Red Flags for Phishing: Verizon Outlines Latest Scams to Watch Out For

Jan 9, 2024 9:24:06 AM By Stu Sjouwerman

Verizon has published an article outlining various forms of social engineering attacks, including SMS/text messaging phishing (smishing), voice phishing (vishing), and spear phishing ...

FBI Releases Blackcat Ransomware Decryption Tool to Victims, Disrupting Attacks

Jan 8, 2024 12:45:41 PM By Stu Sjouwerman

For the first time ever, the U.S. Justice Department announced the existence of an FBI-developed decryption tool that has been used to save hundreds of victim organizations attacked by ...

Black Basta Ransomware Decryptor Released to Help Some Victims

Jan 5, 2024 1:19:14 PM By Stu Sjouwerman

A flaw found by security researchers in the encryption software allows victim organizations to use “Black Basta Buster” to recover some of their data – but there’s a catch.

Phishing Reigns as the Most Likely and Most Feared Cyber Attack

Jan 5, 2024 9:00:05 AM By Stu Sjouwerman

With over half of organizations being the victim of password-based attacks in the last year, new data sheds light on the risk of phishing attacks and the use of password-based credentials.

[LIVE DEMO] Are Your Users Making Risky Security Mistakes? Deliver Real-Time Coaching in Response to Risky User Behavior with SecurityCoach

Jan 5, 2024 8:00:00 AM By Stu Sjouwerman

Do you need an easy, automated way to provide real-time feedback the moment your users make risky mistakes to help reinforce the training campaigns you manage today?

AI-Powered Invoice Fraud: How This Latest Scam Hijacks Your Business Transactions

Jan 4, 2024 9:01:32 AM By Stu Sjouwerman

Resecurity is tracking a cybercriminal gang called “GXC Team” that develops and sells tools to facilitate online banking theft and social engineering attacks.

Lockbit 3.0 Ransomware Disrupts Emergency Care at Multiple German Hospitals

Jan 3, 2024 10:57:52 AM By Stu Sjouwerman

Hitting three hospitals within a Germany-based hospital network, the extent of the damage in this confirmed ransomware attack remains undetermined but has stopped parts of operations.

New Research: Phishing Attacks Stole $295 Million In Crypto In 2023

Jan 3, 2024 8:12:02 AM By Stu Sjouwerman

Researchers at Scam Sniffers have found that phishing attacks stole nearly $295 million worth of cryptocurrency from 324,000 victims in 2023, CryptoSlate reports. The cryptocurrency is ...

New Remote “Job” Scam Tells Victims They'll Get Paid For Liking YouTube Videos

Dec 19, 2023 11:23:07 AM By Stu Sjouwerman

Researchers at Bitdefender warn that scammers are tricking victims with fake remote job opportunities. In this case, the scammers tell victims that they’ll get paid for liking YouTube ...

Holiday Scams Include Thousands of Impersonation Phishing Domains per Brand

Dec 19, 2023 11:23:04 AM By Stu Sjouwerman

Midstride in this year’s holiday shopping, it’s important to realize just how many websites exist that impersonate legitimate online retailers. More importantly, your users need to know ...

Unique Malware Used in Cyber Attacks Increases by 70% in Just One Quarter

Dec 18, 2023 11:56:48 AM By Stu Sjouwerman

As more cybercriminal gangs continue to enter the game, the massive increase in unique types of malware means it will become increasingly difficult to identify and stop attacks.

[IRS Alert] Three Tips To Protect Against Tax Season Refund Scams

Dec 15, 2023 11:25:00 AM By Stu Sjouwerman

Urging taxpayers and tax professionals to be vigilant, the Internal Revenue Service (IRS) provides some simple guidance on how to spot new scams aimed at being able to file fake tax ...

Brand New BazarCall Phishing Campaign Abuses Google Forms

Dec 14, 2023 1:14:18 PM By Stu Sjouwerman

A new BazarCall phishing campaign is using Google Forms to send phony invoices, according to researchers at Abnormal Security.

As the Holiday Season Ramps Up, So Do Scams Impersonating the U.S. Postal Service

Dec 14, 2023 1:14:04 PM By Stu Sjouwerman

Taking traditional “delayed package” scams up a notch, new phishing and smishing attack campaigns are leveraging freemium DNS services to avoid detection by security solutions.

Phishing Is Still the No. 1 Attack Vector, With Huge 144% Malicious URL Spike

Dec 13, 2023 12:26:16 PM By Stu Sjouwerman

Analysis of nearly a year’s worth of emails brings insight into exactly what kinds of malicious content are being used, who’s being impersonated, and who’s being targeted.

Undercover Threat: North Korean Operatives Infiltrate U.S. Companies Through Job Platforms

Dec 13, 2023 12:26:08 PM By Stu Sjouwerman

Researchers at Nisos warn that North Korean threat actors are impersonating skilled job seekers in order to obtain remote employment at US companies.

Russia Weaponizes Israel-Hamas Conflict in Targeted Phishing Attack

Dec 12, 2023 12:18:27 PM By Stu Sjouwerman

Researchers at IBM X-Force are tracking a phishing campaign that’s using themes related to the Israel-Hamas war to deliver Headlace, a backdoor exclusively used by the suspected Russian ...

Who's Calling? Spam, Scams and Wasted Time

Dec 12, 2023 12:18:20 PM By Stu Sjouwerman

First ever insight into those annoying spam calls provides enlightening detail into how many calls are there, where are they coming from, and how much time is wasted dealing with them.

Russian Hackers Indicted for Phishing Attacks Against U.S. and Allies

Dec 11, 2023 10:34:40 AM By Stu Sjouwerman

The US Justice Department has indicted two individuals for launching spear phishing attacks against the US, the UK, Ukraine and various NATO member countries on behalf of the Russian ...

Deepfakes: The New Face of Fraud

Dec 11, 2023 10:34:32 AM By Stu Sjouwerman

Security analysts at identity vendor Sumsub are seeing a massive rise in the use of deepfake fraud in their Identity Fraud Report 2023. And one country may be to blame.

Security Awareness Training Blog

View Topics