Fall LinkedIn Job Postings Are a Prime Vehicle for Job Scams, Cyber Attacks

Oct 9, 2019 6:56:31 AM By Stu Sjouwerman

LinkedIn says the Fall hiring season is very hot right now. With more than 20 million jobs posted, LinkedIn is the perfect way for scammers to trick users into becoming victims.

Phishing Awareness: Considerations for Schools

Oct 7, 2019 7:14:14 AM By Stu Sjouwerman

Educating students and staff about phishing attacks is essential to protecting schools, according to Matt Britland, Director of IT and digital strategy at Alleyn’s School in London. In an ...

Amazon, Paypal, and Gmail Users are the Latest Target in a Sophisticated Multistage Phishing Attack

Oct 7, 2019 7:08:20 AM By Stu Sjouwerman

The latest attack, dubbed “Heatstroke” uses new target-specific phishing kits that may be sold as a “phishing-as-a-service” using new techniques to avoid leaving a trail.

Crime Sometimes Pays: $1.1M Recovered from U.K. Phishing Scammer 2 Years After Being Caught

Oct 7, 2019 7:00:53 AM By Stu Sjouwerman

We don’t often hear enough stories of cybercriminals being caught and paying back what they’ve stolen, but in the case of scammer Grant West, that’s exactly what has happened.

New Instagram Phishing Scam Uses Familiar (But Fake) 2FA Codes to Trick Victims

Oct 7, 2019 6:55:43 AM By Stu Sjouwerman

Scammers use familiar verification methods to establish credibility and lull the victim into a false sense of security to compromise Instagram accounts.

FBI Issues ‘High-Impact’ Ransomware Attack Warning—What You Need To Know

Oct 4, 2019 7:36:24 AM By Stu Sjouwerman

The FBI has issued a new warning that healthcare organizations, industrial companies, and the transportation sector are being targeted with ransomware. The attack methodologies continue ...

Cybersecurity Awareness Is Not Just For October!

Oct 4, 2019 6:59:02 AM By Stu Sjouwerman

By Joanna Huisman, KnowBe4's new SVP Strategic Insights & Research. I have a big birthday coming up, and as you can probably guess, I’m less than thrilled about it. I tell myself it’s ...

Ransomware Incident To Cost Danish Company A Whopping $95 Million

Oct 2, 2019 7:04:12 AM By Stu Sjouwerman

Catalin Cimpanu for ZDNet's Zero Day reported: "Demant, one of the world's largest manufacturers of hearing aids, expects to incur losses of up to $95 million following what appears to be ...

Copyright Infringement Warning as Phishbait

Oct 2, 2019 6:26:19 AM By Stu Sjouwerman

Scammers are using fake copyright infringement warnings to trick people into handing over their Instagram credentials, Naked Security reports. The warnings arrive in emails that appear to ...

North Koreans Spear Phish U.S. Victims With Social Engineering Hidden In Obscure Kodak FlashPix Format

Oct 1, 2019 7:23:44 PM By Stu Sjouwerman

A suspected North Korean threat actor has been sending spear phishing emails targeting US organizations, according to Prevailion researchers Danny Adamitis and Elizabeth Wharton. Adamitis ...

NetWire Remote Access Trojan Being Spread by Phishing Campaign

Oct 1, 2019 7:15:56 PM By Stu Sjouwerman

Researchers at Fortinet have come across a phishing campaign delivering a new version of the NetWire remote access Trojan (RAT). The phishing emails claim to contain invoices and ...

"Mishperceptions": The Five Most Common Phishing Myths Busted!

Oct 1, 2019 7:58:24 AM By Stu Sjouwerman

By Joanna Huisman, KnowBe4's new SVP Strategic Insights & Research. The bad guys know that the easiest way into your organization is through your employees. This is not an opinion. Of ...

Scam Of The Week: Yahoo Massive Data Breach Settlement Phishing Attacks

Sep 28, 2019 11:19:16 AM By Stu Sjouwerman

Yahoo is close to reaching a $117.5 million settlement in a class-action lawsuit over a series of data breaches that affected users between 2012 and 2016 — and your employees are ...

Chinese Hackers Target Airbus Suppliers in Quest for Commercial Secrets

Sep 27, 2019 11:35:20 AM By Stu Sjouwerman

European aerospace giant Airbus has been hit by a series of attacks by hackers targeting its suppliers in search of commercial secrets, sources told AFP, adding they suspected a Chinese ...

The Emotet Trojan Botnet is Back in Business

Sep 23, 2019 10:11:44 AM By Stu Sjouwerman

The Emotet botnet is up and running again after four months of inactivity, according to Ars Technica. Multiple security firms have reported seeing phishing emails delivering the malware ...

Massive phishing wave of account hijacks hits YouTube creators

Sep 23, 2019 7:47:49 AM By Stu Sjouwerman

Over the past few days, a massive wave of account hijacks has hit YouTube users, and especially creators in the auto-tuning and car review community, a ZDNet investigation discovered ...

PDF Phishing Attacks Using Microsoft OneDrive Surge Nearly 200%

Sep 19, 2019 3:23:25 PM By Stu Sjouwerman

Scammers use a mixture of familiar brand, unsuspecting users, legitimate document types and locations, and credential harvesting in this attack aimed at getting into your Office 365.

CEO Fraud Attacks Now Use Deepfake Audio and AI to Mimic Executives Over the Phone

Sep 19, 2019 2:54:32 PM By Stu Sjouwerman

While deepfake video gets most of the attention on social media, it’s deepfake audio that is quickly becoming the cybercriminal’s tools of choice for committing fraud.

Amazon Phishing Scam in Progress

Sep 19, 2019 7:49:14 AM By Stu Sjouwerman

HackRead has come across a phishing scam that’s trying to trick Amazon customers into handing over their account credentials, personal information, and financial details. The phishing ...

Microsoft Remains the Most Impersonated Brand in Phishing Attacks, with Facebook Phishing Surging

Sep 18, 2019 7:23:56 AM By Stu Sjouwerman

For the fifth quarter in a row, Microsoft is the favorite domain of choice for scammers using phishing attacks to lure their victims into clicking on malicious content.

Security Awareness Training Blog

Phishing Blog

View Topics