[EYE-OPENER] USA CISA Advisory on Trickbot Campaigns: Phishing Training For Employees

Mar 17, 2021 4:04:08 PM By Stu Sjouwerman

March 17, 2021 — The Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) have observed continued targeting through spear phishing campaigns ...

Make No Mistake, This Changes Everything: Nation-State 2.0

Mar 17, 2021 8:00:00 AM By Roger Grimes

Every organization needs to figure out their increased cyber risk from nation-state warfare attacks and deploy mitigations.

Give Me £1,000 to Stop Calling You

Mar 17, 2021 7:14:28 AM By Stu Sjouwerman

Some scammers are taking a more direct approach to asking for money, according to BBC reporter Jane Wakefield. Wakefield received a call from a scammer who claimed to work for Microsoft, ...

6 Advanced Email Phishing Attacks

Mar 16, 2021 10:32:51 AM By Roger Grimes

No matter how good your policies and technical defenses are, some amount of phishing will get to your end users in a given month. They must be trained to recognize social engineering ...

FBI Warns Against Deepfakes' Potential for Social Engineering

Mar 16, 2021 8:22:52 AM By Stu Sjouwerman

The FBI has issued an advisory warning of an expected increase in the use of deepfakes for social engineering attacks. Deepfakes are images, videos, audio, or text created via AI to ...

NIST Updates You Should Be Aware About

Mar 12, 2021 8:42:50 AM By Perry Carpenter

By Perry Carpenter, KnowBe4 Chief Evangelist and Strategy Officer. If you’ve been in IT or infosec for any length of time, you’ve probably heard of NIST (the National Institute of ...

Phishing Scammers Send a Fake “Private Shared Document” as the Initial Attack Vector for Stealing LinkedIn Credentials

Mar 5, 2021 3:55:42 PM By Stu Sjouwerman

A new social engineering scam demonstrates how cybercriminals are both evolving their tactics while still using tried and true methods that just work to attain their goals.

POTRAZ Warns of Phishing Scams

Mar 3, 2021 9:42:20 AM By Stu Sjouwerman

The Postal and Telecommunications Regulatory Authority of Zimbabwe (POTRAZ) has issued a warning regarding an increase in email and SMS phishing attacks, the Chronicle reports. Dr. Gift ...

[HEADS UP] New Dutch Data Breach Report Warns of Explosive Increase in Cyber Attacks and Stolen Personal Data

Mar 1, 2021 10:39:15 AM By Stu Sjouwerman

The Dutch Data Protection Authority (AP) recently measured the number of reports of data theft in 2020 and the number of attacks skyrocketed. The report documented that it increased no ...

New York State Education Department Warns of Phishing Campaign

Mar 1, 2021 9:55:30 AM By Stu Sjouwerman

The New York State Education Department (NYSED) released an advisory warning that scammers are impersonating its employees in an attempt to steal social security numbers and money. The ...

Bogus FedEx and DHL Phishbait

Feb 24, 2021 8:29:14 AM By Stu Sjouwerman

Researchers at Armorblox describe an ongoing phishing campaign that’s using phony FedEx and DHL shipping notifications as phishing lures.

Running Headfirst Into a Breach

Feb 23, 2021 2:00:35 PM By Javvad Malik

The pandemic changed the fortunes of many organisations. Perhaps none so much as Zoom, which has found itself becoming a noun synonymous with any form of video call.

More NHS-Themed COVID-19 Vaccine Phishing

Feb 23, 2021 8:21:48 AM By Stu Sjouwerman

A phishing campaign spoofing the UK’s National Health Service has surged its output, Infosecurity Magazine reports. Researchers at Mimecast warn that the attackers behind the campaign are ...

[HEADS UP] Texas Electric Company Warns of Scam Involving Losing Power

Feb 22, 2021 4:31:15 PM By Stu Sjouwerman

With the recent weather crisis in Texas, victims are afraid their power could be cut off. One electric utility company in Texas warns of scams that are threatening customers that their ...

The First Documented Russian Hack in...1981?

Feb 22, 2021 3:45:54 PM By Stu Sjouwerman

I'm reading "Active Measures: The Secret History of Disinformation and Political Warfare" by Thomas Rid and wanted to share this story with you which was new to me! It's warmly ...

Be on the Watch for W-2 Phishing Scams!

Feb 19, 2021 1:20:58 PM By Stu Sjouwerman

With tax season just around the corner, this simple, yet effective social engineering theme is perfect to get users to respond to phishing attacks exactly the way the bad guys want.

The Cybersecurity Book You Should Read

Feb 18, 2021 2:00:57 PM By Stu Sjouwerman

Recently Cyber Defense Magazine released the top 100 cybersecurity books and the top recommended book is one of our Top Faves as well.

KnowBe4 Adds New Language Localization Options to its Security Awareness Training and Simulated Phishing Platform

Feb 18, 2021 10:00:00 AM By Stu Sjouwerman

We are excited to announce the availability of KnowBe4’s new localization options for the Admin Console and Learner Experience. You can now set your default language for three ...

Phishing and Impersonated Brands

Feb 16, 2021 8:24:13 AM By Stu Sjouwerman

Microsoft is still the most impersonated brand for phishing campaigns, according to researchers at Vade Secure. The security firm spotted 30,621 unique Microsoft-related phishing URLs in ...

New Novel Campaign Targeting Security Researchers Uses Really Creative Social Engineering to Fool Victims

Feb 12, 2021 4:32:29 PM By Stu Sjouwerman

Pretending to be security researchers themselves, this group of cybercriminals went to great lengths to make sure legitimate security researchers would fall for the attack.

Security Awareness Training Blog

Social Engineering Blog

View Topics