Kiwi Drivers Phished with Bogus License Renewals

Jan 16, 2020 8:36:17 AM By Stu Sjouwerman

The New Zealand Transport Agency (NZTA) has warned of an ongoing email phishing campaign using fake vehicle license renewal reminders, 1 News reports. The emails appear legitimate and ...

Happy Hotel With a Sad Ending

Jan 15, 2020 8:42:17 AM By Javvad Malik

Tokyo, Japan-based Almex which operates the Japanese Happy Hotels announced it has been hacked and that customer data including email address, birth date, gender, phone number, log in, ...

Nobel Laureates Get Scammed, Too

Jan 15, 2020 8:21:53 AM By Stu Sjouwerman

Nobel Prize-winning economist and New York Times Opinion columnist Paul Krugman appears to have been taken in by a phishing scam, Business Insider reports. In a tweet that’s since been ...

Security-Related and Giveaway Phishing Email Subject Lines Get the Most Clicks

Jan 14, 2020 12:06:00 PM By Stu Sjouwerman

KnowBe4 revealed the results of its Q4 2019 top-clicked phishing report. The results found that simulated phishing tests with an urgent message to check a password immediately were most ...

Hackers Target the Special Olympics of New York and Use them to Launch Phishing Attacks

Jan 14, 2020 11:53:50 AM By Stu Sjouwerman

This latest attack demonstrates how cybercriminals can leverage one organization as merely a part of a larger phishing campaign to scam countless individuals out of credentials or money.

Fast Work By Cops Recovers $710,000 After CEO Fraud Attack Hits Long Island County Government

Jan 14, 2020 6:33:48 AM By Stu Sjouwerman

Finally some good news. Newsday reports that in record time, Nassau County, New York, recovered $710,000 that was transferred to scammers who were impersonating an existing county vendor.

Texas School District Loses $2.3 Million In BEC Scam

Jan 13, 2020 12:58:38 PM By Stu Sjouwerman

Texas’s Manor Independent School District was the victim of a costly 2.3 million dollar Business Email Compromise (BEC) scam in November of 2019.

Auto Dealership Becomes Latest Victim of Ransomware Attack Costing Up to $500,000

Jan 13, 2020 9:57:23 AM By Stu Sjouwerman

The opening of a seemingly benign email from a coworker by an unsuspecting employee set in motion an attack that brought operations to a halt and resulted in some costly remediation. The ...

Microsoft Sues Hacker Group for Data Theft of Highly Sensitive Information

Jan 13, 2020 9:48:18 AM By Stu Sjouwerman

A new recently unsealed lawsuit against a North Korean hacker group shows how even the largest companies can be successfully attacked by phishing.

An Overview of Phishing from the Accounting Sector

Jan 13, 2020 8:23:18 AM By Stu Sjouwerman

Employee training is an essential long-term defense against phishing attacks, according to David Barton and Kimberly Anderson at UHY Advisors. In an article for Accounting Today, Barton ...

[Scam Of The Week] Don't Fall For This Tricky: “Start your 2020 with a gift from us”

Jan 13, 2020 7:00:00 AM By Stu Sjouwerman

Paul Ducklin at Naked Security warned us about a scam that just surfaced and promises a gift by courier from overseas where the other person hasn’t told you what they’re sending – the ...

Cybercriminal Offers a “How To” Guide for Robbing Banks; Uses Cayman National Bank as the Example

Jan 10, 2020 10:05:49 AM By Stu Sjouwerman

This latest document from notorious hacker Phineas Phisher, along with a leaked report from PwC, shows how easy it is for a bank to be hacked and defrauded.

Phishing Attacks Impersonating Canadian Banks Work So Well, the Campaign Has Been Running for Two Years

Jan 10, 2020 9:56:20 AM By Stu Sjouwerman

As part of a massive ongoing phishing campaign, the same group of attackers leverage hundreds of lookalike phishing websites to steal from unsuspecting banking customers. Security ...

The Top 5 Eyeopener Strategies To Improve Your IT Defenses And Keep Bad Guys Out Of Your Network

Jan 9, 2020 4:16:06 PM By Roger Grimes

Last year, in 2019 according to CVEdetails, there were 12,174 new, publicly announced vulnerabilities. If that sounds like a high number, it’s a lot less than the previous two years. We ...

New Office 365 Phishing Attack Targets OAuth Apps Instead of Credentials

Jan 9, 2020 8:43:14 AM By Stu Sjouwerman

Trying to steal your username and password is so “yesterday.” The 2020 Hacker is now leveraging Office 365 OAuth APIs to gain control over user mailboxes with phishing tactics.

The Better the Phishing Protection Gets, the More Sophisticated Phishing Attacks Are Getting

Jan 9, 2020 8:34:29 AM By Stu Sjouwerman

Microsoft’s review of how phishing has evolved over the last year highlights some of the great lengths attackers will go to in order to avoid being detected as a phishing campaign.

Of Course, Scammers Exploit Fears of Iranian Hacking

Jan 9, 2020 8:23:29 AM By Stu Sjouwerman

A new phishing campaign is attempting to frighten people into handing over their credentials by claiming Microsoft was hacked by Iran, BleepingComputer reports. The campaign is ...

December Content Update: Includes New Versions of Email Exposure Check Pro and Phishing Security Test Tools

Jan 8, 2020 5:36:43 PM By Stu Sjouwerman

Here are a few important updates to share with you from the month of December.

Smishing Examples & Defenses

Jan 8, 2020 10:04:15 AM By Roger Grimes

Smishing is phishing via Short Message Service (SMS) on a participating device, usually a cell phone. Long neglected by phishers and spammers, smishing has recently become a very common ...

Mobile Threats Shouldn't be Overlooked

Jan 8, 2020 8:31:11 AM By Stu Sjouwerman

Phishing attacks against mobile devices can be just as damaging to an organization as attacks targeting workstations and laptops, according to a market report by Cyber Security Hub. ...

Security Awareness Training Blog

Phishing Blog

View Topics