Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

View Topics

[Heads-up] Bad Guys Love Marriott: 500 Million Data Breach Is Phishing Heaven

Nov 30, 2018 10:18:39 AM By Stu Sjouwerman
So I guess we have just reached the tipping point, it's "privacy game over" for business travelers.
Continue Reading

Reminder: That Padlock Doesn’t Mean It’s Secure

Nov 27, 2018 8:05:51 AM By Stu Sjouwerman
We’ve mentioned this before, but the misconception has surfaced again, and it’s worth mentioning again. Looking for the padlock as a sign of a secure legitimate website isn’t an accurate ...
Continue Reading

As You Read This, It's Cyber Monday. How To Avoid The Top 10 Security Threats

Nov 24, 2018 11:15:47 AM By Stu Sjouwerman
InfoSecBuzz asked a number of security experts for their advice on the top security threats and how to avoid them. These are specialists from Alienvault, Cylance, Cybereason, F5 Networks, ...
Continue Reading

[Heads-up] Bad Guys Are Now Taking Over Email Inboxes Without Phishing Attacks

Nov 24, 2018 8:43:21 AM By Stu Sjouwerman
I found a great article in SecurityWeek by Alastair Paterson, the CEO of Digital Shadows. Could not have said it better myself, and he alerted everyone about an attack vector that was ...
Continue Reading

Phishing Accounts for 50% of All Fraud Attacks [InfoGraphic]

Nov 19, 2018 10:39:08 AM By Stu Sjouwerman
According to the latest research from RSA, attacks intent on committing financial fraud most frequently begin with tried and true phishing.
Continue Reading

Now here is something new: Russian Banks Targeted by Sophisticated Phishing Emails

Nov 19, 2018 9:45:51 AM By Stu Sjouwerman
This does not happen too often, and these attackers must be outside of Russia. If hackers inside Russia attack their own country, the FSB is on their doorstep with a SWAT team in no time.
Continue Reading

Phishing Attacks Rose by 30 Million in Q3 2018

Nov 13, 2018 4:13:14 PM By Stu Sjouwerman
Kaspersky Lab blocked 137 million phishing attempts in the third quarter of 2018, a 28 percent increase compared to Q2 2018. A report by the anti-virus company reveals that phishing ...
Continue Reading

New Ransomware Gang Pays Affiliates Up To 70% Of The Loot

Nov 12, 2018 9:59:01 AM By Stu Sjouwerman
A growing Ransomware-as-a-Service model uses affiliate attackers with proven track records to spread the malware, offering a percentage of the ransom.
Continue Reading

"Inception Attackers" Mix Old Exploit, New Backdoor, and Spear Phishing

Nov 9, 2018 1:26:08 PM By Stu Sjouwerman
SecurityWeek reported about a Palo Alto Networks warning: "A malicious group known as the “Inception” attackers has been using a year-old Office exploit and a new backdoor in recent ...
Continue Reading

Scam Of The Week: Fortnite And League of Legends Phishing Attacks

Nov 3, 2018 2:54:14 PM By Stu Sjouwerman
This is an excellent opportunity to sit down with your young'uns and explain the risks of online scams.
Continue Reading

Phishing Scam Is Targeting League of Legends Players

Nov 1, 2018 3:54:55 PM By Stu Sjouwerman
A phishing scam is using fake login pages to target League of Legends players, according to Avast Blog. At the moment, the attacks are taking place primarily in western Europe, mainly ...
Continue Reading

Got A Chinese Vishing Scam Call in Mandarin

Nov 1, 2018 3:24:11 PM By Stu Sjouwerman
Howard, KnowBe4's HackBusters Discussion Forum Moderator reported on this very interesting phone call he got:
Continue Reading

Has Microsoft Office 365 Beat Phishing?

Nov 1, 2018 2:16:48 PM By Roger Grimes
By Roger A. Grimes, KnowBe4's Data-Driven Defense Evangelist. Microsoft recently announced a big update to their Microsoft Office 365 (O365) anti-phishing technical capabilities. ...
Continue Reading

School Daze: Clever Phishing Emails Target Educational Organizations

Oct 25, 2018 11:44:19 AM By Eric Howes
By Eric Howes, KnowBe4 Principal Lab Researcher. It will surprise few people to learn that during our daily review of suspicious emails forwarded to us by users of the Phish Alert Button ...
Continue Reading

Replica Phishing Sites Prey on User Trust

Oct 25, 2018 9:46:56 AM By Stu Sjouwerman
Attacks leveraging look-alike federated logon pages are more dangerous than malware-laden attachments in email.
Continue Reading

KnowBe4 Top-Clicked Phishing Email Subjects for Q3 2018 [INFOGRAPHIC]

Oct 23, 2018 9:30:00 AM By Stu Sjouwerman
The latest results of KnowBe4's quarterly top-clicked phishing email subjects is now available. We report on three different categories: general emails, social media related subjects, and ...
Continue Reading

[Heads-up] U.S. Government: "Your Weak Cyber Security Violates Federal Law"

Oct 21, 2018 8:36:39 AM By Stu Sjouwerman
Reuters just made me aware of a U.S. Securities and Exchange Commission report about a recent SEC investigation of nine companies that had been victims of CEO fraud had sufficient ...
Continue Reading

It Only Takes One Phish: 37K Records and a Month of Access

Oct 18, 2018 9:57:12 AM By Stu Sjouwerman
The attack on California-based Gold Coast Health Plan went undetected, allowing attackers access to healthcare data serving as fuel for fraud.
Continue Reading

UK publishers warn of global phishing scams targeting manuscripts

Oct 15, 2018 6:21:02 AM By Stu Sjouwerman
A succession of global phishing scams targeting publishers and agents has prompted responses from several global publishers, reports the Bookseller.
Continue Reading

Organizations Need to Prepare for the Aftermath of Phishing Attacks

Oct 11, 2018 12:06:01 PM By Stu Sjouwerman
Phishing campaigns are growing more sophisticated as industries become increasingly aware of the threat they pose. Some of these attacks are so clever and meticulously crafted that many ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews