Automated Tailored EBAY Spam Campaign Leads to Risky Sites

Jul 10, 2019 7:10:31 AM By Stu Sjouwerman

Automated spam on eBay is spreading tailored phishing messages offering to promote users’ products, and the links the spammers share can lead to dangerous websites, according to Paul ...

Phishing And Impersonation Attacks Balloon in South Africa

Jul 8, 2019 10:00:46 AM By Stu Sjouwerman

South African companies saw an increase in phishing attacks containing malicious links or attachments in the past year. This is according to Mimecast’s 2019 State of E-mail Security ...

Discovered This Year: 5,334 Kits Offering Evasive Criminal Phishing-as-a-Service

Jul 8, 2019 8:00:00 AM By Stu Sjouwerman

Commodity phishing kits are making it easier for unskilled criminals to run sophisticated phishing campaigns for a low price, according to a report from cloud security provider Cyren.

80% of all Brand Deception Phishing Scams Targeting Execs Pretend to be Microsoft

Jul 8, 2019 8:00:00 AM By Stu Sjouwerman

The prevalence of Office 365 and the Windows OS has caused cybercriminals to choose the software titan as their primary brand used in identity deception phishing scams.

Over Half of Employees Don’t Adhere to Email Security Protocols

Jul 5, 2019 10:18:37 AM By Stu Sjouwerman

A new survey by Barracuda Networks shows that the vast majority (87%) of decision makers believe email threats will rise in the coming year. However, companies are ill-prepared to defend ...

Cyber Crime Refines Their Social Engineering Tactics

Jul 2, 2019 9:43:52 AM By Stu Sjouwerman

Attackers are improving their strategies by accounting for new developments in technology, Help Net Security reports. Researchers at FireEye analyzed 1.3 billion phishing emails and ...

Dridex Credential Stealer Returns With New Antivirus Evasion - Including Application Whitelisting

Jul 1, 2019 4:41:32 PM By Stu Sjouwerman

SCMag reported that a new strain of the notorious Dridex malware has been spotted using polymorphism antivirus evasion techniques in phishing emails. The Dridex credential-stealer that ...

Which Of The Four Types of Social Engineering Is The Most Damaging?

Jun 27, 2019 11:38:43 AM By Stu Sjouwerman

Cybercriminals know that targeted social engineering attacks lead to the highest payoffs, so the frequency and sophistication of these attacks is guaranteed to increase, writes Jasmine ...

1.5 Billion Gmail Calendar Users are the Target of a Crafty New Phishing Scam

Jun 26, 2019 2:34:43 PM By Stu Sjouwerman

Users of Google’s Calendar app are being warned about a scam that takes advantage of the popularity of the free service and its ability to schedule meetings easily.

Phishing Attacks Go Mobile as Cybercriminals Leverage Push Notifications

Jun 24, 2019 7:07:42 AM By Stu Sjouwerman

Taking advantage of the inherent trust in mobile content, the bad guys are using a mixture of phishing text messages and look-alike sites to trick users into giving up credentials.

[Heads-up] The U.S. Launched A Cyber Attack On Iran, And We're Expecting Spear Phishing Strike Backs

Jun 23, 2019 11:30:59 AM By Stu Sjouwerman

The tension in the Middle-East apparently prompted a game-changing move by the U.S. President. Washington Post sources say exactly 10 years after Stuxnet, the President approved a ...

UK Forensic Crime Labs Shut Down Due To Ransomware Attack

Jun 22, 2019 10:48:19 AM By Stu Sjouwerman

Every police force across England and Wales has been forced to prioritize evidence for forensic testing following a criminal cyber attack affecting one of the primary forensic service ...

FBI Alert: Last Week Conflict With Iran Can Cause Spear Phishing Retaliation

Jun 22, 2019 10:34:21 AM By Stu Sjouwerman

This blog post has been superseded by a more recent one. You can find this new post here.

Phishing Campaign Impersonates Email Alerts From DHS

Jun 21, 2019 10:26:51 AM By Stu Sjouwerman

An ongoing email-based phishing scam is attempting to fool recipients into opening malicious attachments disguised as notifications from the U.S. Department of Homeland Security (DHS), ...

Bogus Emails: 3.4 Billion Are Sent Every Day...

Jun 20, 2019 7:21:24 AM By Stu Sjouwerman

Research from Valimail shows that at least 3.4 billion phony emails are sent every day, Help Net Security reports. Despite this staggering number, most organizations still aren’t ...

How Hackers Emptied Church Coffers with a Phishing Attack and Social Engineering Phone Call

Jun 20, 2019 7:09:18 AM By Stu Sjouwerman

Cyber thieves aren't bound by a code of ethics. They look for weak targets and high rewards, which is exactly what Saint Ambrose Catholic offered.

Voicemail Phishing Scam Steals Credentials

Jun 14, 2019 6:34:57 AM By Stu Sjouwerman

A new phishing campaign is asking victims to click on a link in an email to download a voicemail, My Online Security reports. When recipients click on the link, they’ll be redirected to a ...

FBI’s Advice on Spotting Phishing

Jun 14, 2019 6:28:05 AM By Stu Sjouwerman

The FBI’s Internet Crime Complaint Center (IC3) released a PSA warning that attackers are exploiting people’s trust in sites that use HTTPS. Cybersecurity training has in the past rightly ...

Tax Phishing in the UK

Jun 12, 2019 1:51:27 PM By Stu Sjouwerman

Her Majesty's Revenue and Customs (HMRC) has processed 2.6 million reports of attempted phishing attacks since 2016, Infosecurity Magazine reports. More than 1.9 million of these phishing ...

Corporate Email Creates Unavoidable Phishing Risk

Jun 10, 2019 6:29:24 AM By Stu Sjouwerman

It’s impossible to avoid the risk of phishing attacks entirely, since employees still need to do their jobs, as Kelly Sheridan at Dark Reading puts it. Sheridan points to a recent report ...

Security Awareness Training Blog

Phishing Blog

View Topics