IT Admins Continue to Use Weak Passwords

Nov 6, 2023 5:26:21 PM By Stu Sjouwerman

In an analysis of web pages identified as admin portals, some incredibly weak passwords were identified – and some of them are going to really surprise you.

Spear Phishing Becomes Most Common Attack Technique in Q3 2023

Nov 6, 2023 9:18:13 AM By Stu Sjouwerman

Spear phishing was the most common attack technique in the third quarter of 2023, according to researchers at ReliaQuest.

Cybersecurity Expert: AI Lends Phishing Plausibility for Bad Actors

Nov 2, 2023 10:47:52 AM By Stu Sjouwerman

Cybersecurity experts expect to see threat actors increasingly make use of AI tools to craft convincing, highly targeted and sophisticated social engineering attacks, according to Eric ...

Small Businesses are Experiencing More Cyber Attacks

Nov 2, 2023 10:47:49 AM By Stu Sjouwerman

As large organizations realize the likelihood of cyber attacks and improve their cyber readiness, small businesses are seeing increases not experienced by their larger counterparts.

Investigate User-Reported Emails with Ease Through the Powerful Combination of CrowdStrike Falcon Sandbox and KnowBe4 PhishER Plus

Nov 2, 2023 10:20:30 AM By Stu Sjouwerman

The never-ending deluge of phishing emails, malware and ransomware threats can leave incident response and security operation teams (SOC) looking for faster ways to analyze user-reported ...

September Sees a 32% Increase in the Number of Ransomware Attacks in Just One Month

Oct 31, 2023 10:07:46 AM By Stu Sjouwerman

Continued analysis of ransomware attacks shows an upward trend in the number of attacks, with September resulting in the highest number of assaults so far this year.

Cybercriminal Group Octo Tempest and Its Menacing Phishbait

Oct 31, 2023 10:07:28 AM By Stu Sjouwerman

Microsoft is tracking a cybercriminal group called “Octo Tempest” that uses threats of violence as part of its social engineering and data theft extortion campaigns.

Exposed: Scam Artists Mimicking PepsiCo in Phishing Schemes

Oct 30, 2023 2:30:11 PM By Stu Sjouwerman

Researchers at INKY warn that a phishing campaign is attempting to distribute malware by impersonating PepsiCo.

Human-Crafted Phishing Emails Only Three Percent More Successful Than AI-Generated Ones, According To IBM

Oct 26, 2023 11:11:24 AM By Stu Sjouwerman

Red teamers at IBM X-Force warn that AI-generated phishing emails are nearly as convincing as human-crafted ones, and can be created in a fraction of the time. The researchers tricked ...

FBI Warns of North Korean Social Engineering Tactics and Recruitment/Hiring of IT Workers

Oct 25, 2023 2:29:42 PM By Stu Sjouwerman

The U.S. Federal Bureau of Investigation (FBI) and South Korea’s Ministry of Foreign Affairs have issued an advisory offering guidance to “the international community, the private sector, ...

Leadership Less Involved in Cyber-Preparedness Despite a Majority of Orgs Thinking Data Loss from a Cyber Attack Likely in the Next 12 Months

Oct 24, 2023 4:37:42 PM By Stu Sjouwerman

You probably expect executive leadership to not just support cybersecurity efforts, but to be involved. New data shows organizations have a way to go until this is a reality.

Most Organizations Believe Malicious Use of AI is Close to Evading Detection

Oct 24, 2023 4:37:22 PM By Stu Sjouwerman

As organizations continue to believe the malicious use of artificial intelligence (AI) will outpace its defensive use, new data focused on the future of AI in cyber attacks and defenses ...

A Brief History of Phishing, and Other Forms of Social Engineering

Oct 23, 2023 10:23:52 AM By Stu Sjouwerman

Social engineering attacks have a very long history, though the Internet has made it easier to launch these attacks en masse, according to Sean McNee at DomainTools. McNee points to an ...

Phishing-as-a-Service: As Simple As Uploading A Logo

Oct 19, 2023 10:36:00 AM By Stu Sjouwerman

Researchers at Fortra are tracking “Strox,” one of the most popular phishing operations of the past two years. Users of Strox phishing kits can easily create phishing campaigns by simply ...

Phishing Attacks Surge By 173% In Q3, 2023; Malware Threats Soar By 110%

Oct 18, 2023 2:30:05 PM By Stu Sjouwerman

A new report from Vade Secure has found that phishing attacks rose by 173% in the third quarter of 2023, while malware threats have increased by 110%.

Summit Sabotage: Malicious Phishing Campaign Hits Female Political Leaders Using Social Engineering

Oct 17, 2023 2:40:52 PM By Stu Sjouwerman

A threat actor dubbed “Void Rabisu” used social engineering to target attendees of the Women Political Leaders (WPL) Summit that was held in Brussels from June 7 to 8, 2023, Trend Micro ...

Phishing Tests Start The Virtuous Cycle Of A Strong Security Culture

Oct 17, 2023 7:00:06 AM By Stu Sjouwerman

Phishing tests are the catalyst to achieve a sustainable security culture within your organization. They are actually the start of a virtuous cycle that helps you move up to the highest ...

9 in 10 CISOs Report at Least One Disruptive Cyberattack in the Last Year

Oct 13, 2023 4:52:41 PM By Stu Sjouwerman

A new report sheds light on whether CISOs have been the victim of a cyber attacks, if they're every paid a ransom, their greatest cyber concerns, and much more.

60% of Organizations are Very Concerned About the Potential Impact of Ransomware Attacks

Oct 13, 2023 4:52:35 PM By Stu Sjouwerman

As the number of reported ransomware attacks increases, new data provides a fresh look at how ready organizations are for ransomware attacks.

53% of Organizations Experienced Cyber Attacks

Oct 13, 2023 4:52:30 PM By Stu Sjouwerman

As increasing percentages of businesses experience cyberattacks, new data provides details on where the most organizational risk lies.

Security Awareness Training Blog

View Topics