are filing fraudulent unemployment claims.

[Heads Up] Ransomware Damage Skyrockets As Ransoms Grew 14 Times In Just 12 Months

May 27, 2020 11:25:48 AM By Stu Sjouwerman

Last year was highly profitable for ransomware actors but with the prices we've seen recently, 2020 is likely to surpass it as actors continue to target large companies in key industries. ...

Beware of Phony LogMeIn Security Updates

May 27, 2020 9:32:29 AM By Stu Sjouwerman

Researchers at Abnormal Security warn that a phishing campaign is trying to steal LogMeIn remote desktop credentials. The attackers are sending phishing emails that purport to come from ...

Phishing Campaigns Using Google Firebase Storage

May 26, 2020 8:31:52 AM By Stu Sjouwerman

Scammers are hosting phishing pages on Google Firebase Storage to bypass email security filters, Threatpost reports. Firebase is a Google-owned application development platform that ...

[Scam Of The Week] Microsoft Warns To Look Out for This Massive Covid-19 Excel Phishing Attack

May 23, 2020 12:34:45 PM By Stu Sjouwerman

Microsoft this week warned about a massive phishing attack that started on May 12. The campaign sends emails that look like they are from the "Johns Hopkins Center", and they have an ...

Preying on the Unemployed

May 20, 2020 8:20:01 AM By Stu Sjouwerman

An SMS phishing campaign has been exploiting the COVID-19 crisis by spoofing the website of a job placement agency, the New York Daily News reports. The scammers set up a website that ...

The Three Pillars of the Three Computer Security Pillars

May 18, 2020 8:31:59 AM By Roger Grimes

Much of the world, or at least the United States, is coalescing around the NIST Cybersecurity Framework. It’s a pretty good one to follow out of the many dozens that have been proposed ...

Scammers Exploit Rollout of COVID-19 Contact-Tracing Apps

May 18, 2020 8:18:04 AM By Stu Sjouwerman

An SMS phishing campaign is telling people they’ve come into contact with someone who’s contracted COVID-19, Computing reports. The UK’s Chartered Trading Standards Institute (CTSI) ...

Dutch Online Retailer Wehkamp Loses 144,000 Euros in Bankruptcy Business Email Compromise

May 15, 2020 9:45:57 AM By Stu Sjouwerman

Cyber criminals successfully gained access to email traffic between bankruptcy trustees and Wehkamp – one of the biggest online retailers in The Netherlands – writes RTL Z. Employees of ...

That Email from President Trump? Yeah, That’s a Phishing Scam

May 14, 2020 11:45:00 AM By Stu Sjouwerman

New phishing scams impersonating President Trump and Vice President Pence are designed to install malware or be the start of an extortion scam.

World's Largest Sovereign Wealth Fund Falls For $10m Social Engineering Attack

May 14, 2020 8:29:08 AM By Stu Sjouwerman

The Norwegian Investment Fund has been swindled out of 10 million dollars by fraudsters who pulled off a social engineering attack that the Norfund called "an advanced data breach" but ...

Security Awareness Training Blog

Phishing Blog

View Topics