Romanian Cybercriminals Sentenced for Phishing Campaign

Jul 25, 2019 11:48:44 AM By Stu Sjouwerman

Our friends at Phishlabs wrote: "This week, the Department of Justice for the U.S. Attorney’s Office for the Northern District of Georgia announced the final of three sentences to be ...

BEC = “Because it’s Easy Cash” Scammers Trick Employees Into Giving Away Customer Info

Jul 25, 2019 10:51:29 AM By Stu Sjouwerman

Business Email Compromise—also known as CEO Fraud—scammers are now targeting a company's customers using a new indirect attack method designed to collect information on future scam ...

This Year, Phishing Causes Losses of $17,700 per minute And Ransomware Attacks Will Cost $22,184 Per Minute

Jul 25, 2019 10:37:42 AM By Stu Sjouwerman

Global losses to cybercrime total $1.5 trillion per year, which amounts to $2.9 million per minute, a new report by RiskIQ shows. Some of the largest companies are losing $25 each minute ...

A Phishing Campaign Evades Email Gateways via WeTransfer

Jul 25, 2019 8:39:51 AM By Stu Sjouwerman

A phishing campaign is abusing the legitimate file hosting site WeTransfer to get malicious links through email filters, according to Jake Longden at Cofense. The attackers send real ...

HoneyTrap, The Oldest In The World Now As Iranian Catphish on LinkedIn

Jul 24, 2019 6:48:59 AM By Stu Sjouwerman

Iranian state-sponsored hackers are increasing their targeting of civilian targets amid escalating tensions between the US and Iran, according to Zak Doffman at Forbes. Doffman cites a ...

Q2 2019 Top-Clicked Phishing Email Subjects from KnowBe4 [INFOGRAPHIC]

Jul 23, 2019 3:21:21 PM By Stu Sjouwerman

KnowBe4 reports on the top-clicked phishing emails by subject lines each quarter in three different categories: subjects related to social media, general subjects, and 'In the Wild' - we ...

[Scam of The Week] New 'US State Police' Phishing Extortion Scam Includes Contact Numbers

Jul 20, 2019 11:26:21 AM By Stu Sjouwerman

Our friend Larry Abrams at Bleeping computer warned: "A new extortion scam is underway that pretends to be from a US State Police detective who is willing to delete child porn evidence if ...

U.S. Coast Guard Warns of Phishing Attacks Designed for Data Theft and Malware Infection

Jul 19, 2019 3:15:52 PM By Stu Sjouwerman

A new Marine Safety Information Bulletin from the U.S. Coast Guard demonstrates that cybercriminals aren’t just after land-based businesses.

U.K. Sees an Increase in Sophisticated Phishing Attacks Targeting Educational Institutions

Jul 19, 2019 3:12:23 PM By Stu Sjouwerman

Using a mix of identity deception, domain spoofing, credential theft, and bank fraud, scammers are taking advantage of soft targets in the U.K.’s education sector.

NSO spyware ‘targets Big Tech cloud services’

Jul 19, 2019 10:15:28 AM By Stu Sjouwerman

The Israeli company whose spyware hacked WhatsApp has told buyers its technology can surreptitiously scrape all of an individual’s data from the servers of Apple, Google, Facebook, Amazon ...

Lateral Phishing Used To Attack Organizations On Global Scale

Jul 18, 2019 4:55:47 PM By Stu Sjouwerman

Warwick Ashford at ComputerWeekly reported: "Lateral phishing is a growing type of account takeover that has enabled attackers to target more than 100,000 people by hijacking just 154 ...

Microsoft Notifies 10,000 Customers About Nation-state Cyber Attacks

Jul 18, 2019 9:43:43 AM By Stu Sjouwerman

In an article about cyber security related to voting machines, an interesting snippet of information surfaced: “Microsoft said it has notified almost 10,000 customers in the past year ...

[INFOGRAPHIC] Employees receive nearly five phishing emails per work week, according to Avanan

Jul 18, 2019 7:14:33 AM By Stu Sjouwerman

One in every 99 work emails is a phishing attack, according to a recent Avanan report. With employees accustomed to a busy inbox, it's easy to fall victim to a phishing attack disguising ...

Mimecast Identifies Brand New Phishing Tactic Called "SHTML"

Jul 17, 2019 3:24:15 PM By Stu Sjouwerman

In early April, the Mimecast Threat Center team discovered a rare type of server-parsed HTML (SHTML) based phishing attack emerging from the UK.

UK Mid-Sized Firms Lost £30bn to CyberAttacks in 2018

Jul 16, 2019 7:24:18 AM By Stu Sjouwerman

Phil Muncaster at InfoSec Mag reported that "Cybersecurity incidents have cost UK mid-market firms a combined £30bn over the past year as automated attacks become the norm, according to ...

NEW SANS Whitepaper: Automating Response to Phish Reporting

Jul 15, 2019 8:00:00 AM By Stu Sjouwerman

As part of his SANS Technology Institute Master's degree, Geoffrey Parker recently published a whitepaper called Automating Response to Phish Reporting that got an A, was made a gold ...

An Amazon Phishing Scam Hits Just In Time For Prime Day

Jul 13, 2019 11:25:41 AM By Stu Sjouwerman

Amazon has confirmed that Prime Day 2019 will begin at 12 a.m. PT on Monday, July 15 and conclude at 11:59 p.m. PT on Tuesday, July 16.

TrickBot Malware May Recently Have Hacked 250 Million Email Accounts

Jul 13, 2019 10:52:40 AM By Stu Sjouwerman

Endgadged reported that "TrickBot malware may recently have stolen as many as 250 million email accounts, including some belonging to governments in the US, UK and Canada. The malware ...

Homeland Security Warning About Phishing As A Threat to 2020 Elections

Jul 10, 2019 7:15:43 AM By Stu Sjouwerman

The US Department of Homeland Security is warning state election officials that phishing attacks are one of the greatest threats to watch out for as the 2020 elections approach.

Automated Tailored EBAY Spam Campaign Leads to Risky Sites

Jul 10, 2019 7:10:31 AM By Stu Sjouwerman

Automated spam on eBay is spreading tailored phishing messages offering to promote users’ products, and the links the spammers share can lead to dangerous websites, according to Paul ...

Security Awareness Training Blog

Phishing Blog

View Topics