Nearly One in Three Cyber Attacks In 2023 Involved The Abuse of Valid Accounts

Feb 23, 2024 9:02:47 AM By Stu Sjouwerman

Thirty percent of all cyber incidents in 2023 involved abuse of valid credentials, according to IBM X-Force’s latest Threat Intelligence Index. This represents a seventy-one percent ...

Data Breach at French Healthcare Payment Processor Puts 20 Million Policyholders at Risk

Feb 23, 2024 9:02:40 AM By Stu Sjouwerman

A single account being phished caused millions of French healthcare policyholder records to be breached.

QR-Code Attacks Target the C-Suite 42 Times More than Standard Employees

Feb 21, 2024 3:23:36 PM By Stu Sjouwerman

QR-code attacks leveraging QR-codes are kicking into high gear and becoming a common method used in phishing attacks, according to new data from Abnormal Security.

Malware Delivered Through Phishing Surges 276%

Feb 21, 2024 3:23:19 PM By Stu Sjouwerman

Researchers at VIPRE Security observed a 276% increase in malware delivered by phishing between Q1 and Q4 of 2023.

[INFOGRAPHIC] KnowBe4’s Learner App by the Numbers

Feb 21, 2024 8:00:00 AM By Stu Sjouwerman

The KnowBe4 Learner App enables your users to complete their security awareness and compliance training conveniently from their smartphones and tablets.

The Unsettling Leap of AI in Video Creation: A Glimpse Into Sora

Feb 20, 2024 1:03:06 PM By Javvad Malik

In the rapidly evolving landscape of artificial intelligence (AI), the launch of Sora by OpenAI marks an unnerving milestone in video synthesis.

IBM Tests Audio-Based Large Language Model to Hijack Live Conversations

Feb 20, 2024 1:03:01 PM By Stu Sjouwerman

With the idea in mind to “audio-jack” a live call-based banking transaction, security researchers were successful in inserting cybercriminal-controlled account details.

Malvertising Campaign Spreads Phony Utility Bills

Feb 20, 2024 1:02:56 PM By Stu Sjouwerman

A widespread malvertising campaign is attempting to trick users into paying phony utility bills, according to researchers at Malwarebytes.

State-Sponsored Threat Actors Targeting European Union Entities With Spear Phishing Campaigns

Feb 19, 2024 4:01:06 PM By Stu Sjouwerman

Numerous state-sponsored threat actors frequently launched spear phishing attacks against European Union entities last year, according to a new report from the EU’s Emergency Response ...

Only 7% of Organizations Can Restore Data Processes within 1-3 Days After a Ransomware Attack

Feb 19, 2024 4:01:02 PM By Stu Sjouwerman

New data on how organizations are able to respond to ransomware attacks also shows that paying a ransom is highly likely, despite having a policy of “Do Not Pay.”

[On-Demand Webinar] The IT Pro's How-to Guide to Building a Strong Security Culture

Feb 19, 2024 8:52:12 AM By Stu Sjouwerman

The thought of building and improving your organization’s security culture can seem like a daunting task. How can you influence an entire culture? With the right plan, buy-in and content, ...

Messaging Platform Telegram Sprouts Cyber Crime “Marketplaces” of Tools, Insights and Data

Feb 16, 2024 3:34:13 PM By Stu Sjouwerman

Cybercriminals are taking advantage of the messaging platform Telegram by creating channels and groups where learning and commerce all can take place freely.

Iran-Aligned Threat Actor "CharmingCypress" Launches Spear Phishing Attacks

Feb 15, 2024 3:13:42 PM By Stu Sjouwerman

Researchers at Volexity warn that the suspected Iranian threat actor CharmingCypress (also known as “Charming Kitten” or “APT42”) has been launching spear phishing attacks against Middle ...

Over Half of Malware Downloads Originate from SaaS Apps

Feb 15, 2024 3:13:38 PM By Stu Sjouwerman

As the popularity of SaaS apps continues to grow, security analysts expect the misuse of such apps as the host for malware downloads to continue to rise through 2024.

Phishing Campaign Exploits Remote Desktop Software

Feb 15, 2024 8:25:54 AM By Stu Sjouwerman

A phishing campaign is attempting to trick users into downloading remote monitoring and management (RMM) software like AnyDesk, Atera, and Splashtop, according to researchers at ...

Number of Data Compromises Affecting U.S. Organizations Rises 77%

Feb 15, 2024 8:25:43 AM By Stu Sjouwerman

New data summarizing the compromises of data in 2023 provides key details on who’s being targeted, what types of data is being compromised, and what attack vectors are being used.

Another Ransomware-as-a-Service Known as “Wing” Takes Flight on the Dark Web

Feb 14, 2024 8:57:53 AM By Stu Sjouwerman

Analysis of this newly-spotted service makes it clear that the newest entrant into the Ransomware-as-a-Service (RaaS) space has taken note of where predecessors are lacking and launched a ...

Security Teams Spend 71 Hours Responding to Every One Hour in a Cyber Attack

Feb 12, 2024 10:31:53 AM By Stu Sjouwerman

New data sheds light on what kinds of cyber attacks are targeting your cybersecurity team, what it’s costing them, why it’s taking so much time to fix, and where you should focus ...

Americans Lose a Record $10 Billion to Fraud in 2023; Mostly Due To Investment Scams

Feb 12, 2024 10:31:50 AM By Stu Sjouwerman

The US Federal Trade Commission (FTC) has disclosed that people in the United States lost a record $10 billion to fraud in 2023, a 14% increase from 2022. Nearly half of the losses were ...

Watch Out For Valentine’s Day Romance Scams

Feb 8, 2024 2:40:58 PM By Stu Sjouwerman

Users should be wary of online romance scams ahead of Valentine’s Day, according to Imogen Byers at ESET. While in the past these scams could often be thwarted by using reverse image ...

Security Awareness Training Blog

View Topics