IT and Executives are (Mostly) in Alignment and Both Fear the Phish

May 6, 2019 8:00:00 AM By Stu Sjouwerman

According to the latest from AT&T Cybersecurity, enterprise IT and boardrooms largely see eye-to-eye… and those eyes are watching some very common, yet pervasive, threats.

[Heads-up] Scary New MegaCortex Ransomware Strain Discovered That Targets Your Business Network

May 5, 2019 4:42:49 PM By Stu Sjouwerman

Sophos has discovered a scary new strain of very sophisticated ransomware called MegaCortex. It was purpose-built to target corporate networks, and once penetrated, the attackers infect ...

Exploiting Google on the Cheap

May 3, 2019 5:40:47 PM By Eric Howes

By Eric Howes, KnowBe4 Principal Lab Researcher. So, maybe you're a bad guy who doesn't have fancy code monkeys who can cook up an exploit that effectively converts Google into a phishing ...

New Phishing Campaign From 'FBI Director Wray' is Hysterical

May 3, 2019 7:05:35 AM By Stu Sjouwerman

Our friend Larry Abrams who runs the bleepingcomputer site had something highly entertaining: "We regularly write about phishing emails at BleepingComputer.com in order to warn our ...

Social Media Phishing Attacks Up More Than 70 Percent

May 3, 2019 6:50:05 AM By Stu Sjouwerman

Social media phishing, primarily on Facebook and Instagram, has seen a 74.7 percent increase in the first quarter of 2019. A new report on the current phishing landscape from predictive ...

Brunswick Church Falls For Phishing Scam Of Almost $2 Million

Apr 30, 2019 10:32:59 AM By Stu Sjouwerman

Staff at St. Ambrose Roman Catholic Church in Brunswick say the church was scammed out of nearly $2 million. The church said a phishing email led it to believe that a construction firm ...

Cryptojacking Phishing Attacks Target Enterprises With NSA-Linked Exploits

Apr 26, 2019 11:45:15 AM By Stu Sjouwerman

Summary: Researchers at Symantec are tracking a cryptojacking campaign that —for now—seems mostly to affect businesses in China. They're calling the campaign "Beapy," and the worm ...

PDFs Return as Phishbait

Apr 25, 2019 7:19:58 AM By Stu Sjouwerman

The use of malware-laden PDF email attachments has spiked in recent months, internet security company SonicWall has found. Over the course of 2018, SonicWall detected 47,000 new attack ...

Scott County Schools victim of $3.7 million CEO Fraud Phishing Scam

Apr 25, 2019 7:02:35 AM By Stu Sjouwerman

GEORGETOWN, Ky. (WKYT) - Scott County Schools has announced the district is a victim of a multi-million dollar online CEO fraud scam.

[BREAKING NEWS] US Supreme Court Curbs Class Action Lawsuits Caused By W-2 Phishing Fraud

Apr 24, 2019 4:56:06 PM By Stu Sjouwerman

BREAKING NEWS: The upshot: This case made it all the way to the Supreme Court and sets a new precedent. A phished employee sent out 1,300 confidential employee W-2 data.

[Heads up] Sneaky Phishing Attacks Exploit Legitimate Services & Platforms to Fly Below Your AV's Radar

Apr 24, 2019 2:14:59 PM By Stu Sjouwerman

By Eric Howes, KnowBe4 Principal Lab Researcher. Over the last few months, we have seen a rising trend of the bad guys using legitimate services—mainly file hosting platforms, but also ...

Phishing Emails Will Always Get Through

Apr 24, 2019 2:12:51 PM By Stu Sjouwerman

Attackers have proven their ability to adapt to improved security measures, and organizations should never assume they’re safe from phishing emails, says Paul Gillin at SiliconANGLE.

Executives are Out and Employees are In as Cybercriminals Change Their Primary Targets for Cyberattack

Apr 24, 2019 7:18:42 AM By Stu Sjouwerman

Phishing and Social Engineering scammers are shifting tactics, focusing efforts on low-level employees using a variety of methods as a means to cast a wider net within a targeted ...

Phishing Attacks See Massive Increases and Improvements in Execution with Social Engineering at the Helm

Apr 24, 2019 7:15:22 AM By Stu Sjouwerman

With 98% of malicious emails that hit inboxes containing no malware, the evolution and future of the phish lies squarely in the hands of effective social engineering.

Spearphishing Boils Down to Basic Social Engineering

Apr 23, 2019 7:13:50 AM By Stu Sjouwerman

While spearphishing attacks may employ various tactics and tools, they all rely on the same underlying human weaknesses to achieve their goals, according to Asaf Cidon from Barracuda ...

Social Engineers Earn a First

Apr 23, 2019 7:09:17 AM By Stu Sjouwerman

A study by nonprofit research company Jisc and the UK’s Higher Education Policy Institute (HEPI) found that 100 percent of spear phishing tests against universities were able to gain ...

Florida Spearphishing: Meddle Globally, Phish Locally

Apr 22, 2019 6:58:17 AM By Stu Sjouwerman

Russian intelligence services sent spearphishing emails to more than 120 email accounts used by Florida election officials in November 2016, according to Special Counsel Robert Mueller’s ...

U.K. Government: "80% Of Organizations Experience Phishing Attacks"

Apr 22, 2019 6:42:06 AM By Stu Sjouwerman

Despite maintaining an improved security posture over last year, 2019 brings additional attacks with a higher price tag, causing the U.K. government to urge organizations to do more.

Ohio Becomes the Third U.S. State to Adopt the NAIC’s Insurance Data Security Model Law

Apr 22, 2019 6:34:13 AM By Stu Sjouwerman

Ohio joins South Carolina and Michigan to create cybersecurity legislation modeled after the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law.

Phishing Continues to be the Source of Health Data Breaches Totaling Over 1M Breached Records

Apr 22, 2019 6:28:39 AM By Stu Sjouwerman

The beginning of 2019 has proven that data breaches in the health industry aren’t going anywhere. And from the intel on the breaches, phishing is playing a predominant role.

Security Awareness Training Blog

Phishing Blog

View Topics