Security Awareness Training Blog

Security Awareness Training Blog

Read the latest news about security awareness training, best practices, why you need it, and what happens when you don't have it in place.

3 Important Facts to Take Away From the New Data Security Law

By Lecio De Paula, Jr., Director of Data Privacy, KnowBe4. New Hampshire joins Ohio, South Carolina, and Michigan in enacting a new data security law directed at insurers modeled after ...
Continue Reading

Three Lessons from a Recent MegaCortex Ransomware Phishing Attack

The MegaCortex strain of ransomware has been used in criminal campaigns targeting businesses as opposed to private individuals. The QuickBooks cloud-hosting firm iNSYNQ, has sustained ...
Continue Reading

Varieties of Extortion Experience

We are all familiar with ransomware and its increasingly dangerous cousin, wiper malware. The first encrypts your files and demands ransom payments in exchange for the decryption key. The ...
Continue Reading

Here Are Some Interesting Headlines I Found During Black Hat

Black Hat 2019 - The Craziest, Most Terrifying Things We Saw: I ran into Neil Rubenking when I went to the Qualys party which was in the Foundation Room all the way on top of the ...
Continue Reading

KnowBe4 Fresh Content & Features Updates - July 2019

Check out the content and feature updates in the KnowBe4 platform for the month of July!
Continue Reading

New UK Study: "3 out of 4 phishing scams get to your inbox untouched"

Chris Matyszczyk wrote: "Apple sends me so many invoices every week that I scarcely know what I've gone and bought. This appears to have also crossed the minds of researchers at the UK's ...
Continue Reading

Why School Districts are Targets of Social Engineering

School districts are becoming increasingly popular targets for ransomware, with at least five of these attacks occurring in July, according to the New York Times.
Continue Reading

Why Is Windows Defender The World's No. 1 Antivirus With More Than Half A Billion EndPoints?

Having been inside the AntiVirus software industry for quite a while, and building an AV tool from the ground up, when I saw Redmond start acquiring several small AV companies in 2008 and ...
Continue Reading

Churches and Other Not-for-Profits as Targets of Scams

On this week’s episode of the CyberWire’s Hacking Humans podcast, Dave Bittner and Joe Carrigan discussed a story written by two lawyers for Church Law & Tax that warns of a type of scam ...
Continue Reading

Freight Forwarding Email Scams are Business Killers

The Australian Cyber Security Centre (ACSC) has warned that multiple Australian IT suppliers have permanently closed their doors after falling victim to procurement scams, CRN reports. ...
Continue Reading

Scam Of The Week: Equifax Settlement Phishing

Well, that did not take long! The Equifax Data Breach resulted in a settlement and those affected have a choice between free credit monitoring or a $125 payment.
Continue Reading

Buyers of Facebook’s Libra Cryptocurrency are the Latest Target in Phishing Scams

Scammers are impersonating Facebook to trick potential buyers of Facebook’s new cryptocurrency into parting with their money.
Continue Reading

Russian Phishing: Swiss-based Email Provider ProtonMail Hit By Cyber Attack

Reporters investigating Russian military intelligence have been targeted by highly sophisticated cyber attacks through their encrypted email accounts, with evidence suggesting Moscow was ...
Continue Reading

CEO Fraud Phishing Scams Versus The U.K. Solicitors

The UK’s Solicitors Regulation Authority (SRA) has warned of another email scam that impersonated a real law firm in order to hijack a real estate transaction, according to Martin Parrin ...
Continue Reading

15-year old MyDoom Remains a Common Phish Hook

The destructive email worm MyDoom is still very active more than fifteen years after it was first spotted, according to ZDNet. Researchers at Palo Alto Networks’ Unit 42 observed 663,000 ...
Continue Reading

New Ransomware Strain Spreads Via SMS

A new Android ransomware strain was discovered by ESET researchers. It uses the victim's contact list to spread further using SMS messages that have malicious links.
Continue Reading

Iranian Hacker Group APT34 Use New ‘Tonedeaf’ Malware over LinkedIn in Latest Phishing Campaign

Targeting several key industries, this new campaign likely seeks to aid the Iranian government with information that could be of use to further Iran’s economic and security goals.
Continue Reading

[Heads-up] Nationwide Bomb Threat Extortion Phishing Attack Campaign With A Twist

IN OFFICES AND universities all across the country Thursday, the same threat appeared in email inboxes: Pay $20,000 worth of bitcoin, or a bomb will detonate in your building. Police ...
Continue Reading

Reuters: "BlackRock in talks to take over Cofense after U.S. security concerns - sources"

(Reuters) July 28, 2019 — "BlackRock Inc (BLK.N), an investor in Cofense Inc, is in advanced talks to take over the U.S. cyber security firm, after a U.S. national security panel asked ...
Continue Reading

Schools In Both The US And UK Victim Of Recent Phishing Attacks

A number of educational institutions have recently fallen victim to cyberattacks, highlighting the need for increased awareness training for students and faculty. SC Media UK has ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews