Thread Hijacking Phishing Attack Targets Pennsylvania Journalist

A journalist in Pennsylvania was targeted by phishing attacks that involved thread hijacking, according to Brian Krebs at KrebsOnSecurity.

March 29, 2024 Stu Sjouwerman

Russian Federation-backed threat group APT29 Now Targeting German Political Parties

New analysis of APT29’s (aka Cozy Bear) activities and their association with Russia’s Foreign Intelligence Service (SVR) has revealed suspected attempts to collect political intelligence.

March 29, 2024 Stu Sjouwerman

Narwhal Spider Threat Group Behind New Phishing Campaign Impersonating Reputable Law Firms

Using little more than a well-known business name and a invoice-related PDF, the “NaurLegal” phishing campaign aims at installing malware trojans.

March 29, 2024 Stu Sjouwerman

75% of Organizations Believe They Are at Risk of Careless or Negligent Employees

New data shows organizations are well aware that their users are one of their greatest cybersecurity risks today, and yet aren’t taking the right steps to remediate the risk.

March 29, 2024 Stu Sjouwerman

New Malware Loader Delivers Agent Tesla Remote Access Trojan Via Phishing

A new malware loader is delivering the Agent Tesla remote access Trojan (RAT), according to researchers at Trustwave SpiderLabs. The malware is distributed by phishing emails with ...

March 28, 2024 Stu Sjouwerman

[New Feature] Start Coaching Your Users in Real Time With the New Google Chat Integration for KnowBe4's SecurityCoach

Attention Google Workspace users! You’ve asked, and we’ve delivered, integrating KnowBe4's SecurityCoach with Google Chat.

March 27, 2024 Stu Sjouwerman

A Simple 'Payment is Underway' Phishing Email Downloads RATs from AWS, GitHub

Analysis of a new initial access malware attack shows how simple these attacks can be while also proving that malware can reside on legitimate repositories.

March 26, 2024 Stu Sjouwerman

It’s Official: Cyber Insurance is No Longer Seen as a 'Safety Net'

A new report on the state of email security sheds some light on how organizations are viewing and approaching cyber insurance as they shift strategy toward being cyber resilient.

March 26, 2024 Stu Sjouwerman

New Phishing-as-a-Service Kit Attempts to Bypass MFA

A Phishing-as-a-Service (PhaaS) platform called “Tycoon 2FA” has surged in popularity over the past several months, according to researchers at Sekoia. The phishing kit is notable for its ...

March 26, 2024 Stu Sjouwerman

[New Research] KnowBe4's Report is a Call to Action for Global Organizations to Improve Their Security Culture

We’re thrilled to announce the release of the 2024 Security Culture Report, which dives deep into how security measures affect organizations and the way employees act and feel at work.

KnowBe4 Blog

Security Culture

View Topics

Thread Hijacking Phishing Attack Targets Pennsylvania Journalist

Russian Federation-backed threat group APT29 Now Targeting German Political Parties

Narwhal Spider Threat Group Behind New Phishing Campaign Impersonating Reputable Law Firms

75% of Organizations Believe They Are at Risk of Careless or Negligent Employees

New Malware Loader Delivers Agent Tesla Remote Access Trojan Via Phishing

[New Feature] Start Coaching Your Users in Real Time With the New Google Chat Integration for KnowBe4's SecurityCoach

A Simple 'Payment is Underway' Phishing Email Downloads RATs from AWS, GitHub

It’s Official: Cyber Insurance is No Longer Seen as a 'Safety Net'

New Phishing-as-a-Service Kit Attempts to Bypass MFA

[New Research] KnowBe4's Report is a Call to Action for Global Organizations to Improve Their Security Culture

Subscribe To Our Blog

Posts By Topic

Get the latest insights, trends and security news. Subscribe to CyberheistNews.

Get the latest insights, trends and security news. Subscribe to CyberheistNews.