Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Credential Phishing Increased by 703% in H2 2024

Jan 6, 2025 3:07:10 PM By Stu Sjouwerman
Credential phishing attacks surged by 703% in the second half of 2024, according to a report by SlashNext. Phishing attacks overall saw a 202% increase during the same period.
Continue Reading

Tax-Themed Phishing Campaign Delivers Malware Via Microsoft Management Console Files

Jan 2, 2025 4:23:04 PM By Stu Sjouwerman
Securonix warns that tax-themed phishing emails are attempting to deliver malware via Microsoft Management Console (MSC) files.
Continue Reading

Russia’s APT29 Launches Major Spear Phishing Campaign

Dec 23, 2024 5:14:23 PM By Stu Sjouwerman
Trend Micro warns that the Russian state-sponsored threat actor Earth Koshchei (also known as “APT29” or “Cozy Bear”) is using spear phishing emails to trick victims into connecting to ...
Continue Reading

"Get Beyond Security Awareness Training" Does Not Mean Forgetting About It

Dec 23, 2024 5:13:52 PM By Roger Grimes
KnowBe4 is a big believer in focusing on decreasing human risk as the best way to decrease cybersecurity risk in most environments.
Continue Reading

Mobile Phishing Attacks Use New Tactic to Bypass Security Measures

Dec 20, 2024 3:49:33 PM By Stu Sjouwerman
ESET has published its threat report for the second half of 2024, outlining a new social engineering tactic targeting mobile banking users.
Continue Reading

Attackers Abuse HubSpot’s Free Form Builder to Craft Phishing Pages

Dec 20, 2024 3:49:08 PM By Stu Sjouwerman
A threat actor is abusing HubSpot’s Free Form Builder service to craft credential-harvesting phishing pages, according to Palo Alto Networks’ Unit 42.
Continue Reading

Phishing Campaign Targets YouTube Creators

Dec 18, 2024 11:16:19 AM By Stu Sjouwerman
An email phishing campaign is targeting popular YouTube creators with phony collaboration offers, according to researchers at CloudSEK. The emails contain OneDrive links designed to trick ...
Continue Reading

[Heads Up] Bad Actors Use Voice Phishing in Microsoft Teams To Spread DarkGate Malware

Dec 17, 2024 10:06:36 AM By Stu Sjouwerman
Threat actors are using voice phishing (vishing) attacks via Microsoft Teams in an attempt to trick victims into installing the DarkGate malware, according to researchers at Trend Micro.
Continue Reading

U.S. Justice Department Indicts Fake IT Workers From North Korea

Dec 17, 2024 10:06:06 AM By Stu Sjouwerman
The U.S. Justice Department revealed indictments against 14 North Korean nationals for their involvement in a long-running scheme designed to pose as remote IT professionals.
Continue Reading

Critical Infrastructure Under Siege: 42% Spike in Ransomware Attacks on Utilities

Dec 17, 2024 10:05:27 AM By Stu Sjouwerman
Ransomware attacks targeting utilities have surged by 42% over the past year, with spear phishing playing a major role in 81% of cases, according to a ReliaQuest study spanning November ...
Continue Reading

94% of U.K. Businesses Aren’t Adequately Prepared for AI-Driven Phishing Scams

Dec 13, 2024 12:31:54 PM By Stu Sjouwerman
A new report makes it clear that U.K. organizations need to do more security awareness training to ensure their employees don’t fall victim to the evolving use of AI.
Continue Reading

Sophisticated Phishing Campaign Attempts to Bypass SEGs

Dec 13, 2024 12:31:28 PM By Stu Sjouwerman
A widespread phishing campaign is attempting to steal credentials from employees working at dozens of organizations around the world, according to researchers at Group-IB.
Continue Reading

Mobile Phishing Campaign Targets Job Seekers

Dec 12, 2024 11:39:42 AM By Stu Sjouwerman
Researchers at Zimperium warn that a phishing campaign is targeting Android phones to deliver the Antidot banking trojan.
Continue Reading

Be Careful of Malicious Ads

Dec 12, 2024 11:39:14 AM By Roger Grimes
For decades, we have all been warned to be appropriately skeptical of internet search engine results. Sadly, most people are not.
Continue Reading

Nearly Half a Billion Emails in 2024 Were Malicious

Dec 11, 2024 10:29:07 AM By Stu Sjouwerman
A new report from Hornetsecurity has found that 427.8 million emails received by businesses in 2024 contained malicious content.
Continue Reading

Phishing Attacks Are Now Leveraging Google Ads to Hijack Employee Payments

Dec 10, 2024 10:22:34 AM By Stu Sjouwerman
Researchers at Silent Push warn that a phishing campaign is using malicious Google Ads to conduct payroll redirect scams.
Continue Reading

Phishing Holds the Top Spot as the Primary Entry Point for Ransomware Attacks

Dec 10, 2024 10:22:17 AM By Stu Sjouwerman
New analysis of ransomware attacks shows that phishing is the primary delivery method and organizations need to offer more effective security awareness training to mitigate the threat.
Continue Reading

IRS Warns of Holiday-Themed Shopping Scams

Dec 6, 2024 9:38:26 AM By Stu Sjouwerman
The US Internal Revenue Service (IRS) has issued an advisory warning taxpayers to be on the lookout for holiday-themed shopping scams.
Continue Reading

FBI Warns of Cybercriminals Using Generative AI to Launch Phishing Attacks

Dec 6, 2024 9:37:42 AM By Stu Sjouwerman
The US Federal Bureau of Investigation (FBI) warns that threat actors are increasingly using generative AI to increase the persuasiveness of social engineering attacks.
Continue Reading

Malicious Google Ads Target Users Seeking Solutions to Printer Problems

Dec 3, 2024 2:43:27 PM By Stu Sjouwerman
Scammers are abusing Google ads to target users searching for help with printer problems, according to researchers at Malwarebytes.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews