USPS Surges to Take Top Spot as Most Impersonated Brand in Phishing Attacks

Apr 23, 2024 10:00:21 AM By Stu Sjouwerman

New data shows phishing attacks are deviating from the traditional focus on technology and retail sectors and are opting for alternate brands with widespread appeal.

4 out of 5 of Physicians Were Impacted by February’s Cyber Attack on Change Healthcare

Apr 22, 2024 9:32:58 AM By Stu Sjouwerman

A new survey of physicians details the devastating impact of the Change Healthcare cyber attack on the healthcare sector.

Half of U.K. Businesses Experienced a Security Breach or Cyber Attack in the Last 12 Months

Apr 19, 2024 9:04:17 AM By Stu Sjouwerman

Analysis of cyber attacks targeting U.K. organizations highlights the effectiveness of social engineering attacks and the fact that businesses are missing the mark on how to stop it.

Russian Threat Actor FIN7 Targeting the Automotive Industry with Spear Phishing Attacks

Apr 19, 2024 9:03:32 AM By Stu Sjouwerman

The cybercriminal threat actor FIN7 is launching spear phishing attacks against the automotive industry in the United States, according to researchers at BlackBerry.

LastPass Warns of Deepfake Phishing Attempt

Apr 18, 2024 8:39:22 AM By Stu Sjouwerman

Password Manager software developer LastPass warned that one of its employees was targeted by a social engineering attack that used an audio deepfake which impersonated the company’s CEO. ...

AI Voice Cloning and Bank Voice Authentication: A Recipe for Disaster?

Apr 18, 2024 8:39:02 AM By Stu Sjouwerman

New advancements in generative AI voice cloning come at a time when banks are looking for additional ways to authenticate their customers – and they’re choosing your voice.

Phishing Frenzy: Microsoft and Google Most Mimicked Brands in Cyber Scams

Apr 16, 2024 1:38:34 PM By Stu Sjouwerman

Microsoft and Google were the most frequently impersonated brands in phishing attacks during the first quarter of 2024, according to a report from Check Point.

Cisco Calls Out Organizations As Being “Overconfident and Unprepared” for Cyber Attacks

Apr 16, 2024 1:38:31 PM By Stu Sjouwerman

In a new report, Cisco says the cyber readiness of organizations is lacking despite having experienced multiple cyber attacks within the last year.

[WARNING] FBI Issues Alert on Major Phishing Campaign That Impersonates US Toll Services

Apr 15, 2024 3:57:18 PM By Stu Sjouwerman

The FBI has issued an alert warning of a widespread SMS phishing (smishing) campaign targeting people in several US states with phony notices of unpaid tolls, BleepingComputer reports.

State-Sponsored Disinformation Campaigns Targeting Africa Driving Instability And Violence

Apr 12, 2024 1:46:34 PM By Stu Sjouwerman

A shocking report shows how email-based disinformation campaigns can have material real-world impacts to the citizens in the targeted countries.

Water Facilities Compromised By Iranian Threat Actors

Apr 11, 2024 8:19:04 AM By Stu Sjouwerman

In December 2023, a joint alert was issued by the FBI, CISA, NSA, EPA, and INCD regarding Iranian cyber actors known as "CyberAv3ngers" linked to Iran's Islamic Revolutionary Guard Corps ...

New Phishing-as-a-Service (PhaaS) platform, 'Tycoon 2FA', Targets Microsoft 365 and Gmail Accounts

Apr 9, 2024 2:05:22 PM By Stu Sjouwerman

A new PhaaS service brings the power of bypassing multi-factor authentication (MFA) to the world’s most-used email platforms.

Australian Government Commits to Become a World-Leader in Cybersecurity by 2030

Apr 8, 2024 12:05:22 PM By Stu Sjouwerman

The Australian Government has leveraged insight from cybersecurity experts to create a new six-part plan to combat cybersecurity over the coming decade.

Large-Scale StrelaStealer Campaign Impacts Over 100 Organizations Within the E.U. and U.S.

Apr 8, 2024 7:55:54 AM By Stu Sjouwerman

A new campaign of StrelaStealer attacks identified by security analysts at Unit42 has been spotted targeting E.U. and U.S. organizations. This somewhat new infostealer has evolved to be ...

Catfishing Campaign Targets Members of the UK Government

Apr 4, 2024 1:28:49 PM By Stu Sjouwerman

At least twelve men working in the UK parliament have recently been targeted by WhatsApp spear phishing messages, POLITICO reports. The targeted individuals include “a senior Labour MP, ...

IT Leaders Can’t Stop AI and Deepfake Scams as They Top the List of Most Frequent Attacks

Apr 4, 2024 9:09:49 AM By Stu Sjouwerman

New data shows that the attacks IT feels most inadequate to stop are the ones they’re experiencing the most.

Malicious App Impersonates McAfee to Distribute Malware Via Text and Phone Calls

Apr 3, 2024 12:36:29 PM By Stu Sjouwerman

A trojanized version of the McAfee Security app is installing the Android banking Trojan “Vultur,” according to researchers at Fox-IT. The attackers are spreading links to the malicious ...

New Report Shows Phishing Links and Malicious Attachments Are The Top Entry Points of Cyber Attacks

Apr 3, 2024 12:36:17 PM By Stu Sjouwerman

New TTP attack data covering 2023 sheds much needed light on the threat actor and user actions that are putting organizations at the most risk.

Despite Cybersecurity Improvements in UK Organizations, Attacks Still Persist

Apr 1, 2024 11:43:19 AM By Stu Sjouwerman

The UK government's third phase of research shows how well UK organizations have been improving their cybersecurity efforts but indicates that the risk from certain attacks have only been ...

Thread Hijacking Phishing Attack Targets Pennsylvania Journalist

Apr 1, 2024 11:43:16 AM By Stu Sjouwerman

A journalist in Pennsylvania was targeted by phishing attacks that involved thread hijacking, according to Brian Krebs at KrebsOnSecurity.

Security Awareness Training Blog

View Topics