Chinese Hackers Target Hospitals by Spoofing Medical Software

A Chinese government-backed hacking group is using fake medical software to compromise hospital patients' computers, infecting them with backdoors, keyloggers, and cryptominers.
Continue Reading

Phishing Attack Leads to Lateral Movement in Just 48 Minutes

Researchers at ReliaQuest have published a report on a phishing breach in the manufacturing sector that went from initial access to lateral movement in just 48 minutes.
Continue Reading

Viral but Vulnerable: The Hidden Risks of Cybersecurity Misinformation on Social Media

It's no surprise that 18–29-year-olds are turning to social media for cybersecurity information. As digital natives, this age group naturally gravitates toward platforms where information ...
Continue Reading

Warning: Russian Threat Actors Are Targeting Signal Accounts With Malicious QR Codes

Several Russian state-sponsored threat actors are using QR code phishing (quishing) to compromise Signal accounts, according to researchers at Google’s Threat Intelligence Group.
Continue Reading

[NEW] KnowBe4 Interviews a Fake North Korean Employee

You would think with all the global press we have received because of our public announcement of how we mistakenly hired a North Korean fake employee in July 2024, followed by our ...
Continue Reading

Phishing Kit Abuses Open Graph to Target Social Media Users

Researchers at Cyble warn that a phishing kit is abusing the Open Graph (OG) protocol to target social media users.
Continue Reading

Phishing Attacks Increased by Nearly 200% in H2 2024

Phishing and malicious emails remained the primary vectors of infection during the second half of 2024, according to a new report from Acronis.
Continue Reading

Spear Phishing is the Top Cyber Threat to the Manufacturing Sector

Spear phishing was the top cybersecurity threat to the manufacturing sector over the past six months, according to a report from ReliaQuest. These attacks accounted for 41% of ...
Continue Reading

Protect Your Data: Russian Spear-Phishing Targets Microsoft 365 Accounts

Several Russian threat actors, including the SVR’s Cozy Bear, are launching highly targeted spear phishing attacks against Microsoft 365 accounts, according to researchers at Volexity.
Continue Reading

Phishing for Love: A Sharp Surge in Valentine’s Day-Themed Scams

Authors: Martin Kraemer, Security Awareness Advocate at KnowBe4 and James Dyer, Threat Intelligence Lead at KnowBe4 This Valentine’s Day, Cupid wasn’t the only one taking aim. Our Threat ...
Continue Reading

New Research: Ransomware Data Extortion Skyrocketing

Data theft extortion attacks increased by 46% in the fourth quarter of 2024, according to a new report from Nuspire.
Continue Reading

New Phishing Campaign Targets The X Accounts of Politicians, Tech Companies, Cryptocurrency, And More

SentinelOne warns that a phishing campaign is targeting high-profile X accounts, including those belonging to US political figures, leading journalists, major technology companies, ...
Continue Reading

Facebook Business Users Beware: Thousands Hit by New Phishing Scam

Check Point warns that a large-scale phishing campaign is targeting Facebook accounts with phony copyright infringement notices.
Continue Reading

2024 Was a Record-Breaking Year For Ransomware

2024 saw the highest-ever amount of ransomware attacks, according to a new report from NCC Group.
Continue Reading

Don’t Fall Victim: DeepSeek-Themed Scams Are on the Rise

Scammers are taking advantage of the newfound popularity of the China-based AI app DeepSeek, according to researchers at ESET.
Continue Reading

Warning: Organizations Need to Prep For AI-Powered Ransomware Attacks

The rise of agentic AI tools will transform the cybercrime landscape, according to a new report from Malwarebytes.
Continue Reading

From Firewalls to Digital Well-Being: A Whole-School Approach to Online Safety

Recently, I started working with my children's school to enhance their online safety measures and develop a digital mindfulness course in collaboration with their digital literacy lead.
Continue Reading

Phishing Up 76% – Deepfake Attacks Surge: Is Your Org the Next Target?

Nearly half (46%) of businesses observed an increase in deepfakes and generative AI-related fraud last year, a new report from AuthenticID has found.
Continue Reading

Warning: Phishing Campaign Targets Germany with New Malware

Researchers at Cisco Talos warn that a new phishing campaign is targeting users in Germany and Poland in an attempt to deliver several strains of malware, including a new backdoor dubbed ...
Continue Reading

Beware: Mobile Phishing Mimicking the USPS Is On the Rise

Researchers at Zimperium warn that a large phishing campaign is impersonating the US Postal Service (USPS) to target mobile devices with malicious PDF files.
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews