Security Awareness Training Blog

Security Awareness Training Blog

Read the latest news about security awareness training, best practices, why you need it, and what happens when you don't have it in place.

[Heads Up] The Chinese Have Likely Hacked Your Exchange Email Server

What if Chinese state-sponsored hackers have owned your OWA using several brand-new zero-day vulns? On March 2, Microsoft released emergency security updates to plug four security holes ...
Continue Reading

KnowBe4 Fresh Content Updates from February: Including New Season 3 of 'The Inside Man' Now Available

Here are important fresh content updates and new features to share with you that happened in the month of February.
Continue Reading

[ALERT] New Stanford Research: 88% Of Data Breaches Are Caused By Human Error

A recent 2020 report we just discovered confirms what we have been saying for many years now. About 9 out 10 data breaches are caused by your users. We are pleased that the somewhat older ...
Continue Reading

New York State Education Department Warns of Phishing Campaign

The New York State Education Department (NYSED) released an advisory warning that scammers are impersonating its employees in an attempt to steal social security numbers and money. The ...
Continue Reading

The Dilemma: Best-of-Breed Stand-Alone or a Bundled Suite of tools?

Over the last few decades, survey after survey has shown that if IT Administrators had their way, the vast majority of them prefer a hand-picked set of best-of-breed point solutions over ...
Continue Reading

Bogus FedEx and DHL Phishbait

Researchers at Armorblox describe an ongoing phishing campaign that’s using phony FedEx and DHL shipping notifications as phishing lures.
Continue Reading

Running Headfirst Into a Breach

The pandemic changed the fortunes of many organisations. Perhaps none so much as Zoom, which has found itself becoming a noun synonymous with any form of video call.
Continue Reading

[HEADS UP] Texas Electric Company Warns of Scam Involving Losing Power

With the recent weather crisis in Texas, victims are afraid their power could be cut off. One electric utility company in Texas warns of scams that are threatening customers that their ...
Continue Reading

The Cybersecurity Book You Should Read

Recently Cyber Defense Magazine released the top 100 cybersecurity books and the top recommended book is one of our Top Faves as well.
Continue Reading

KnowBe4 Named a January 2021 Gartner Peer Insights Customers’ Choice for Security Awareness Computer-Based Training Across Three Categories

KnowBe4 is excited to announce that we have been recognized as a Customers’ Choice across three categories in the January 2021 Gartner Peer Insights ‘Voice of the Customer’: Security ...
Continue Reading

KnowBe4 Adds New Language Localization Options to its Security Awareness Training and Simulated Phishing Platform

We are excited to announce the availability of KnowBe4’s new localization options for the Admin Console and Learner Experience. You can now set your default language for three ...
Continue Reading

The DOJ Charged Two Alleged Members of North Korea’s Military Intelligence Services With a Scheme That Included Attempts to Steal $1.3 Billion Over the Past Half-Decade for Pyongyang

Two alleged members of North Korea's military intelligence services were accused of hacking banks and companies in the U.S. and several other countries. The grand total for this scheme is ...
Continue Reading

Redirection to Zero Days

Malvertisers exploited a zero-day vulnerability in the browser engine used by Safari and other iOS apps, according to Eliya Stein at Confiant. The vulnerability, which was patched earlier ...
Continue Reading

Microsoft Finds 80% of Organizations Encounter an Increase in Security Threats Due to Remote Workers

Learning from last year’s shift to a remote workforce can help dictate how operations should evolve. New data from Microsoft points at the need to better secure remote workers.
Continue Reading

Microsoft: SolarWinds attack took more than 1,000 engineers to create

You may have missed this extremely interesting bit of data that ZDNet just published. "Microsoft reckons that the huge attack on security vendors and more took the combined power of at ...
Continue Reading

Phishing and Impersonated Brands

Microsoft is still the most impersonated brand for phishing campaigns, according to researchers at Vade Secure. The security firm spotted 30,621 unique Microsoft-related phishing URLs in ...
Continue Reading

Caught by a CAPTCHA?

Be aware of being involved in malicious CAPTCHA solving.
Continue Reading

Dutch Intelligence Agencies Warn About Chinese and Russian Cyber Espionage

Chinese and Russian state hackers threaten the Dutch economy. Three Dutch intelligence agencies jointly sound the alarm about digital espionage in financial newspaper Het Financieele ...
Continue Reading

[Scary?] AI Can Now Learn To Manipulate Human Behavior

The Conversation just published something I have been worried about for a while now. Scary? Could be getting that way sometime soon.  They said: "Artificial intelligence (AI) is learning ...
Continue Reading

Cannabis Company Loses Millions in BEC Scam

Australian medicinal cannabis company Cann Group has lost $3.6 million in a business email compromise (BEC) attack, Stockhead reports. The company had thought it was paying an unnamed ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews