Phishing Campaigns Using Google Firebase Storage

May 26, 2020 8:31:52 AM By Stu Sjouwerman

Scammers are hosting phishing pages on Google Firebase Storage to bypass email security filters, Threatpost reports. Firebase is a Google-owned application development platform that ...

[Scam Of The Week] Microsoft Warns To Look Out for This Massive Covid-19 Excel Phishing Attack

May 23, 2020 12:34:45 PM By Stu Sjouwerman

Microsoft this week warned about a massive phishing attack that started on May 12. The campaign sends emails that look like they are from the "Johns Hopkins Center", and they have an ...

[Heads Up] The COVID Remote Work Mandate Skyrockets "Work From Home" Training Enrollments

May 21, 2020 1:51:12 PM By Stu Sjouwerman

KnowBe4 was one of the first to warn first about the impending COVID phishing tsunami on Jan 31, 2020. The bad guys did not disappoint and went all-out, all cylinders firing, and pulled ...

Nearly Every Organization is More Concerned about Cybersecurity Than Before COVID-19

May 20, 2020 4:36:21 PM By Stu Sjouwerman

New data from security vendor Tripwire highlights how the shift to remote working has changed the face of cybersecurity for both the current work climate and the future.

Your Next Ransomware Attack May Require Two Payments!

May 20, 2020 4:34:25 PM By Stu Sjouwerman

In a case of adding insult to injury, a new strain of ransomware is looking for one payment to decrypt, and a second payment to not publish stolen files.

Preying on the Unemployed

May 20, 2020 8:20:01 AM By Stu Sjouwerman

An SMS phishing campaign has been exploiting the COVID-19 crisis by spoofing the website of a job placement agency, the New York Daily News reports. The scammers set up a website that ...

Biases People Take Home With Them

May 19, 2020 8:01:01 AM By Stu Sjouwerman

Employees will naturally follow their cognitive biases unless organizations proactively engage them in security processes, according to Georgia Crossland, a Ph.D. researcher at Royal ...

Scammers Exploit Rollout of COVID-19 Contact-Tracing Apps

May 18, 2020 8:18:04 AM By Stu Sjouwerman

An SMS phishing campaign is telling people they’ve come into contact with someone who’s contracted COVID-19, Computing reports. The UK’s Chartered Trading Standards Institute (CTSI) ...

Dutch Online Retailer Wehkamp Loses 144,000 Euros in Bankruptcy Business Email Compromise

May 15, 2020 9:45:57 AM By Stu Sjouwerman

Cyber criminals successfully gained access to email traffic between bankruptcy trustees and Wehkamp – one of the biggest online retailers in The Netherlands – writes RTL Z. Employees of ...

That Email from President Trump? Yeah, That’s a Phishing Scam

May 14, 2020 11:45:00 AM By Stu Sjouwerman

New phishing scams impersonating President Trump and Vice President Pence are designed to install malware or be the start of an extortion scam.

World's Largest Sovereign Wealth Fund Falls For $10m Social Engineering Attack

May 14, 2020 8:29:08 AM By Stu Sjouwerman

The Norwegian Investment Fund has been swindled out of 10 million dollars by fraudsters who pulled off a social engineering attack that the Norfund called "an advanced data breach" but ...

Paying the Ransom Doubles the Cost of a Ransomware Attack

May 14, 2020 8:20:38 AM By Stu Sjouwerman

The total cost of the average ransomware attack more than doubles if the victim decides to pay the ransom, according to Sophos’s State of Ransomware 2020 report. The Sophos-commissioned ...

Watch Out for the Coming Tsunami of Mortgage Rescue Phishing Scams

May 13, 2020 8:22:43 AM By Stu Sjouwerman

At this point in time, with 10 years of phishing attack analysis under our belt, we can predict with a high reliability level what will be showing up in the near future. We see two scams ...

[HEADS UP] Coronavirus Phishing Attacks Skyrocket to 30% Increase

May 12, 2020 11:29:10 AM By Stu Sjouwerman

Scammers riding the COVID-19 wave are adapting to new scenarios as the pandemic evolves. Checkpoint recently discovered that over 192,000 coronavirus-related phishing attacks per week ...

Why Does Someone Click and Become a Victim of a Scam?

May 12, 2020 11:25:03 AM By Stu Sjouwerman

One of the keys to thwarting social engineering attacks is knowing what makes us want to click on links or respond to emails, according to cybersecurity expert Raef Meeuwisse. In an ...

Healthcare Providers Get Free Assistance with Remediating Ransomware Attacks

May 12, 2020 10:00:12 AM By Stu Sjouwerman

In the wake of ransomware attacks continuing on healthcare providers, despite the obvious need for hospitals and urgent care clinics to remain operational, one company is offering some ...

Half of Employees Put the Organization at Risk by Watching Adult Content on Work Computers

May 12, 2020 9:57:50 AM By Stu Sjouwerman

New data from Kaspersky shows how the pandemic has changed the way people work… and how these new habits increase the organization’s risk of cyberthreat.

[Scam of The Week] Unemployed Americans Are Now Deceived Into Grabbing ‘Remote Jobs’ As Money Mules

May 8, 2020 2:29:50 PM By Stu Sjouwerman

There are now tens of millions of people suddenly unemployed, looking for ways to make ends meet.

It Starts with a Phish: Employee PII at Risk When Pipeline Development Outsourcer Falls Victim to Ransomware Attack

May 7, 2020 10:36:01 AM By Stu Sjouwerman

The latest example of a modern-day ransomware attack demonstrates how data encryption and ransom can no longer be the assumed extent of an attack.

Fake Zoom Downloader is the Latest Method of Attack on Remote Workers

May 7, 2020 10:33:08 AM By Stu Sjouwerman

Riding on the coattails of the massive rise in popularity in the video conference solution, remote workers new to Zoom need to be wary of where they download the installer.

Security Awareness Training Blog