Security Awareness Training Blog

Security Awareness Training Blog

Read the latest news about security awareness training, best practices, why you need it, and what happens when you don't have it in place.

Social Distancing Elevates Both Personal and Organizational Risk

With many countries participating in social distancing and “shelter in place” directives, remote workers are subjecting themselves and their employer to a number of risks. Find out why.
Continue Reading

Bad News from the (Fake) CDC: You've Got Malware

Malicious actors continue to probe organizations' security and defenses with malicious emails explicitly crafted to create and exploit sense of panic in the wake of the COVID-19. Over the ...
Continue Reading

Malicious Actors Release Coronavirus Guidelines for America

You already knew this was going to happen. It was just a matter of waiting. Fast on the heels of the release of President Trump's "Coronavirus Guidelines for America," malicious actors ...
Continue Reading

Organizations Say They Want Employees to Prepare for Ransomware Attacks, But Do Little in the Way of Training

Organizations are keenly aware of the ramifications of ransomware attacks and the need to prevent them but aren’t empowering users to prevent becoming the victim.
Continue Reading

A new ransomware strain called 'Save the Queen’, distributes itself from your own Domain Controllers

Sophisticated cybercriminals have continuously improved the effectiveness of ransomware attacks,  according to Yaki Faitelson, co-founder and CEO of Varonis. In an article for Forbes, ...
Continue Reading

See Ridiculously Easy Security Awareness Training

Join us for a live demo on Security Awareness Training and phishing in action!
Continue Reading

They're Here! COVID-19 Stimulus Check Phishes Finally Arrive

Last week the FBI warned Americans to be on the look-out for malicious emails attempting to bamboozle users with news surrounding economic fiscal stimulus checks that were to be delivered ...
Continue Reading

Sextortion Email Scams Now Include Threats to Infect Victims with COVID-19

In what may be either a moment of brilliance or desperation, scammers are attempting to use coronavirus infection threats as a means of further convincing victims to pay up.
Continue Reading

New Potential Phishing Scam Begins with A Phone Call

A recent suspicious phone call was brought to our attention. It looks to be the beginning of a phishing campaign and demonstrates the lengths cybercriminals will go to in order to ensure ...
Continue Reading

The Dilemma: Should you phish test during the COVID-19 pandemic?

By Perry Carpenter,  KnowBe4 Chief Evangelist and Strategy Officer. There’s no question, these are challenging times. Employees and organizations around the world are doing their best to ...
Continue Reading

An Uber Phish

London's Transport for London (TfL) is the entity that manages public transportation and public carriage licenses. In November 2019, TfL stated it would not renew Uber’s Private Hire ...
Continue Reading

Trends in Phishing, as Seen From a Mountain View

Researchers from Google’s Threat Analysis Group (TAG) released details on recent state-sponsored phishing campaigns from around the world. The researchers said that Google’s phishing ...
Continue Reading

Who Doesn’t Like Free Money? Scammers Are Expected to Increase Use of the COVID Stimulus Bill to Line their Pockets

With cybercriminals loving to be able to target victims where money is directly involved, security experts are anticipating a massive uptick in Stimulus-related scams.
Continue Reading

New Video Module "Covid-19 Best Practices" from KnowBe4 and Transperfect

Here is a quick announcement!
Continue Reading

The Paradox of Perfection

One of the challenges with living in a hyper-connected world is that it’s easy for anyone to stand on a soapbox and point out when something is wrong.
Continue Reading

Hospitality Provider the Target of an Old-School BadUSB Social Engineering Attack

In what appears to be a mix of old- and new-school social engineering, an attack spotted in the wild using a USB thumb drive offers us a view into how one company could have become the ...
Continue Reading

Scammers Hijacking Twitter Accounts To Sell Face Masks

Scammers cashing in on the Coronavirus crisis are now hijacking Twitter accounts to heavily promote a web site purporting to sell face masks, respirators, digital thermometers, and toilet ...
Continue Reading

Inception: Your Employee's Mind is the Scene of the Crime

I loved the movie Inception when it came out. It had everything, a stellar cast, amazing visuals, a strong plot, and a twisted end that still has me wondering whether or not they were in ...
Continue Reading

Every Computer Defense Has Three Main Pillars

Defense-in-Depth is a dogmatic term used in the computer defense industry to indicate that every computer defense has to be made up of multiple, overlapping defenses positioned to best ...
Continue Reading

[HEADS UP] Cybercriminals Attempt to Exploit Stimulus Package for COVID-19

In several recent blog posts we've showed you the myriad ways in which malicious actors have aggressively -- even ruthlessly -- deployed social engineering tactics to leverage the ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews