North Korean Fake IT Worker FAQ

Jul 25, 2024 7:09:14 AM By Stu Sjouwerman

Frequently Asked Questions About KnowBe4's Fake IT Worker Blog July 23, 2024, I wrote a blog post about how KnowBe4 inadvertently hired a skillful North Korean IT worker who used the ...

Phishing Campaigns Abuse Cloud Platforms to Target Latin America

Jul 23, 2024 1:55:11 PM By Stu Sjouwerman

Several threat actors are abusing legitimate cloud services to launch phishing attacks against users in Latin America, according to Google’s latest Threat Horizons Report.

How a North Korean Fake IT Worker Tried to Infiltrate Us

Jul 23, 2024 10:14:55 AM By Stu Sjouwerman

Incident Report Summary: Insider Threat First of all: No illegal access was gained, and no data was lost, compromised, or exfiltrated on any KnowBe4 systems. This is not a data breach ...

Phishing Attacks Will Likely Follow Last Week’s Global IT Outage

Jul 22, 2024 2:36:16 PM By Stu Sjouwerman

Organizations should expect to see phishing attacks exploiting the global IT outage that occurred last Friday, the Business Post reports.

[Warn Your Users] High Scam Risk After Failed Trump Assassination

Jul 14, 2024 8:05:51 AM By Stu Sjouwerman

Pictures of Donald Trump rushed from a campaign stage, his cheek brushed with blood from an assassination attempt, are an unsettling shock.

State-Sponsored Phishing Campaigns Target 40,000 VIP Individuals

Jul 5, 2024 2:00:10 PM By Stu Sjouwerman

Researchers at Menlo Security discovered three state-sponsored phishing campaigns that have targeted 40,000 important individuals over the past three months. “In a recent 90-day period, ...

Don't Fall for It: How to Spot Social Media Job Scams a Mile Away

Jul 5, 2024 9:24:24 AM By Anna Collard

As social media becomes more intertwined with our daily routines, cybercriminals are using it to trick people with fake job offers. What are these social-media recruitment scams, and how ...

Phishing Attacks Themed Around Popular Weight Loss Drugs Increase 183%

Jul 5, 2024 9:24:12 AM By Stu Sjouwerman

As popularity grows for these proven methods of weight loss, scammers have taken note and have placed a significant focus on separating victims from their money.

New “Paste and Run” Phishing Technique Makes CTRL-V A Cyber Attack Accomplice

Jul 5, 2024 7:40:28 AM By Stu Sjouwerman

A new phishing campaign tries to trick email recipients into pasting and executing malicious commands on their system that installs DarkGate malware.

Ransomware Attack on U.K. Health Service Laboratory Disrupts Major London Hospital Services

Jul 2, 2024 1:55:38 PM By Stu Sjouwerman

What likely started as a quick ransomware “smash and grab” has turned into a headline case resulting in responses from both U.K. and U.S. law enforcement.

[Important Alert] TeamViewer Network Breached as Russian APT29 Hackers Strike Again

Jun 28, 2024 8:47:56 AM By Stu Sjouwerman

In a concerning development, TeamViewer, one of the world's leading remote access software providers, has disclosed a cyber attack that breached its corporate network environment.

FBI Warns of Phishing Campaign Targeting the Healthcare Industry

Jun 27, 2024 1:46:27 PM By Stu Sjouwerman

The US FBI and the Department of Health and Human Services (HHS) have released a joint advisory warning of a social engineering campaign that’s targeting the healthcare industry.

Cybercriminals Set Sights on Digital Identities of Singapore Citizens

Jun 27, 2024 1:46:23 PM By Stu Sjouwerman

Singapore has become the latest target for cybercriminals looking to steal digital identities and exploit them for nefarious purposes.

The Double-Edged Sword of AI: Empowering Cybercriminals and the Need for Heightened Cybersecurity Awareness

Jun 26, 2024 2:33:03 PM By Javvad Malik

The BBC recently reported that Booking.com is warning that AI is driving an explosion in travel scams. Up to 900% in their estimation - making it abundantly clear that while AI can be a ...

BEC Attacks Accounted for More Than One in Ten Social Engineering Attacks in 2023

Jun 24, 2024 9:21:30 AM By Stu Sjouwerman

A new report from Barracuda has found that email conversation hijacking attacks have risen by 70% since 2022. Additionally, business email compromise (BEC) attacks accounted for 10.6% of ...

The Indispensable World of Red Teaming

Jun 20, 2024 11:35:56 AM By Javvad Malik

In this mad, mad world of breaches, organizations are scrambling to keep their heads above water. It's like trying to navigate a minefield while blindfolded and riding a unicycle — one ...

[Heads Up] Tricky Fake Invoice Phishing Attack Uses Search to Deliver Malware

Jun 17, 2024 3:16:07 PM By Stu Sjouwerman

Researchers at Trustwave warn that a phishing campaign is distributing malware via HTML attachments disguised as invoices. Notably, the HTML files abuse the Windows Search protocol to ...

No Politician Too Small: School Board Candidates Targeted By Phishing and BEC Scams

Jun 17, 2024 3:15:49 PM By Stu Sjouwerman

Cybercriminals are broadening their targets to include even local political candidates, as an escalating series of phishing attacks was recently directed at school board candidates in ...

Phishing With Deepfakes for HK$200 Million

Jun 13, 2024 2:29:59 PM By Martin Kraemer

My hacker story occurred not too long ago at the Hong Kong office of an undisclosed multinational corporation. The hackers pulled off a first-of-its-kind scam that leveraged a phishing ...

New Research Shows An Alarming Trend of Phishing Attacks Doubling For US and European Organizations

Jun 12, 2024 3:25:33 PM By Stu Sjouwerman

Cybercriminals never sleep, and their aim keeps getting better. According to new research from Abnormal Security, phishing attacks targeting organizations in Europe shot up by a ...

Security Awareness Training Blog

Social Engineering Blog

View Topics