Security Awareness Training Can Help Defeat Deepfake and AI Phishing

There is no doubt that more pervasive deepfake and AI technologies will make for more realistic, sophisticated, phishing attacks, and add to an already huge problem.
Continue Reading

Vishing Gang Takes Victims for “Tens of Millions” Using Little More than Social Engineering

Czech and Ukrainian police have arrested six individuals responsible for a call center-based vishing scam designed to trick victims into thinking they were already victims of fraud.
Continue Reading

Criminals Are Cautious About Adopting Malicious Generative AI Tools

Researchers at Sophos have found that the criminal market for malicious generative AI tools is still disorganized and contentious.
Continue Reading

No One Knows How Online Pharmacy Company was Hit with a Data Breach Impacting 2.3 Million Customers

This is a cautionary tale of both how your data can legally end up in the hands of an organization you never intended and how victims can be largely left in the dark post-breach.
Continue Reading

QR Code Phishing Campaigns on the Rise

There’s been a “precipitous rise” in QR code phishing campaigns in 2023, according to Matthew Tyson at CSO.
Continue Reading

Users Fall for Smishing Attacks 6-10 Times More Than Email-Based Attacks

With organizations heavily focusing on protecting the corporate endpoint, cybercriminals are switching focus onto mobile devices where users are more prone to fall for their social ...
Continue Reading

Who Knew Neanderthals were so High-Tech?

Researchers at ESET describe various types of scams launched by users of Telekopye, a telegram bot that assists in crafting social engineering attacks.
Continue Reading

Initial Access Broker Activity Doubles in One Year’s Time

New data sheds light on just how active the Initial Access Broker (IAB) business is, and the growth uncovered doesn’t bode well for potential victim organizations.
Continue Reading

Huntress Finds Business Email Compromise (BEC) Increases In Q3, 2024

Huntress has released a report finding that business email compromise (BEC) attacks have risen in the third quarter of 2023.
Continue Reading

Old Bloomberg Crypto Account Bio Link Used in Discord Phishing Attack

Scammers used an outdated link found in an X (formerly Twitter) account belonging to Bloomberg Crypto to send users to a phishing site designed to steal Discord credentials, ...
Continue Reading

73% of Organizations Affected by Ransomware Attacks Globally in 2023, According to Statista

I recently wrote about how 1 in 34 organizations globally has experienced an attempted ransomware attack. But that statistic doesn’t provide enough context around the impact felt by the ...
Continue Reading

With Expected Increases of Holiday Sales Comes Similar Expectations of More Cyber Scams

If increases in cyberattacks this year are any indication of what to expect in the next six weeks of holiday shopping, we should expect a massive uptick in holiday-related scams.
Continue Reading

Cybercrime Group "Scattered Spider" is a Social Engineering Threat

The US Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have released a joint Cybersecurity Advisory describing the Scattered Spider cybercriminal gang’s activities.
Continue Reading

Johnny Jet's $3,000 Podcast Scam Nightmare – Unveiling the Elaborate Con that Hijacked his Facebook Kingdom

Travel influencer Johnny Jet has disclosed that he fell victim to a scam that caused him to lose access to his Facebook account, which has tens of thousands of followers. The scammers ...
Continue Reading

QR Code Phishing Attacks Surging

The massive uptick in QR Code phishing is an indicator that scammers are seeing success in taking victims from the initial attack medium to one under the attacker’s control.
Continue Reading

It’s Official: Scams Via Email and Text are Inescapable as Nearly Every American Receives Fake Messages Daily

New findings show that the overwhelming majority of people have to sort through scam messages and texts.
Continue Reading

Online Scammer Poses as Skype, Swindles Victims Through Cryptocurrency Scam

Researchers at SlowMist describe a phishing campaign that’s distributing a phony version of Skype in order to steal cryptocurrency, Cointelegraph reports. The malicious app was likely ...
Continue Reading

1 Out of Every 34 Organizations Worldwide Have Experienced an Attempted Ransomware Attack

With organizations globally experiencing an increase in attempted ransomware attacks year over year, new data shows how the global average isn’t even the worst news.
Continue Reading

[INFOGRAPHIC] Original Research: Cybersecurity Challenges Faced by European Infosec Leaders

Cybersecurity threats continue to put European organisations of all sizes at risk. Infosec leaders face multi-pronged challenges, from mitigating the threats themselves to managing the ...
Continue Reading

“Skillful Social Engineering of the IT Support Desk” One of the Most Common Tactics in Ransomware Attacks

As ransom payments reach an all-time high, it’s time to look at attacks from a data perspective and find the greatest opportunities to stop these attacks.
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews