Cybercrime Group "Scattered Spider" is a Social Engineering Threat

Nov 20, 2023 3:08:35 PM By Stu Sjouwerman

The US Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have released a joint Cybersecurity Advisory describing the Scattered Spider cybercriminal gang’s activities.

QR Code Phishing Attacks Surging

Nov 17, 2023 10:14:02 AM By Stu Sjouwerman

The massive uptick in QR Code phishing is an indicator that scammers are seeing success in taking victims from the initial attack medium to one under the attacker’s control.

New ASD Cyber Threats Report Shows A Cybercrime Incident Is Reported in Australia Every Six Minutes

Nov 15, 2023 12:23:48 PM By Jacqueline Jayne

The annual Cyber Threat Report by the Australian Signals Directorate (ASD) was released this week, containing insights that every Australian business and citizen should read. The ASD ...

It’s Official: Scams Via Email and Text are Inescapable as Nearly Every American Receives Fake Messages Daily

Nov 15, 2023 12:22:43 PM By Stu Sjouwerman

New findings show that the overwhelming majority of people have to sort through scam messages and texts.

Online Scammer Poses as Skype, Swindles Victims Through Cryptocurrency Scam

Nov 14, 2023 2:01:21 PM By Stu Sjouwerman

Researchers at SlowMist describe a phishing campaign that’s distributing a phony version of Skype in order to steal cryptocurrency, Cointelegraph reports. The malicious app was likely ...

“Skillful Social Engineering of the IT Support Desk” One of the Most Common Tactics in Ransomware Attacks

Nov 9, 2023 3:57:11 PM By Stu Sjouwerman

As ransom payments reach an all-time high, it’s time to look at attacks from a data perspective and find the greatest opportunities to stop these attacks.

New Phishing Campaign Abusing .top Domains

Nov 8, 2023 1:14:08 PM By Stu Sjouwerman

A phishing campaign is exploiting a large number of .top domains, according to researchers from WhoisXML API. In an article for CircleID, the researchers analyzed a phishing operation ...

New State of Phishing Report 2023: An Alarming Surge in Phishing Threats

Nov 7, 2023 1:46:54 PM By Stu Sjouwerman

The fight against cyber threats remains a top priority for all organizations, including phishing attacks. SlashNext just released its much-anticipated annual "State of Phishing Report for ...

Targeted Social Engineering on the Rise With Lowering Phishing-as-a-Service Costs

Nov 7, 2023 1:46:47 PM By Stu Sjouwerman

Targeted individuals were the most common victims of social engineering attacks in the second half of 2022 and the first half of 2023, according to researchers at AtlasVPN.

Healthcare Sector Experiencing Increases in Ransomware, Ransoms and Downtime

Nov 6, 2023 9:18:42 AM By Stu Sjouwerman

An analysis of ransomware attacks on healthcare organizations from 2016 through October of 2023 shows the healthcare sector is likely to continue to suffer as a viable ransomware target.

Cybersecurity Expert: AI Lends Phishing Plausibility for Bad Actors

Nov 2, 2023 10:47:52 AM By Stu Sjouwerman

Cybersecurity experts expect to see threat actors increasingly make use of AI tools to craft convincing, highly targeted and sophisticated social engineering attacks, according to Eric ...

September Sees a 32% Increase in the Number of Ransomware Attacks in Just One Month

Oct 31, 2023 10:07:46 AM By Stu Sjouwerman

Continued analysis of ransomware attacks shows an upward trend in the number of attacks, with September resulting in the highest number of assaults so far this year.

Cybercriminal Group Octo Tempest and Its Menacing Phishbait

Oct 31, 2023 10:07:28 AM By Stu Sjouwerman

Microsoft is tracking a cybercriminal group called “Octo Tempest” that uses threats of violence as part of its social engineering and data theft extortion campaigns.

Exposed: Scam Artists Mimicking PepsiCo in Phishing Schemes

Oct 30, 2023 2:30:11 PM By Stu Sjouwerman

Researchers at INKY warn that a phishing campaign is attempting to distribute malware by impersonating PepsiCo.

New Amazon-Themed Phishing Campaign Targets Microsoft Live Outlook Users

Oct 27, 2023 11:43:25 AM By Stu Sjouwerman

Several months ago, Netskope Threat Labs uncovered a surge in PDF phishing attachments infiltrating Microsoft Live Outlook. These attacks were part of a larger series of phishing ...

Human-Crafted Phishing Emails Only Three Percent More Successful Than AI-Generated Ones, According To IBM

Oct 26, 2023 11:11:24 AM By Stu Sjouwerman

Red teamers at IBM X-Force warn that AI-generated phishing emails are nearly as convincing as human-crafted ones, and can be created in a fraction of the time. The researchers tricked ...

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

Oct 26, 2023 8:00:00 AM By Stu Sjouwerman

Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.

Most Organizations Believe Malicious Use of AI is Close to Evading Detection

Oct 24, 2023 4:37:22 PM By Stu Sjouwerman

As organizations continue to believe the malicious use of artificial intelligence (AI) will outpace its defensive use, new data focused on the future of AI in cyber attacks and defenses ...

One Out of Every Eight Emails Found to be Malicious as Attackers Continue to Hone Their Skills

Oct 24, 2023 4:36:46 PM By Stu Sjouwerman

An increase in the number of malicious emails being sent is resulting in more phishing attacks reaching inboxes. New data clarifies the factors that determine their malicious nature and ...

A Brief History of Phishing, and Other Forms of Social Engineering

Oct 23, 2023 10:23:52 AM By Stu Sjouwerman

Social engineering attacks have a very long history, though the Internet has made it easier to launch these attacks en masse, according to Sean McNee at DomainTools. McNee points to an ...

Security Awareness Training Blog

Phishing Blog

View Topics