Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Ransomware Group Known as ‘Royal’ Rebrands as BlackSuit and Is Leveraging New Attack Methods

Aug 19, 2024 8:34:46 AM By Stu Sjouwerman
The ransomware threat group formerly known as "Royal" has rebranded itself as BlackSuit and updated their attack methods, warns the FBI.
Continue Reading

File-Sharing Phishing Attacks Increased by 350% Over the Past Year

Aug 15, 2024 12:28:38 PM By Stu Sjouwerman
File-sharing phishing attacks have skyrocketed over the past year, according to a new report from Abnormal Security.
Continue Reading

Ransomware Payments Decline While Data Exfiltration Payments Are On The Rise

Aug 15, 2024 12:28:35 PM By Stu Sjouwerman
The latest data from Coveware shows a slowing of attack efficacy, a decrease in ransom payments being made, and a shift in initial access tactics.
Continue Reading

Latest Phishing Scam Uses Cross-Site Scripting Attack to Harvest Personal Details

Aug 15, 2024 10:55:02 AM By Stu Sjouwerman
Cross-Site Scripting (XSS) is alive and well, and used in attacks to obfuscate malicious links in phishing emails to redirect users to threat-actor controlled websites.
Continue Reading

Employment Scams Continue to Target Job Seekers Via Phony Employment Offers

Aug 15, 2024 10:54:59 AM By Stu Sjouwerman
Threat actors continue to target job seekers with phony employment offers on job search platforms like Indeed, researchers at Bitdefender warn.
Continue Reading

Chameleon Malware Poses as CRM App

Aug 13, 2024 1:54:29 PM By Stu Sjouwerman
Researchers at ThreatFabric warn that a phishing campaign is distributing the Chameleon Android malware by impersonating a Customer Relationship Management (CRM) app. The campaign is ...
Continue Reading

Attackers Abuse Google Drawings to Host Phishing Pages

Aug 13, 2024 8:30:00 AM By Stu Sjouwerman
Researchers at Menlo Security warn that a phishing campaign is exploiting Google Drawings to evade security filters.
Continue Reading

Not Just Us: North Korean Remote IT Fraudster Arrested in Tennessee

Aug 9, 2024 3:04:47 PM By Stu Sjouwerman
Just when we thought we had something special with our very own North Korean hacker, it turns out this type of fraud has made it to the Volunteer State.
Continue Reading

New Phishing Campaign Targets Israeli Organizations To Deliver Malware

Aug 8, 2024 3:36:17 PM By Stu Sjouwerman
A new phishing campaign is targeting Israeli organizations to deliver the RHADAMANTHYS information-stealing malware, Cyber Security News reports.
Continue Reading

SEC Report Provides Insight into Key Tronic Ransomware Costs Totaling Over $17 Million

Aug 8, 2024 3:36:04 PM By Stu Sjouwerman
The financial repercussions of the May 2024 ransomware attack on the electronics manufacturing services firm Key Tronic underscores just how costly these attacks are.
Continue Reading

62% of Phishing Emails Bypassed DMARC Checks in 1H of 2024

Aug 7, 2024 3:32:01 PM By Stu Sjouwerman
A report from Darktrace has found that 62% of phishing emails in the first half of 2024 were able to bypass DMARC verification checks in order to reach users’ inboxes.
Continue Reading

“Pastejacking” Attacks Are Becoming a Thing (Because Users are Falling for Them)

Aug 7, 2024 3:29:49 PM By Stu Sjouwerman
New analysis shows users can be convinced to copy and paste malicious code on behalf of the attacker.
Continue Reading

AI Tools Have Increased the Sophistication of Social Engineering Attacks

Aug 6, 2024 2:04:50 PM By Stu Sjouwerman
The Cyber Security Agency of Singapore (CSA) has warned that threat actors are increasingly using AI to enhance phishing and other social engineering attacks, Channel News Asia reports.
Continue Reading

New Malvertising Campaign Impersonates Google Authenticator

Aug 6, 2024 2:04:46 PM By Stu Sjouwerman
Researchers at Malwarebytes spotted a malvertising campaign that abused Google Ads to target people searching for Google Authenticator.
Continue Reading

Creating a Big Security Culture With a Tiny Button

Aug 5, 2024 4:30:28 PM By Javvad Malik
When it comes to creating a strong cybersecurity culture, one of the most powerful tools we have at our disposal is the Phish Alert Button (PAB).
Continue Reading

Brand Impersonation of Microsoft Increases 50% in One Quarter

Aug 5, 2024 4:30:25 PM By Stu Sjouwerman
The use of the Microsoft brand in phishing attacks demonstrates both its widespread credibility as well as the continued success of attacks leveraging it.
Continue Reading

Your Users Still Fall For Phishing Attacks Because of URL Shorteners

Aug 2, 2024 3:58:11 PM By Stu Sjouwerman
Analysis of current phishing attacks by security researchers have uncovered an increase in the use of trusted shortlink services.
Continue Reading

Global Cyber Attacks See Highest Increases in the Last Two Years

Aug 2, 2024 9:44:48 AM By Stu Sjouwerman
New analysis of Q2 2024 cyber attacks shows the number of attacks experienced weekly by organizations globally is on the rise.
Continue Reading

New Research: Smaller Companies Receiving Higher Rates Of Phishing Emails

Aug 2, 2024 9:44:44 AM By Stu Sjouwerman
Researchers at Barracuda have found that smaller companies tend to receive a higher rate of phishing attacks spread across the organization, according to a report looking at the phishing ...
Continue Reading

Half of Travel-Themed Spam Emails Are Scams

Jul 31, 2024 1:31:04 PM By Stu Sjouwerman
Researchers at Bitdefender have found that half of all travel-themed spam emails contain scams.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews