Phishing Up 76% – Deepfake Attacks Surge: Is Your Org the Next Target?

Feb 4, 2025 3:33:33 PM By Stu Sjouwerman

Nearly half (46%) of businesses observed an increase in deepfakes and generative AI-related fraud last year, a new report from AuthenticID has found.

Warning: Phishing Campaign Targets Germany with New Malware

Feb 3, 2025 4:25:21 PM By Stu Sjouwerman

Researchers at Cisco Talos warn that a new phishing campaign is targeting users in Germany and Poland in an attempt to deliver several strains of malware, including a new backdoor dubbed ...

The Rising Tide of Cybercrime Concerns in Africa

Jan 30, 2025 4:27:01 PM By Anna Collard

Our recent Africa Cybersecurity Awareness survey has revealed a startling surge in cybersecurity concerns among African users, with 58% of respondents expressing high levels of worry ...

Microsoft is Still the Most Commonly Impersonated Brand in Phishing Attacks

Jan 28, 2025 4:05:32 PM By Stu Sjouwerman

Microsoft, Apple, and Google were the most commonly impersonated brands in phishing attacks last quarter, according to researchers at Check Point.

Beware of Toll Scam Texts: How Cybercriminals are Targeting U.S. Drivers

Jan 27, 2025 3:59:53 PM By Stu Sjouwerman

Drivers across the U.S. are being bombarded with fraudulent text messages claiming to come from toll operators like E-ZPass.

Nearly Three-Quarters of UK Education Orgs Have Sustained Cyberattacks

Jan 27, 2025 3:58:39 PM By Stu Sjouwerman

73% of educational institutions in the UK have sustained at least one cyberattack or breach in the past five years, according to researchers at ESET.

Phishing is the Top Security Threat For Smartphone Users

Jan 24, 2025 8:26:27 AM By Stu Sjouwerman

Phishing attacks are the most common security issue for smartphone users, according to a new study by Omdia.

Phishing Campaign Attempts to Bypass iOS Protections

Jan 20, 2025 8:03:20 AM By Stu Sjouwerman

An SMS phishing (smishing) campaign is attempting to trick Apple device users into disabling measures designed to protect them against malicious links, BleepingComputer reports.

Effective Security Awareness Training Really Does Reduce Data Breaches

Jan 17, 2025 4:53:23 PM By Roger Grimes

Social engineering and phishing are involved in 70% - 90% of data breaches. No other root cause of malicious hacking (e.g., unpatched software and firmware, eavesdropping, cryptography ...

Ransomware Gangs Claimed More Than 5,000 Attacks in 2024

Jan 17, 2025 8:32:19 AM By Stu Sjouwerman

Ransomware groups claimed responsibility for 5,461 attacks in 2024, with 1,204 of these attacks being publicly confirmed by victim organizations, according to Comparitech’s latest ...

First Ever Magic Quadrant™ for Email Security Platforms by Gartner®

Jan 16, 2025 10:04:45 AM By Stu Sjouwerman

In cybersecurity, email has always been a critical concern. However, we feel the new 2024 Gartner® Magic Quadrant for Email Security Platforms™ has signaled a shift in how we approach ...

Japan Attributes More Than 200 Cyberattacks to China Threat Actor "MirrorFace"

Jan 15, 2025 10:34:45 AM By Stu Sjouwerman

Japan’s National Police Agency (NPA) has attributed more than 200 cyber incidents over the past five years to the China-aligned threat actor “MirrorFace,” Infosecurity Magazine reports.

Tax-Themed Phishing Campaign Delivers Malware Via Microsoft Management Console Files

Jan 2, 2025 4:23:04 PM By Stu Sjouwerman

Securonix warns that tax-themed phishing emails are attempting to deliver malware via Microsoft Management Console (MSC) files.

"Get Beyond Security Awareness Training" Does Not Mean Forgetting About It

Dec 23, 2024 5:13:52 PM By Roger Grimes

KnowBe4 is a big believer in focusing on decreasing human risk as the best way to decrease cybersecurity risk in most environments.

Mobile Phishing Attacks Use New Tactic to Bypass Security Measures

Dec 20, 2024 3:49:33 PM By Stu Sjouwerman

ESET has published its threat report for the second half of 2024, outlining a new social engineering tactic targeting mobile banking users.

Attackers Abuse HubSpot’s Free Form Builder to Craft Phishing Pages

Dec 20, 2024 3:49:08 PM By Stu Sjouwerman

A threat actor is abusing HubSpot’s Free Form Builder service to craft credential-harvesting phishing pages, according to Palo Alto Networks’ Unit 42.

AI-Powered Investment Scams Surge: How 'Nomani' Steals Money and Data

Dec 18, 2024 11:16:53 AM By Stu Sjouwerman

Cybersecurity researchers are warning about a new breed of investment scam that combines AI-powered video testimonials, social media malvertising, and phishing tactics to steal money and ...

Phishing Campaign Targets YouTube Creators

Dec 18, 2024 11:16:19 AM By Stu Sjouwerman

An email phishing campaign is targeting popular YouTube creators with phony collaboration offers, according to researchers at CloudSEK. The emails contain OneDrive links designed to trick ...

[Heads Up] Bad Actors Use Voice Phishing in Microsoft Teams To Spread DarkGate Malware

Dec 17, 2024 10:06:36 AM By Stu Sjouwerman

Threat actors are using voice phishing (vishing) attacks via Microsoft Teams in an attempt to trick victims into installing the DarkGate malware, according to researchers at Trend Micro.

Critical Infrastructure Under Siege: 42% Spike in Ransomware Attacks on Utilities

Dec 17, 2024 10:05:27 AM By Stu Sjouwerman

Ransomware attacks targeting utilities have surged by 42% over the past year, with spear phishing playing a major role in 81% of cases, according to a ReliaQuest study spanning November ...

Security Awareness Training Blog

Social Engineering Blog

View Topics