FINRA Yet Again Becomes the Impersonated Brand at the Center of Phishing Attacks on Brokerage Firms

Oct 14, 2020 3:24:23 PM By Stu Sjouwerman

A mix of domain, phishing emails, a dash of social engineering, and a survey are the recipe for a simple and yet effective campaign targeting the financial sector.

[eSummit] Your Cybersecurity Awareness Month Action Plan

Oct 13, 2020 10:23:07 AM By Stu Sjouwerman

Cyber threat actors are getting more creative and more skilled at hacking the human. That's why we've created this cybersecurity eSummit to look at evolving attack techniques your end ...

Sophisticated Mercenary Group Excels at Social Engineering

Oct 13, 2020 8:23:24 AM By Stu Sjouwerman

An extremely skilled group of hackers-for-hire dubbed “Bahamut” is using sophisticated social engineering tactics against a range of targets around the world, researchers at BlackBerry ...

Cybersecurity Awareness Month Weekly Tip: Current Phishing Threats

Oct 9, 2020 7:00:00 AM By Stu Sjouwerman

Each week during Cybersecurity Awareness Month, we’re going to be sharing in-depth weekly cybersecurity tips from our evangelists to help your users make smarter security decisions and ...

An Autopsy of a $15 Million Heist

Oct 8, 2020 11:33:12 AM By Stu Sjouwerman

A company in the US lost $15 million in a two-month-long business email compromise scam, BleepingComputer reports. Researchers at Mitiga who investigated the attack told BleepingComputer ...

Gartner Recognizes KnowBe4 as a Representative Vendor for Security Awareness Training Program Platforms

Oct 7, 2020 8:31:46 AM By Stu Sjouwerman

We believe, as the world's largest security awareness training platform, this recognition validates the success of our ability to carry out our mission. We enable organizations and their ...

Healthcare Sector Still Sustains Phishing Campaigns

Oct 5, 2020 8:29:52 AM By Stu Sjouwerman

No one should take too seriously the high-minded things criminals sometimes say about how they’re restraining themselves during the pandemic, and that they’re going to avoid hitting ...

Interesting Mini-Movie On Disinformation From The FBI

Oct 3, 2020 8:39:40 AM By Stu Sjouwerman

The FBI and the National Counterintelligence and Security Center (NCSC) released a new movie to increase awareness of how foreign intelligence entities use fake profiles and other forms ...

Two Men Charged in a Case of Phishing NFL and NBA Players

Oct 2, 2020 8:25:05 AM By Stu Sjouwerman

The US Department of Justice has charged two men for allegedly hacking social media and other accounts belonging to NFL and NBA players, Mashable reports. Trevontae Washington, 21, of ...

Phishing Attacks Continue to Grow More Sophisticated

Sep 30, 2020 8:24:36 AM By Stu Sjouwerman

Both criminal and nation-state threat actors have “rapidly increased in sophistication” over the past twelve months, according to Microsoft’s Digital Defense report. Microsoft found that ...

Organizations Working From Home Opens Wider Target for Cybercriminals

Sep 28, 2020 8:28:57 AM By Stu Sjouwerman

With so many people working from home, more attackers are adapting their strategies to focus on employees as a way to bypass organizations’ defenses, FCW reports. During a webcast hosted ...

Tribune Publishing apologizes for fake bonus offer in phishing-simulation email

Sep 24, 2020 10:29:04 AM By Stu Sjouwerman

Yesterday at the end of the day, I was called by our PR team who got alerted by tech support about a Twitter post that was going viral. Turns out a custom phishing test created by one of ...

How to Become a Harder Target From Malicious Threat Actors

Sep 16, 2020 8:30:35 AM By Stu Sjouwerman

The US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory regarding threat actors associated with China’s Ministry of State ...

High-Profile Caper Spawns Phishing Campaign

Sep 15, 2020 8:31:04 AM By Stu Sjouwerman

A phishing campaign is using the recent Twitter hack as phishbait, HackRead reports. In mid-July, hackers used social engineering against Twitter employees to gain access to more than a ...

Funds Transfer Fraud Has Increased 35% Since the Onset of COVID-19

Sep 14, 2020 10:49:30 AM By Stu Sjouwerman

With reported losses from thousands of dollars to well over $1 million, funds transfer fraud represents 27% of cyber insurance claims in 2020.

Extradited Member of a U.K. Scammer Highlights How His Gang Took Banks for $2 Million

Sep 8, 2020 1:45:28 PM By Stu Sjouwerman

Details on how this global gang of cybercriminals used spoofing and impersonation methods to social engineer banks time and time again shows how effective these tactics are.

The New Version of Qbot Trojan Steals Damn Near Everything, Hijacks Email Threads to Spread Infection

Sep 8, 2020 7:01:00 AM By Stu Sjouwerman

Originally seen all the way back in 2008, this banking trojan is continuously being developed. Its latest iteration is downright nasty and has already infected 5% of all organizations ...

[Heads Up] My Name Is Being Used In Criminal Identity Theft Attacks At The Moment

Sep 5, 2020 11:07:10 AM By Stu Sjouwerman

There is an old Dutch expression: "High trees catch a lot of wind". Well. once you get in the public eye there is definitely the effect you become a bigger target of identity theft. In ...

Threat Group DeathStalker Uses PowerShell-based Implant Powersing to Hack into Financial Services Firms

Sep 2, 2020 8:23:15 AM By Stu Sjouwerman

Apparently focused on more intelligence gathering than taking direct malicious action against the organizations they compromise, this attack is filled with ingenuity.

The Heart has Its Reasons, but Those Shouldn't Become an Enterprise Risk

Sep 1, 2020 8:26:15 AM By Stu Sjouwerman

The FBI has warned that victims of romance scams lost $475 million in 2019, BleepingComputer reports. In Idaho alone, nearly one hundred of these victims lost more than $1 million each. ...

Security Awareness Training Blog

Social Engineering Blog

View Topics