Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Beware of Toll Scam Texts: How Cybercriminals are Targeting U.S. Drivers

Jan 27, 2025 3:59:53 PM By Stu Sjouwerman
Drivers across the U.S. are being bombarded with fraudulent text messages claiming to come from toll operators like E-ZPass.
Continue Reading

Nearly Three-Quarters of UK Education Orgs Have Sustained Cyberattacks

Jan 27, 2025 3:58:39 PM By Stu Sjouwerman
73% of educational institutions in the UK have sustained at least one cyberattack or breach in the past five years, according to researchers at ESET.
Continue Reading

Phishing is the Top Security Threat For Smartphone Users

Jan 24, 2025 8:26:27 AM By Stu Sjouwerman
Phishing attacks are the most common security issue for smartphone users, according to a new study by Omdia.
Continue Reading

84% of Healthcare Organizations Sustained Cyberattacks Last Year

Jan 24, 2025 8:25:59 AM By Stu Sjouwerman
A new survey by cybersecurity vendor Netwrix found that 84% of healthcare organizations spotted a cyberattack in the past twelve months, with phishing attacks accounting for 63% of these ...
Continue Reading

4 Ways to Mature Your Human Risk Management Program

Jan 22, 2025 9:54:24 AM By Stu Sjouwerman
Human risk management (HRM) is now the primary approach to addressing the ongoing need for strong security cultures in organizations of all sizes. HRM focuses on more than just security ...
Continue Reading

Russian Spear-Phishing Campaign Targets WhatsApp Accounts

Jan 22, 2025 9:53:44 AM By Stu Sjouwerman
The Russian threat actor “Star Blizzard” has launched a spear-phishing campaign attempting to compromise WhatsApp accounts, according to researchers at Microsoft. The operation targets ...
Continue Reading

Malvertising Campaign Abuses Google Ads to Target Advertisers

Jan 22, 2025 9:53:14 AM By Stu Sjouwerman
Researchers at Malwarebytes are tracking a major malvertising campaign that’s abusing Google Ads to target individuals and businesses interested in advertising.
Continue Reading

Threat Actors Abuse Google Translate to Craft Phishing Links

Jan 20, 2025 8:03:56 AM By Stu Sjouwerman
Threat actors are abusing Google Translate’s redirect feature to craft phishing links that appear to belong to Google, according to researchers at Abnormal Security.
Continue Reading

Phishing Campaign Attempts to Bypass iOS Protections

Jan 20, 2025 8:03:20 AM By Stu Sjouwerman
An SMS phishing (smishing) campaign is attempting to trick Apple device users into disabling measures designed to protect them against malicious links, BleepingComputer reports.
Continue Reading

Ransomware Gangs Claimed More Than 5,000 Attacks in 2024

Jan 17, 2025 8:32:19 AM By Stu Sjouwerman
Ransomware groups claimed responsibility for 5,461 attacks in 2024, with 1,204 of these attacks being publicly confirmed by victim organizations, according to Comparitech’s latest ...
Continue Reading

Japan Attributes More Than 200 Cyberattacks to China Threat Actor "MirrorFace"

Jan 15, 2025 10:34:45 AM By Stu Sjouwerman
Japan’s National Police Agency (NPA) has attributed more than 200 cyber incidents over the past five years to the China-aligned threat actor “MirrorFace,” Infosecurity Magazine reports.
Continue Reading

Waging War on Explicit Deepfakes. The Real Problem Behind the UK Crackdown

Jan 13, 2025 8:17:17 AM By Javvad Malik
The UK government decided to wage war on explicit deepfakes. About time, right? But before we start celebrating, let's take a closer look.
Continue Reading

Phishing Campaign Abuses Legitimate Services to Send PayPal Requests

Jan 9, 2025 4:37:41 PM By Stu Sjouwerman
A phishing campaign is abusing Microsoft 365 test domains to send legitimate payment requests from PayPal, according to Fortinet’s CISO Dr. Carl Windsor.
Continue Reading

Malicious WordPress Plugin Assists in Phishing Attacks

Jan 9, 2025 4:36:54 PM By Stu Sjouwerman
Researchers at SlashNext warn that cybercriminals are using a WordPress plugin called “PhishWP” to spoof payment pages and steal financial information.
Continue Reading

Phishing for Gamers: Fake Offers Invite Gamers to Test New Gaming Titles

Jan 8, 2025 9:56:43 AM By Stu Sjouwerman
A phishing campaign is targeting users with phony offers to beta test new video games, according to researchers at Malwarebytes.
Continue Reading

Credential Phishing Increased by 703% in H2 2024

Jan 6, 2025 3:07:10 PM By Stu Sjouwerman
Credential phishing attacks surged by 703% in the second half of 2024, according to a report by SlashNext. Phishing attacks overall saw a 202% increase during the same period.
Continue Reading

Tax-Themed Phishing Campaign Delivers Malware Via Microsoft Management Console Files

Jan 2, 2025 4:23:04 PM By Stu Sjouwerman
Securonix warns that tax-themed phishing emails are attempting to deliver malware via Microsoft Management Console (MSC) files.
Continue Reading

Russia’s APT29 Launches Major Spear Phishing Campaign

Dec 23, 2024 5:14:23 PM By Stu Sjouwerman
Trend Micro warns that the Russian state-sponsored threat actor Earth Koshchei (also known as “APT29” or “Cozy Bear”) is using spear phishing emails to trick victims into connecting to ...
Continue Reading

"Get Beyond Security Awareness Training" Does Not Mean Forgetting About It

Dec 23, 2024 5:13:52 PM By Roger Grimes
KnowBe4 is a big believer in focusing on decreasing human risk as the best way to decrease cybersecurity risk in most environments.
Continue Reading

Mobile Phishing Attacks Use New Tactic to Bypass Security Measures

Dec 20, 2024 3:49:33 PM By Stu Sjouwerman
ESET has published its threat report for the second half of 2024, outlining a new social engineering tactic targeting mobile banking users.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews