90% of large tech companies vulnerable to email spoofing

Mar 29, 2019 11:28:37 AM By Stu Sjouwerman

Most companies have not implemented standards for authenticating emails and preventing hackers from successful phishing attacks, according to Valimail.

Which Employees are the Cyber Criminals After?

Mar 28, 2019 10:30:33 AM By Stu Sjouwerman

Lower-level employees are the workers most likely to face highly-targeted attacks, according to the online marketing firm Reboot. Citing information from Proofpoint’s most recent ...

Microsoft Takes Control Of 99 Phishing Domains Operated By Iranian State Hackers

Mar 27, 2019 3:36:49 PM By Stu Sjouwerman

The domains had been used as part of spear-phishing campaigns aimed at users in the US and across the world. Court documents unsealed today revealed that Microsoft has been waging a ...

Cybercriminals Double-Down on What Works, Nearly Doubling the Number of Phishing Attacks in 2018

Mar 27, 2019 10:49:47 AM By Stu Sjouwerman

Using a combination of old and new tactics and distribution channels, cybercriminals continue to seek to compromise endpoints and obtain online credentials. The targets haven’t changed. ...

Find out which of your users' emails are exposed before the bad guys do

Mar 27, 2019 6:46:15 AM By Stu Sjouwerman

Do you know how big your email attack surface really is? Open Source Intelligence (OSINT) is the collection of information from public sources on the Internet that both red teams and bad ...

Phishing Attack Compromises Spanish Defense Intranet By Foreign State

Mar 27, 2019 6:33:17 AM By Stu Sjouwerman

Reuters reported that a "computer virus" infected the Spanish Defense Ministry’s intranet this month with the aim of stealing high tech military secrets, El País newspaper said on ...

U.S. Healthcare Employee Engagement with Simulated Phishing Emails Drop by 67% With Repeated Exposure

Mar 26, 2019 6:33:28 AM By Stu Sjouwerman

A long-term phishing study involving 6 healthcare institutions shows employees are vulnerable to phishing attacks, and that they can become more vigilant through exposure.

[Heads-up] This Evil New Child Porn Phishing Attack Could Absolutely Ruin Your Life

Mar 24, 2019 3:29:36 PM By Stu Sjouwerman

Oh my. Bad guys have come up with a sinister new strain of blackmail/sextortion. Just when you thought things couldn't get worse, the bad guys sink lower. Eric Howes, KnowBe4's Principal ...

WOW, Phishing Attacks Are Now More Common Than Malware!

Mar 21, 2019 3:07:32 PM By Stu Sjouwerman

Microsoft’s security team is uniquely positioned to analyze trends in cyber security threats. Their frequent Security Intelligence Reports (SIR) are an excellent indicator of these ...

[Heads-up] Cybercriminals Are Moving To Mobile Phishing for Gift Cards Scams

Mar 21, 2019 7:04:55 AM By Stu Sjouwerman

Scammers are shifting to SMS to carry out business email compromise (BEC) attacks, since text messaging offers less visibility to the victim and more flexibility to the attacker, says ...

Phishing campaign targets Instagram users with fake copyright notices

Mar 20, 2019 4:19:26 PM By Stu Sjouwerman

A new phishing campaign targeting Instagram users is using fake copyright infringement notices to steal user credentials.

Blackmail and Sextortion Attacks Use Panic and Threats to Lure Their Victims

Mar 20, 2019 2:14:23 PM By Stu Sjouwerman

Preying on a victim’s fear of having “private” browsing details leaked sits at the center of these well-crafted attacks that leverage stolen or harvested passwords to establish ...

Very Few Professionals are Confident in Their Phishing Defense Assessments

Mar 20, 2019 6:51:13 AM By Stu Sjouwerman

New research from ISACA and Terranova Security found that just 12% of security, assurance, risk and governance professionals are confident in their ability to assess the effectiveness of ...

One in Seven Healthcare Employees Will Fall for Phishing Emails

Mar 20, 2019 6:45:40 AM By Stu Sjouwerman

A study recently published in the Journal of the American Medical Association highlights how vulnerable the healthcare sector is to phishing attacks, according to Jessica Davis at Health ...

The Phishing Bait is Bitcoin; the Hook is a Clipboard Hijacker

Mar 19, 2019 4:21:59 PM By Stu Sjouwerman

A new phishing campaign is spreading malware through emails that claim to have Bitcoin investment updates, according to My Online Security. The emails direct the victim to download an ...

[SCAM OF THE WEEK] Phishing Attack Warns About Boeing 737 Max Crashes And Infects Workstations

Mar 17, 2019 8:41:59 AM By Stu Sjouwerman

Large airline crashes tend to uniquely focus almost everyone's attention. Lowlife internet criminals are exploiting the fear connected to these incidents, and leverage it in phishing ...

[SCAM OF THE WEEK] New "Final Warning" Sextortion Emails State Adult Sites Infected You

Mar 16, 2019 10:02:42 AM By Stu Sjouwerman

Bleepingcomputer reported this week: "A new sextortion email campaign is underway that states a hacker infected the recipient's computer while they were visiting an adult web site. The ...

Three Romanian Men Commit Vishing And Smishing Crimes Worth $21 Million

Mar 16, 2019 8:43:06 AM By Stu Sjouwerman

Three Romanian citizens have pleaded guilty to carrying out a scheme that used recorded messages and cellphone texts to trick thousands of people into revealing their social security ...

Phishing Attack Use of Encryption Increases 400% for Malware Delivery, Communications, and Data Exfiltration

Mar 15, 2019 12:58:51 PM By Stu Sjouwerman

Encryption has become the norm for many cybercriminals looking to obfuscate all parts of an attack, according to Zscaler’s 2019 Cloud Security Insights Threat Report. One of the goals of ...

Software Supply Chains and Phishing Top Microsoft’s List of Greatest Cyberthreats

Mar 15, 2019 12:53:43 PM By Stu Sjouwerman

Microsoft’s latest Security Intelligence Report highlights the trends seen in 2018 with phishing as the preferred attack method and supply chains as a primary attack target.

Security Awareness Training Blog

Phishing Blog

View Topics