Attackers Abuse HubSpot’s Free Form Builder to Craft Phishing Pages

A threat actor is abusing HubSpot’s Free Form Builder service to craft credential-harvesting phishing pages, according to Palo Alto Networks’ Unit 42.

December 18, 2024 Stu Sjouwerman

Phishing Campaign Targets YouTube Creators

An email phishing campaign is targeting popular YouTube creators with phony collaboration offers, according to researchers at CloudSEK. The emails contain OneDrive links designed to trick ...

December 17, 2024 Stu Sjouwerman

[Heads Up] Bad Actors Use Voice Phishing in Microsoft Teams To Spread DarkGate Malware

Threat actors are using voice phishing (vishing) attacks via Microsoft Teams in an attempt to trick victims into installing the DarkGate malware, according to researchers at Trend Micro.

December 17, 2024 Stu Sjouwerman

U.S. Justice Department Indicts Fake IT Workers From North Korea

The U.S. Justice Department revealed indictments against 14 North Korean nationals for their involvement in a long-running scheme designed to pose as remote IT professionals.

December 17, 2024 Stu Sjouwerman

Critical Infrastructure Under Siege: 42% Spike in Ransomware Attacks on Utilities

Ransomware attacks targeting utilities have surged by 42% over the past year, with spear phishing playing a major role in 81% of cases, according to a ReliaQuest study spanning November ...

December 13, 2024 Stu Sjouwerman

94% of U.K. Businesses Aren’t Adequately Prepared for AI-Driven Phishing Scams

A new report makes it clear that U.K. organizations need to do more security awareness training to ensure their employees don’t fall victim to the evolving use of AI.

December 13, 2024 Stu Sjouwerman

Sophisticated Phishing Campaign Attempts to Bypass SEGs

A widespread phishing campaign is attempting to steal credentials from employees working at dozens of organizations around the world, according to researchers at Group-IB.

December 12, 2024 Stu Sjouwerman

Mobile Phishing Campaign Targets Job Seekers

Researchers at Zimperium warn that a phishing campaign is targeting Android phones to deliver the Antidot banking trojan.

December 12, 2024 Roger Grimes

Be Careful of Malicious Ads

For decades, we have all been warned to be appropriately skeptical of internet search engine results. Sadly, most people are not.

December 11, 2024 Stu Sjouwerman

Nearly Half a Billion Emails in 2024 Were Malicious

A new report from Hornetsecurity has found that 427.8 million emails received by businesses in 2024 contained malicious content.

KnowBe4 Blog

Security Culture

View Topics

Attackers Abuse HubSpot’s Free Form Builder to Craft Phishing Pages

Phishing Campaign Targets YouTube Creators

[Heads Up] Bad Actors Use Voice Phishing in Microsoft Teams To Spread DarkGate Malware

U.S. Justice Department Indicts Fake IT Workers From North Korea

Critical Infrastructure Under Siege: 42% Spike in Ransomware Attacks on Utilities

94% of U.K. Businesses Aren’t Adequately Prepared for AI-Driven Phishing Scams

Sophisticated Phishing Campaign Attempts to Bypass SEGs

Mobile Phishing Campaign Targets Job Seekers

Be Careful of Malicious Ads

Nearly Half a Billion Emails in 2024 Were Malicious

Subscribe To Our Blog

Posts By Topic

Get the latest insights, trends and security news. Subscribe to CyberheistNews.

Get the latest insights, trends and security news. Subscribe to CyberheistNews.