The Bad Guys Have a New Favorite Online Service to Exploit (And It May Be One You Never Heard Of)

Nov 14, 2019 5:58:45 PM By Eric Howes

Over the past few years malicious actors have apparently decided that the future of phishing lies in exploiting trusted online services. Your users have undoubtedly seen the upshot of ...

PayPal Becomes the Most Popular Phishbait

Nov 14, 2019 9:49:16 AM By Stu Sjouwerman

Vade Secure has found that PayPal is now the most impersonated brand in phishing attacks, surpassing Microsoft for the first time, Help Net Security reports. Vade detected 16,547 unique ...

Instagram Copyright Infringement is the Latest Phishing Scam Targeting Social Media

Nov 14, 2019 7:00:00 AM By Stu Sjouwerman

Focused on compromising social media credentials, scammers trick Instagram users into giving up credentials and other personally identifiable information with convincing phishing emails.

[Heads Up] This New, Unusual Ransomware Strain Goes Exclusively After Servers

Nov 12, 2019 11:52:31 AM By Stu Sjouwerman

Danny Palmer at ZDnet alerted on the following: "An unconventional form of ransomware is being deployed in targeted attacks against enterprise servers – and it appears to have links to ...

Third Party Phishing: The New Spear-Phishing Attacks That Traditional Defenses Just Don't Stop

Nov 12, 2019 8:00:00 AM By Stu Sjouwerman

Joe in accounting is pretty cyber-savvy. He doesn’t fall for basic phishing emails with masked URLs or phony password reset requests. But what happens when Joe gets an email from a ...

TrickBot Malware Uses Highly Personalized Fake Sexual Harassment Complaints as Phishing Bait

Nov 12, 2019 7:00:00 AM By Stu Sjouwerman

Fake sexual harassment complaints appearing to come from the U.S. Equal Employment Opportunity Commission (EEOC) are the latest baits used by attackers to disseminate TrickBot banking ...

Phishing Resistance for Charities

Nov 11, 2019 2:19:55 PM By Stu Sjouwerman

81% of charities say they’ve been targeted by a phishing attack this year, according to Ed Macnair, writing for UK Fundraising. Meanwhile, only 37% of charities think their IT and ...

Mac users warned that disabling all Office macros doesn’t actually disable all Office macros

Nov 11, 2019 9:57:58 AM By Stu Sjouwerman

Graham Cluley warned: "It’s been almost 25 years since macro malware first reared its head, and it would be nice to think that the defences Microsoft has built into its Office suite in ...

What if the Santa’s Elves knew better?

Nov 10, 2019 12:10:33 PM By Joanna Huisman

By Joanna Huisman, KnowBe4's new SVP Strategic Insights & Research. It’s that time of the year again when children all over the world take pause to try and figure out which side of ...

Specially Crafted ZIP Files Used to Bypass Secure Email Gateways

Nov 8, 2019 7:00:00 AM By Stu Sjouwerman

Attackers are always looking for new tricks to distribute malware without them being detected by antivirus scanners and secure email gateways. This was illustrated in a new phishing ...

The Direct Deposit Phish: Revisiting the Scene of the Crime

Nov 8, 2019 7:00:00 AM By Stu Sjouwerman

By Eric Howes, KnowBe4 Principal Lab Researcher. Well over a year ago we reported on the rise of a new form of CEO fraud in which malicious actors persuaded unwitting employees working in ...

Exactly Why Is Replying to Phishing Attacks A Really Bad Idea?

Nov 7, 2019 7:00:00 AM By Stu Sjouwerman

PhishLabs warns that replying to a phishing email, even if you know it’s a scam, can lead to further attacks. Most phishing campaigns are automated and replying to them puts you on a ...

APWG Q3 Report: Phishing Attacks at Highest Level in Three Years

Nov 5, 2019 10:38:28 AM By Stu Sjouwerman

According to the APWG’s new Phishing Activity Trends Report, the number of phishing attacks continued to rise into the autumn of 2019. The total number of phishing sites detected by APWG ...

Healthcare Industry Names KnowBe4 As The 2019 Top Rated Platform For Cybersecurity Training & Education

Nov 4, 2019 10:22:19 AM By Stu Sjouwerman

Black Book Market Research LLC surveyed over 2,876 security professionals from 733 provider organizations to identify gaps, vulnerabilities and deficiencies that persist in keeping ...

Phishing Kits Hosted on More than Six Thousand Domains

Nov 4, 2019 6:01:26 AM By Stu Sjouwerman

Akamai’s 2019 State of the Internet / Security Report found that 6,035 domains were being used to host 120 different phishing kits, according to BleepingComputer. The phishing kits ...

[Heads Up] Scam Of The Week: Phishing Attacks Using Better Benefits And Pay Raise Bait

Nov 2, 2019 9:25:02 AM By Stu Sjouwerman

Millions of employees use KnowBe4's Phish Alert Button to report suspect emails, and thousands of organizations share these reports with us. This has become a fascinating threat source, ...

Webroot Threat Researchers Take a Fresh Look at Phishing Tactics

Nov 1, 2019 7:15:50 AM By Stu Sjouwerman

Most people aren’t aware of how sophisticated phishing email templates and websites have become, according to David Dufour from Webroot. Dufour recently told the CyberWire that criminals ...

It's Benefits Enrollment Season Again...And That Means Prime Phishing Season!

Oct 31, 2019 11:14:54 AM By Stu Sjouwerman

By Eric Howes, KnowBe4 Principal Lab Researcher. Not content just to make tax season even more miserable than it already is, malicious actors are increasingly maneuvering to capitalize on ...

Vishing, from (not) the Bank

Oct 30, 2019 5:59:59 AM By Stu Sjouwerman

We saw yesterday how phishing affects the financial sector. Here we see another, related trend: impersonation attacks that purport to be from the victim’s bank.

A Recent Spate Of Spear Phishing Attacks Is Targeting The Financial Industry

Oct 29, 2019 6:45:30 AM By Stu Sjouwerman

Phishing attacks are getting harder to spot, especially as more attackers realize the value of targeted, well-crafted phishing attacks, according to Johannes Ullrich, the dean of research ...

Security Awareness Training Blog

Phishing Blog

View Topics