Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

View Topics

Cyber Criminals use Domino Effect Chain Attacks to Leverage One Compromised Bank to Infect the Next

Mar 8, 2019 10:10:47 AM By Stu Sjouwerman
New details from international security company Group-IB show how cybercriminals are no longer looking to just steal from one bank. Instead they chain their attacks to improve their ...
Continue Reading

Malware Blindness in the Enterprise

Mar 7, 2019 9:56:50 AM By Stu Sjouwerman
A growing percentage of cyberattacks are using encryption to avoid detection, according to a new report by Zscaler’s ThreatLabZ researchers. Their report, summarized by Help Net Security, ...
Continue Reading

FINRA Warns of New Phishing Attack Targeting Brokerage Firms

Mar 4, 2019 3:56:55 PM By Stu Sjouwerman
The latest warning from Financial Industry Regulatory Authority (FINRA) puts firms on notice of yet another tailored attack seeking to gain access to firms networks.
Continue Reading

New Facebook Phishing Scam is So Good It Will Fool Even You

Mar 1, 2019 2:33:11 PM By Stu Sjouwerman
Scams seeking to harvest online credentials have long tried to replicate known logon pages. But this newly found instance is just about perfect.
Continue Reading

Organizations Need an Anti-Phishing Plan to Stop Cyberattacks

Feb 28, 2019 12:56:53 PM By Stu Sjouwerman
With the massive rise in phishing attacks, it is time for organizations to realize the concept of becoming a victim is an issue of when and no longer if.
Continue Reading

[Scam Of The Week] Robocall scams surge to 85 billion globally

Feb 28, 2019 11:22:41 AM By Stu Sjouwerman
Robocall spam has surged to 85 billion calls globally with bank account, credit card and extortion being common scams, according to Hiya, a company that makes apps to fend off unwanted ...
Continue Reading

Discovered: A Whole New Strain Of Voice Phishing Attacks

Feb 28, 2019 11:07:32 AM By Stu Sjouwerman
What if social engineers, instead of calling victims with voice phishing attacks, intercepted phone calls their victims make to legitimate phone numbers? Malicious apps let cybercriminals ...
Continue Reading

reCAPTCHA Phishbait Targets Google Users

Feb 28, 2019 6:18:46 AM By Stu Sjouwerman
A phishing campaign is using a phony Google reCAPTCHA system to deliver banking malware, according to researchers at Sucuri. The attackers are sending emails, supposedly from a Polish ...
Continue Reading

It's The Season for Tax Scams... Again

Feb 26, 2019 7:19:23 AM By Stu Sjouwerman
America's Internal Revenue Service is warning taxpayers about a surge in phishing emails, links, and phone calls during tax season, according to Toni Birdsong at McAfee. The scammers pose ...
Continue Reading

Bogus Job Offers as Phishbait

Feb 25, 2019 5:29:34 PM By Stu Sjouwerman
A series of phishing campaigns are targeting companies in various industries with phony job offers using direct messages on LinkedIn, according to researchers at Proofpoint. The attacker ...
Continue Reading

The NoRelationship Attack Bypasses Office 365 Email Attachment Security

Feb 24, 2019 10:28:34 AM By Stu Sjouwerman
Attackers are bypassing Office 365 email attachment security by editing the relationship files that are included with Office documents, according to Yoav Nathaniel at Avanan. A ...
Continue Reading

Phishing campaign attempts to spread a new brand of snooping malware

Feb 22, 2019 1:03:53 PM By Stu Sjouwerman
Danny Palmer at ZDNet had the scoop: "A cyber espionage campaign is targeting national security think tanks and academic institutions in the US in what's believed to be an intelligence ...
Continue Reading

Various Types Of Phishing Attacks Defined

Feb 21, 2019 3:31:36 PM By Stu Sjouwerman
The definition of phishing is a cybercrime in which potential victims are contacted via email, telephone or text message by someone posing as a legitimate institution to lure individuals ...
Continue Reading

Iran indictments show even U.S. intelligence officials are vulnerable to basic phishing schemes

Feb 15, 2019 1:31:01 PM By Stu Sjouwerman
As the story broke about the charges against former U.S. Air Force intelligence specialist who defected to Iran and support targeted hacking against some of her former colleagues, one ...
Continue Reading

Cyberheist On Bank Causes Shutdown Of All Operations

Feb 14, 2019 8:51:11 AM By Stu Sjouwerman
Reuters reported that the Bank of Valetta, which accounts for almost half of Malta’s banking transactions, had to shut down all of its operations on Wednesday after hackers broke into its ...
Continue Reading

You Have A Special Valentine's Day Message!

Feb 11, 2019 5:11:01 PM By Stu Sjouwerman
Continue Reading

New Phishing Attack Uses Google Translate to Spoof Login Page and Fool Victims

Feb 11, 2019 2:18:25 PM By Stu Sjouwerman
A clever use of Google Translate fools victims into believing spoofed authentication requests are being handled by Google itself.
Continue Reading

Phishers Target Anti-Money Laundering Officers at U.S. Credit Unions

Feb 8, 2019 9:58:24 AM By Stu Sjouwerman
Continue Reading

Scammers Still Exploit Hijacked GoDaddy Domains

Feb 7, 2019 7:18:05 AM By Stu Sjouwerman
Criminals are still using hijacked GoDaddy domains to launch large-scale spam campaigns, despite GoDaddy taking steps last month to address the authentication flaw exploited by the ...
Continue Reading

Social Engineering Comes to Wikipedia

Feb 6, 2019 6:55:23 AM By Stu Sjouwerman
Attackers are selectively editing Wikipedia articles to lend credibility to tech support scams, according to Rob VandenBrink at the SANS Internet Storm Center. The Wikipedia page for the ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews