Security Awareness Training Blog

Security Awareness Training Blog

Read the latest news about security awareness training, best practices, why you need it, and what happens when you don't have it in place.

View Topics

[Heads Up] The Chinese Have Likely Hacked Your Exchange Email Server

Mar 6, 2021 9:48:40 AM By Stu Sjouwerman
What if Chinese state-sponsored hackers have owned your OWA using several brand-new zero-day vulns? On March 2, Microsoft released emergency security updates to plug four security holes ...
Continue Reading

KnowBe4 Fresh Content Updates from February: Including New Season 3 of 'The Inside Man' Now Available

Mar 5, 2021 9:31:10 AM By Stu Sjouwerman
Here are important fresh content updates and new features to share with you that happened in the month of February.
Continue Reading

[ALERT] New Stanford Research: 88% Of Data Breaches Are Caused By Human Error

Mar 4, 2021 6:43:06 PM By Stu Sjouwerman
A recent 2020 report we just discovered confirms what we have been saying for many years now. About 9 out 10 data breaches are caused by your users. We are pleased that the somewhat older ...
Continue Reading

New York State Education Department Warns of Phishing Campaign

Mar 1, 2021 9:55:30 AM By Stu Sjouwerman
The New York State Education Department (NYSED) released an advisory warning that scammers are impersonating its employees in an attempt to steal social security numbers and money. The ...
Continue Reading

The Dilemma: Best-of-Breed Stand-Alone or a Bundled Suite of tools?

Feb 26, 2021 7:05:55 AM By Stu Sjouwerman
Over the last few decades, survey after survey has shown that if IT Administrators had their way, the vast majority of them prefer a hand-picked set of best-of-breed point solutions over ...
Continue Reading

Bogus FedEx and DHL Phishbait

Feb 24, 2021 8:29:14 AM By Stu Sjouwerman
Researchers at Armorblox describe an ongoing phishing campaign that’s using phony FedEx and DHL shipping notifications as phishing lures.
Continue Reading

Running Headfirst Into a Breach

Feb 23, 2021 2:00:35 PM By Javvad Malik
The pandemic changed the fortunes of many organisations. Perhaps none so much as Zoom, which has found itself becoming a noun synonymous with any form of video call.
Continue Reading

[HEADS UP] Texas Electric Company Warns of Scam Involving Losing Power

Feb 22, 2021 4:31:15 PM By Stu Sjouwerman
With the recent weather crisis in Texas, victims are afraid their power could be cut off. One electric utility company in Texas warns of scams that are threatening customers that their ...
Continue Reading

The Cybersecurity Book You Should Read

Feb 18, 2021 2:00:57 PM By Stu Sjouwerman
Recently Cyber Defense Magazine released the top 100 cybersecurity books and the top recommended book is one of our Top Faves as well.
Continue Reading

KnowBe4 Named a January 2021 Gartner Peer Insights Customers’ Choice for Security Awareness Computer-Based Training Across Three Categories

Feb 18, 2021 10:54:52 AM By Stu Sjouwerman
KnowBe4 is excited to announce that we have been recognized as a Customers’ Choice across three categories in the January 2021 Gartner Peer Insights ‘Voice of the Customer’: Security ...
Continue Reading

KnowBe4 Adds New Language Localization Options to its Security Awareness Training and Simulated Phishing Platform

Feb 18, 2021 10:00:00 AM By Stu Sjouwerman
We are excited to announce the availability of KnowBe4’s new localization options for the Admin Console and Learner Experience. You can now set your default language for three ...
Continue Reading

The DOJ Charged Two Alleged Members of North Korea’s Military Intelligence Services With a Scheme That Included Attempts to Steal $1.3 Billion Over the Past Half-Decade for Pyongyang

Feb 18, 2021 8:52:09 AM By Stu Sjouwerman
Two alleged members of North Korea's military intelligence services were accused of hacking banks and companies in the U.S. and several other countries. The grand total for this scheme is ...
Continue Reading

Redirection to Zero Days

Feb 18, 2021 8:30:29 AM By Stu Sjouwerman
Malvertisers exploited a zero-day vulnerability in the browser engine used by Safari and other iOS apps, according to Eliya Stein at Confiant. The vulnerability, which was patched earlier ...
Continue Reading

Microsoft Finds 80% of Organizations Encounter an Increase in Security Threats Due to Remote Workers

Feb 17, 2021 8:15:00 AM By Stu Sjouwerman
Learning from last year’s shift to a remote workforce can help dictate how operations should evolve. New data from Microsoft points at the need to better secure remote workers.
Continue Reading

Microsoft: SolarWinds attack took more than 1,000 engineers to create

Feb 16, 2021 10:25:55 AM By Stu Sjouwerman
You may have missed this extremely interesting bit of data that ZDNet just published. "Microsoft reckons that the huge attack on security vendors and more took the combined power of at ...
Continue Reading

Phishing and Impersonated Brands

Feb 16, 2021 8:24:13 AM By Stu Sjouwerman
Microsoft is still the most impersonated brand for phishing campaigns, according to researchers at Vade Secure. The security firm spotted 30,621 unique Microsoft-related phishing URLs in ...
Continue Reading

Caught by a CAPTCHA?

Feb 15, 2021 3:15:42 PM By Roger Grimes
Be aware of being involved in malicious CAPTCHA solving.
Continue Reading

Dutch Intelligence Agencies Warn About Chinese and Russian Cyber Espionage

Feb 12, 2021 1:39:00 PM By Stu Sjouwerman
Chinese and Russian state hackers threaten the Dutch economy. Three Dutch intelligence agencies jointly sound the alarm about digital espionage in financial newspaper Het Financieele ...
Continue Reading

[Scary?] AI Can Now Learn To Manipulate Human Behavior

Feb 12, 2021 10:28:21 AM By Stu Sjouwerman
The Conversation just published something I have been worried about for a while now. Scary? Could be getting that way sometime soon.  They said: "Artificial intelligence (AI) is learning ...
Continue Reading

Cannabis Company Loses Millions in BEC Scam

Feb 10, 2021 8:32:27 AM By Stu Sjouwerman
Australian medicinal cannabis company Cann Group has lost $3.6 million in a business email compromise (BEC) attack, Stockhead reports. The company had thought it was paying an unnamed ...
Continue Reading
Subscribe

Search Our Blog


Ransomware Hostage Rescue Manual

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews