Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Social Engineering Blog

Latest social engineering news, analysis, tactics the bad guys are using and what you can do to defend your organization.

View Topics

Social Engineering Campaign Abuses Zoom to Install Malware

Apr 25, 2025 4:04:00 PM By Stu Sjouwerman
A social engineering campaign is abusing Zoom's remote control feature to take control of victims’ computers and install malware, according to researchers at security firm Trail of Bits.
Continue Reading

Half of Organizations Lack Protection Against Email Spoofing

Apr 24, 2025 3:38:15 PM By Stu Sjouwerman
A new report from Valimail has found that 50% of organizations lack effective protection against email spoofing.
Continue Reading

How Does Human Risk Management Differ from Security Awareness Training?

Apr 16, 2025 12:13:48 PM By Stu Sjouwerman
In today's cybersecurity landscape, organizations face an ever-present and often underestimated threat: human risk. Despite significant advancements in technological defenses, human error ...
Continue Reading

UK Organizations Cite Phishing as the Most Disruptive Type of Cyberattack

Apr 15, 2025 11:03:55 AM By Stu Sjouwerman
Phishing was the most prevalent and disruptive type of attack experienced by UK organizations over the past twelve months, according to the British government’s Cyber Security Breaches ...
Continue Reading

Warning: QuickBooks Phishing Campaign Targets Taxpayers

Apr 11, 2025 6:49:55 PM By Stu Sjouwerman
Cybercriminals are capitalizing on tax season by launching phishing campaigns targeting QuickBooks users, Malwarebytes reports.
Continue Reading

Europe's Energy Sector at Risk: The Critical Need for Cybersecurity

Apr 11, 2025 6:49:08 PM By Martin Kraemer
Reliable energy is the backbone of any modern society. It powers our homes, industries, and economies. But what happens when this essential infrastructure becomes a target for ...
Continue Reading

Beware the Tax Trap: Seasonal Urgency Drives a Spike in Tax-Related Phishing Scams

Apr 10, 2025 3:05:03 PM By KnowBe4 Threat Lab
Cybercriminals are quick to exploit seasonal events — and tax season is no exception. It’s a yearly honeypot for cybercriminals, who take advantage of heightened stress, tight deadlines, ...
Continue Reading

Securing Employee Identities: Expert Tips for Identity Management Day 2025

Apr 10, 2025 10:13:28 AM By Stu Sjouwerman
With this week being Identity Management Day on April 8th, it's the perfect reminder for organizations to focus on protecting their employees' digital identities.
Continue Reading

[HEADS UP] North Korea Expands Its Fraudulent IT Worker Operations

Apr 9, 2025 9:10:47 AM By Stu Sjouwerman
North Korea’s fraudulent employment operations have expanded to hit countries around the world, with a particular focus on Europe, according to researchers at Google’s Threat Intelligence ...
Continue Reading

Online Gaming Platform Steam Tops List of Most Imitated Brands For the First Time

Apr 7, 2025 10:18:53 AM By Stu Sjouwerman
Steam was the most impersonated brand in phishing attacks during the first quarter of 2025, according to a new report from Guardio. The researchers note that the gaming platform’s surge ...
Continue Reading

Phishing Attacks Lead to Theft in the Shipping Industry

Apr 3, 2025 1:19:14 PM By Stu Sjouwerman
Phishing attacks are driving a surge in “double brokering” scams in the shipping industry, according to Christian Reilly, Cloudflare’s Field CTO for EMEA.
Continue Reading

Most Phishing Emails Rely Purely on Social Engineering

Apr 1, 2025 4:39:10 PM By Stu Sjouwerman
99% of phishing emails that reached inboxes last year did not contain malware, according to a new report from Fortra.
Continue Reading

Scammers Can Be Victims Too

Mar 20, 2025 10:27:52 AM By Roger Grimes
There are thousands of people worldwide trying to scam you, hoping they can make you a victim, steal your money, and harm you in some way. While some of it is done by individuals or small ...
Continue Reading

Phishing Attacks Abuse Microsoft 365 to Bypass Security Filters

Mar 20, 2025 10:27:20 AM By Stu Sjouwerman
Threat actors are abusing Microsoft’s infrastructure to launch phishing attacks that can bypass security measures, according to researchers at Guardz.
Continue Reading

The Cybersecurity Confidence Gap: Are Your Employees as Secure as They Think?

Mar 18, 2025 10:26:41 AM By Anna Collard
Our recent research reveals a concerning discrepancy between employees' confidence in their ability to identify social engineering attempts and their actual vulnerability to these attacks.
Continue Reading

Booking.com Phishing Scam Targets Employees in the Hospitality Sector

Mar 18, 2025 10:25:44 AM By Stu Sjouwerman
A phishing campaign is impersonating travel agency Booking.com to target employees in the hospitality industry, according to researchers at Microsoft.
Continue Reading

Protect Yourself: Social Engineering Fuels SIM Swapping Attacks

Mar 13, 2025 9:13:20 AM By Stu Sjouwerman
Group-IB has published a report on SIM swapping attacks, finding that attackers continue to use social engineering to bypass technical security measures.
Continue Reading

AI and AI-agents: A Game-Changer for Both Cybersecurity and Cybercrime

Mar 12, 2025 9:10:02 AM By Anna Collard
Artificial Intelligence (AI) is no longer just a tool—it is a game changer in our lives, our work as well as in both cybersecurity and cybercrime.
Continue Reading

Beware: Malvertising Campaign Hits Nearly a Million Devices

Mar 12, 2025 9:09:33 AM By Stu Sjouwerman
Microsoft warns that a widespread malvertising campaign hit nearly one million devices around the world. The campaign, which began on illegal streaming sites, impacted both consumer and ...
Continue Reading

Autonomous Agentic AI-Enabled Deepfake Social Engineering Malware is Coming Your Way!

Mar 10, 2025 9:17:27 AM By Roger Grimes
I’ve been in the cybersecurity industry for over 36 years. Surprisingly, hackers and malware haven't changed all that much.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews