Security Awareness Training Blog

Social Engineering Blog

Latest social engineering news, analysis, tactics the bad guys are using and what you can do to defend your organization.

PerSwaysion: Convincing Executives to Act Against Their Own Interest

Researchers at Group-IB have discovered a sophisticated spear phishing campaign that’s targeted executives at more than 150 companies around the world since mid-2019. The researchers have ...
Continue Reading

GitHub is the Latest Target of Social Engineering Phishing Attacks

Using simple alert-style email notices, scammers look to steal credentials to gain access to development code, intellectual property, and project details.
Continue Reading

Half of all Breaches Start with Phishing and Social Engineering

New data shows successful attacks on internal networks, cloud environments, and POS systems all are very susceptible to this common attack vector.
Continue Reading

Is That COVID-19 Email Legitimate or a Phish?

It’s no surprise that phishers and scammers are using the avalanche of new information and events involving the global coronavirus pandemic as a way to successfully phish more victims. ...
Continue Reading

Scammers Can Use Recent Transactions to Trick You

KrebsOnSecurity reports that scammers are using caller ID spoofing to impersonate their victims, and then socially engineering victims’ banks into divulging information about recent ...
Continue Reading

[Heads Up] Microsoft: Ransomware Gangs That Don't Threaten To Leak Your Data Steal It Anyway

That means you can from now on count a ransomware infection as a data breach with all the consequences that this brings. Moreover, the so-called "human-operated" ransomware gangs have ...
Continue Reading

[Click Alert] So, What Is The Phish-prone Percentage On Recent Coronavirus Phishing Tests?

I had some numbers run on the usage of our new, dedicated COVID-19 phishing templates to find out what the Phish-prone percentage was, since this is an unprecedented worldwide event.   ...
Continue Reading

Postcards from a Film Director. The challenges of creating a sitcom during COVID-19 Lockdown

By Jim Shields, Managing Director of U.K.-based Twist & Shout - a KnowBe4 company. When we first created Restricted Intelligence over seven years ago, we had no idea it would be so ...
Continue Reading

COVID-19 Emails go From Zero to Half a Million a Day in Just Three Months

According to new data from security researchers at Forcepoint, the interest in coronavirus-themed emails and websites by cybercriminals is cause for concern.
Continue Reading

New COVID-19 Malware Variants Render Your Endpoints Useless

Forget cybercriminals out to steal your money and credentials. Security researchers are now finding more malware intent on rewriting master boot records and wiping file systems.
Continue Reading

Netflix Scams Target People Sheltering in Place

With people sheltering in place during the pandemic emergency, they’re both teleworking and finding their entertainment online. Google searches for Netflix jumped 142% since the advice to ...
Continue Reading

It’s Look-Alike Day: While Doppelganger Humans Can Be Funny, Domains Are Not

On April 20, we celebrate National Look-Alike Day. It’s the perfect time to see which people have similar features as you, instead of that completely normal person you bumped into at the ...
Continue Reading

Damage From Phishing Doubles For Dutch Banks

Dutch banks saw damage from phishing double last year compared to the previous year. This concerns both phishing for 2FA security codes and phishing for credit and debit card numbers, ...
Continue Reading

[Heads-Up] Hacking Attacks Double Against Users Who Now Suddenly Work From Home

Reuters just reported that hacking activity against corporations in the United States and other countries more than doubled by some measures last month as digital thieves took advantage ...
Continue Reading

Re-Opening the American Economy? Malicious Actors Have a Plan...

By Eric Howes,  KnowBe4 Principal Lab Researcher.  If you've been following the news over the past week or so then you know that a robust debate has opened at federal, state, and local ...
Continue Reading

Phishing Trend: Quality, Not Quantity?

A new report from CyberCube found that sophisticated cybercriminals are increasingly shifting to launching business email compromise (BEC) attacks against executives, Insurance Business ...
Continue Reading

When the Implausible Seems, Well, More Plausible

Everyone is vulnerable to social engineering and no security tool can block every phishing email, according to Kevin Casey at The Enterprisers Project. Casey talked to a number of ...
Continue Reading

Phishing *Better* Than the Bad Guys During the Pandemic

By Katie Brennan, KnowBe4 Product Content Director.  The COVID-19 pandemic has had cyber criminals in a phishing frenzy for months. They’ve been sending countless attacks, with the ...
Continue Reading

Novel, but Retrospectively Obvious: a QR Code Generator Scam

A scammer has stolen more than $45,000 worth of bitcoin over the past month by tricking people with fake QR code generators, ZDNet reports. Harry Denley, Director of Security at MyCrypto, ...
Continue Reading

Hackers have hit every country on Earth with coronavirus-themed cyberattacks

Cyber criminals have launched coronavirus-themed cyberattacks in 241 countries and territories, new research from Redmond showed. "Every country in the world has seen at least one ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews