Business Email Compromise Attack Leads to Millions in Non-Profit Loss

Jan 11, 2022 9:52:45 AM By Stu Sjouwerman

A business email compromise attack at Illinois’s Office of the Special Deputy Receiver led to a loss of $6.85 million, Ray Long at the Chicago Tribune reports. Long describes the Office ...

Obvious, but Probably Effective: Konni RAT Screensaver

Jan 6, 2022 1:20:04 PM By Stu Sjouwerman

A North Korean threat actor is targeting users in Russia with a New Year’s Eve-themed phony screensaver file, the Record reports. Researchers at Cluster25 spotted the activity, and say ...

Shoulder Surfing is Still a Thing for Successful Social Engineering Attacks

Jan 4, 2022 10:03:50 AM By Stu Sjouwerman

Social engineering isn’t concerned with either novelty or elegance. All that matters is whether it works. ESET’s Jake Moore described a case in point for We Live Security: all someone ...

5 Notable Obscure Phishing Scams

Dec 29, 2021 11:01:12 AM By Roger Grimes

I love that KnowBe4’s customers are among the most knowledgeable and educated people in the world in avoiding phishing scams. KnowBe4’s products help its customers to educate and test ...

New Nigerian Phishing Scams Target U.S. Military Families with Needed “Services”

Dec 23, 2021 4:17:23 PM By Stu Sjouwerman

With loved ones potentially a half a world away, scammers prey on families with scams that offer to assist with communication, care packages, leave, and more.

Having an Efficient Security Awareness Training Program

Dec 23, 2021 9:06:46 AM By Roger Grimes

I love that KnowBe4’s customers are among the most knowledgeable and educated people in the world in avoiding phishing scams. KnowBe4’s products help its customers to educate and test ...

Spam Calling Rates Spike Globally

Dec 20, 2021 11:56:12 AM By Stu Sjouwerman

Spam calls in the US spiked in October, according to Truecaller’s annual Global Spam Report. The report observed that Truecaller customers in the US received 3,115,861 spam calls in ...

$148 Million Lost to Gift Card Scams in 2021 (So Far)

Dec 16, 2021 12:44:04 PM By Stu Sjouwerman

A US Federal Trade Commission (FTC) data spotlight has found that people in the US lost $148 million to gift-card-related scams in the first nine months of 2021. The spotlight also found ...

Netflix is the Latest Impersonated Brand in Ongoing Subscriber Targeting Scams

Dec 15, 2021 4:23:55 PM By Stu Sjouwerman

With the increased interest in and availability of movie and TV streaming services, plenty of new scams are popping up attempting to steal personal details and credit card information.

Answer 4 Simple Questions To Avoid a Social Engineering Attack

Dec 14, 2021 2:19:57 PM By Roger Grimes

I am usually not a man of a few words. I am the opposite. I write hundreds of pages a month and talk non-stop in person. But lately, I have been trying to be better at saying more with ...

Socially Engineering Your Way to Customer Data

Dec 13, 2021 9:09:38 AM By Stu Sjouwerman

US telecommunications company Cox Communications has disclosed a data breach that exposed some customers’ information, BleepingComputer reports. The company said in a breach notification ...

2021 Security Hints & Tips for Holiday Travels

Dec 9, 2021 4:00:15 PM By Stu Sjouwerman

The holiday season may be closer to "normal" this year, and that means your users will be even more focused on holiday activities - including travel. Cybercriminals will undoubtedly be ...

New Phishing Campaign has Fake DHL Shipping

Dec 6, 2021 4:14:40 PM By Stu Sjouwerman

Researchers at Avanan have spotted a new phishing campaign that’s impersonating DHL with phony shipping notifications. The emails inform the recipients that they need to update their ...

Bitcoin Scam Videos on Instagram are Part of an Elaborate Account Takeover Scam

Nov 30, 2021 10:55:20 AM By Stu Sjouwerman

This elaborate scam uses social engineering to trick victims into sending the hacker Bitcoin while holding Instagram accounts hostage.

FBI: Cyber Attacks Target Organizations Involved in Mergers and Acquisitions

Nov 25, 2021 8:55:55 AM By Stu Sjouwerman

A new notification from the FBI warns organizations of attacks at the perfect time when organizations are spending money, new people are being introduced, and operations are in flux.

Avoid Donating to Charity Scammers During Giving Tuesday 2021

Nov 23, 2021 5:07:27 PM By Stu Sjouwerman

Giving Tuesday is a great way for organizations and people to give back. However, this gives cybercriminals opportunities to take advantage of you with charity scams.

SEC Warns of Spoofed Emails Impersonating Their Employees

Nov 23, 2021 10:08:11 AM By Stu Sjouwerman

Scammers are impersonating the US Securities and Exchange Commission (SEC) with spoofed phone calls and other communications that attempt to steal money and personal information from ...

Phishing Campaign Targets TikTok Influencers

Nov 22, 2021 1:23:42 PM By Stu Sjouwerman

Phishing emails are targeting large TikTok accounts with phony copyright warnings or offers for account verification, according to researchers at Abnormal Security.

'Fake Ransomware' as a Form of Social Engineering

Nov 18, 2021 10:45:53 AM By Stu Sjouwerman

Attackers are exploiting a vulnerability in a WordPress plugin to deface several hundred websites with phony warnings of ransomware, the Record reports. Researchers at Sucuri found that ...

Social Engineering, Persistence, and a Few Phone Calls is All it Takes to Steal $1 Million

Nov 18, 2021 9:00:45 AM By Stu Sjouwerman

The story of a Swiss investor who was convinced they were purchasing pre-IPO shares of AirBnB is the cautionary tale of how little it really takes to turn someone into a victim.

Security Awareness Training Blog

Social Engineering Blog

View Topics