Number of Data Compromises Affecting U.S. Organizations Rises 77%

Feb 15, 2024 8:25:43 AM By Stu Sjouwerman

New data summarizing the compromises of data in 2023 provides key details on who’s being targeted, what types of data is being compromised, and what attack vectors are being used.

Another Ransomware-as-a-Service Known as “Wing” Takes Flight on the Dark Web

Feb 14, 2024 8:57:53 AM By Stu Sjouwerman

Analysis of this newly-spotted service makes it clear that the newest entrant into the Ransomware-as-a-Service (RaaS) space has taken note of where predecessors are lacking and launched a ...

Security Teams Spend 71 Hours Responding to Every One Hour in a Cyber Attack

Feb 12, 2024 10:31:53 AM By Stu Sjouwerman

New data sheds light on what kinds of cyber attacks are targeting your cybersecurity team, what it’s costing them, why it’s taking so much time to fix, and where you should focus ...

Americans Lose a Record $10 Billion to Fraud in 2023; Mostly Due To Investment Scams

Feb 12, 2024 10:31:50 AM By Stu Sjouwerman

The US Federal Trade Commission (FTC) has disclosed that people in the United States lost a record $10 billion to fraud in 2023, a 14% increase from 2022. Nearly half of the losses were ...

Watch Out For Valentine’s Day Romance Scams

Feb 8, 2024 2:40:58 PM By Stu Sjouwerman

Users should be wary of online romance scams ahead of Valentine’s Day, according to Imogen Byers at ESET. While in the past these scams could often be thwarted by using reverse image ...

Unprecedented Rise of Malvertising as a Precursor to Ransomware

Feb 8, 2024 8:00:00 AM By Stu Sjouwerman

Cybercriminals increasingly used malvertising to gain initial access to victims’ networks in 2023, according to Malwarebytes’s latest State of Malware report.

81% of Organizations Cite Phishing as the Top Security Risk

Feb 8, 2024 8:00:00 AM By Stu Sjouwerman

Organizations are finally dialing in on where they need to focus their cybersecurity strategies, starting with phishing. But the top four cited security risks all have one element in ...

Generative AI Used to Launch Phishing Attacks

Feb 6, 2024 1:38:52 PM By Stu Sjouwerman

Criminal threat actors are increasingly utilizing generative AI tools like ChatGPT to launch social engineering attacks, according to researchers at Check Point.

Fake “I Can’t Believe He’s Gone” Posts Seek to Steal Facebook Credentials

Feb 5, 2024 4:58:17 PM By Stu Sjouwerman

A new scam relies on a victim's sense of curiosity, brand impersonation, and the hopes of a new login to compromise Facebook credentials.

New Phishing-As-A-Service Kit with Ability to Bypass MFA Targets Microsoft 365 Accounts

Feb 5, 2024 4:57:58 PM By Stu Sjouwerman

A phishing-as-a-service platform called “Greatness” is facilitating phishing attacks against Microsoft 365 accounts, according to researchers at Sucuri.

Vendor Email Compromise Attacks Against Financial Services Surge 137% Last Year

Feb 2, 2024 1:27:13 PM By Stu Sjouwerman

Analysis of 2023 attacks shows how the financial services industry had a very bad year, with increases in both vendor email compromise (VEC) and business email compromise (BEC) attacks, ...

Microsoft Teams: The New Phishing Battlefront - How Attackers Are Exploiting Trusted Platforms

Feb 1, 2024 1:43:34 PM By Stu Sjouwerman

Attackers are abusing Microsoft Teams to send phishing messages, according to researchers at AT&T Cybersecurity.

81% of Underwriters Expect Cyber Insurance Premiums to Increase as Risk is Expected to Soar

Feb 1, 2024 1:43:29 PM By Stu Sjouwerman

New data from cyber insurance underwriters shows what they think the biggest threats will be in 2024 and what organizations should do about it.

Ransomware Payments On The Decline As Cyber Attackers Focus on The Smallest, And Largest, Organizations

Jan 31, 2024 1:52:23 PM By Stu Sjouwerman

New data for Q4 of 2023 reveals a sizable shift in the cyber threat landscape, with serious implications regarding ransomware and social engineering attacks targeting both the largest and ...

FBI Cyber Alert: Tech Support Scams Steal Cash or Precious Metals

Jan 31, 2024 1:52:13 PM By Stu Sjouwerman

The US Federal Bureau of Investigation (FBI) has issued an alert that scammers are tricking victims into converting their savings into cash or precious metals, then sending couriers to ...

The Percentage of Organizations Globally Struck by Ransomware Hits an All-Time High

Jan 30, 2024 1:52:43 PM By Stu Sjouwerman

Check Point’s review of ransomware shows that the percent of organizations worldwide hit by this greatest of cyberthreats rose by a whopping 33% in 2023.

Open Redirects Used to Disguise Phishing Links

Jan 30, 2024 1:52:38 PM By Stu Sjouwerman

Phishing attacks are increasingly using open redirects to evade detection by security filters, according to researchers at Trustwave.

Forget Deepfake Audio and Video. Now There’s AI-Based Handwriting!

Jan 29, 2024 2:47:56 PM By Stu Sjouwerman

Researchers have developed AI technology that can mimic someone’s handwriting with only a few paragraphs of written content. Experts worry about the possibility of misuse.

Malvertising Targets Chinese-Speaking Users

Jan 29, 2024 2:47:47 PM By Stu Sjouwerman

Researchers at Malwarebytes warn that a malvertising campaign is targeting Chinese-speaking users with phony ads for encrypted messaging apps. The ads impersonate apps that are restricted ...

Scammers Use Airdrops to Lure Users With Phony NFTs

Jan 29, 2024 8:42:17 AM By Stu Sjouwerman

Researchers at Check Point warn that scammers are using airdrops to distribute phony non-fungible tokens (NFTs) that direct users to malicious sites.

Security Awareness Training Blog

View Topics