Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

View Topics

Ottawa City Treasurer sends $128,000 to fraudsters in email phishing scam

Apr 10, 2019 7:05:29 AM By Stu Sjouwerman
The treasurer of the city of Ottawa, Marian Simulik, fell for a business email compromise (BEC) scam and sent $100,000 to a scammer, the city’s auditor general revealed this week. Simulik ...
Continue Reading

[Heads-up] Survey Finds 82% Of You Are Impacted By Payment Fraud

Apr 10, 2019 6:53:10 AM By Stu Sjouwerman
Payment fraud continues to soar, as a record 82 percent of organizations reported incidents in 2018, according to the 2019 AFP Payments Fraud & Control Survey, underwritten by J.P. ...
Continue Reading

Organizations Face a 63% Likelihood of Being the Victim of Successful Cyberattack in Next 12 Months

Apr 10, 2019 6:27:56 AM By Stu Sjouwerman
The latest data from 1,200 IT organizations shows organizations seeing attacks as inevitable and, for some industries, successful compromise as even more a given.
Continue Reading

The Latest in Phishing Tackle

Apr 8, 2019 10:27:58 AM By Stu Sjouwerman
Phishing kits are using increasingly sophisticated techniques to avoid detection and make their scams more convincing, according to Prakhar Shrotriya at Zscaler.
Continue Reading

New Phishing Attacks Make 2FA Useless

Apr 8, 2019 7:10:26 AM By Stu Sjouwerman
These latest attacks are designed to proxy login requests that incorporate SMS-based authentication as a way to seamlessly bypass 2FA protection without being noticed.
Continue Reading

90 Percent Of Critical Infrastructure Hit By Cyberattacks

Apr 6, 2019 10:23:40 AM By Stu Sjouwerman
A new survey of professionals in industries using industrial control systems (ICS) and operational technology (OT) finds 90 percent of respondents say their environment has been damaged ...
Continue Reading

Scam of The Week: Realistic Phishing Attacks Take Advantage of U.S. Tax Season

Apr 6, 2019 9:53:46 AM By Stu Sjouwerman
With Tax Day only a few days away, cybercriminals are trying to take advantage of tax season through widespread phishing campaigns that aim to trick people into providing sensitive ...
Continue Reading

NCAA-themed Scams During Basketball Playoffs

Apr 4, 2019 7:05:19 AM By Stu Sjouwerman
Scammers are capitalizing on the hype for March Madness with a bevy of malicious streaming sites and phishing scams, according to Lindsey O’Donnell at Threatpost. Researchers at Zscaler ...
Continue Reading

Game of Thrones as Phishbait, with Hook

Apr 4, 2019 7:00:08 AM By Stu Sjouwerman
Game of Thrones is the top TV show used to deliver malware-infected pirated content, researchers at Kaspersky Lab have found. Threatpost says the researchers saw nearly 21,000 users ...
Continue Reading

Scaring People with GDPR

Apr 2, 2019 10:56:02 AM By Stu Sjouwerman
Criminals are taking advantage of misunderstandings surrounding the European Union’s General Data Protection Regulation (GDPR) to exploit gullible employees and organizations, according ...
Continue Reading

Free Tool: Phishing Reply Test Identifies Users Likely to Fall Victim to Fraudsters

Apr 2, 2019 10:00:00 AM By Stu Sjouwerman
Highly targeted phishing attacks, known as Business Email Compromise or CEO fraud scams have exceeded $12.5 billion in total known losses worldwide (according to the FBI). These social ...
Continue Reading

The Famous Fall Victim To Phishing, Too

Apr 1, 2019 2:00:47 PM By Stu Sjouwerman
A Georgia resident has taken a guilty plea to charges of hacking numerous Apple accounts belonging to high-profile athletes and musicians and stealing their credit card information, ...
Continue Reading

ISACA Recommends Phishing Simulations and Measurement as Appropriate Defense to Reduce Risk of Successful Phishing Attacks

Apr 1, 2019 6:08:11 AM By Stu Sjouwerman
Organizations are working to limit the effectiveness of phishing attacks using both internal and external collateral and programs. According to ISACA, the important thing is to have ...
Continue Reading

Mobile Devices Rise as a Top Attack Vector for Cybercriminals; Malware and Phishing Remain Primary Concerns

Apr 1, 2019 6:04:54 AM By Stu Sjouwerman
Cybercriminals are using every means available to reach their victims. According to Verizon’s latest data, attacks on mobile devices are increasing while security efforts fall behind.
Continue Reading

90% of large tech companies vulnerable to email spoofing

Mar 29, 2019 11:28:37 AM By Stu Sjouwerman
Most companies have not implemented standards for authenticating emails and preventing hackers from successful phishing attacks, according to Valimail.
Continue Reading

Which Employees are the Cyber Criminals After?

Mar 28, 2019 10:30:33 AM By Stu Sjouwerman
Lower-level employees are the workers most likely to face highly-targeted attacks, according to the online marketing firm Reboot. Citing information from Proofpoint’s most recent ...
Continue Reading

Microsoft Takes Control Of 99 Phishing Domains Operated By Iranian State Hackers

Mar 27, 2019 3:36:49 PM By Stu Sjouwerman
The domains had been used as part of spear-phishing campaigns aimed at users in the US and across the world. Court documents unsealed today revealed that Microsoft has been waging a ...
Continue Reading

Cybercriminals Double-Down on What Works, Nearly Doubling the Number of Phishing Attacks in 2018

Mar 27, 2019 10:49:47 AM By Stu Sjouwerman
Using a combination of old and new tactics and distribution channels, cybercriminals continue to seek to compromise endpoints and obtain online credentials. The targets haven’t changed. ...
Continue Reading

Find out which of your users' emails are exposed before the bad guys do

Mar 27, 2019 6:46:15 AM By Stu Sjouwerman
Do you know how big your email attack surface really is? Open Source Intelligence (OSINT) is the collection of information from public sources on the Internet that both red teams and bad ...
Continue Reading

Phishing Attack Compromises Spanish Defense Intranet By Foreign State

Mar 27, 2019 6:33:17 AM By Stu Sjouwerman
Reuters reported that a "computer virus" infected the Spanish Defense Ministry’s intranet this month with the aim of stealing high tech military secrets, El País newspaper said on ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews