State-Sponsored Phishing Campaigns Target 40,000 VIP Individuals

Jul 5, 2024 2:00:10 PM By Stu Sjouwerman

Researchers at Menlo Security discovered three state-sponsored phishing campaigns that have targeted 40,000 important individuals over the past three months. “In a recent 90-day period, ...

Don't Fall for It: How to Spot Social Media Job Scams a Mile Away

Jul 5, 2024 9:24:24 AM By Anna Collard

As social media becomes more intertwined with our daily routines, cybercriminals are using it to trick people with fake job offers. What are these social-media recruitment scams, and how ...

Phishing Attacks Themed Around Popular Weight Loss Drugs Increase 183%

Jul 5, 2024 9:24:12 AM By Stu Sjouwerman

As popularity grows for these proven methods of weight loss, scammers have taken note and have placed a significant focus on separating victims from their money.

New “Paste and Run” Phishing Technique Makes CTRL-V A Cyber Attack Accomplice

Jul 5, 2024 7:40:28 AM By Stu Sjouwerman

A new phishing campaign tries to trick email recipients into pasting and executing malicious commands on their system that installs DarkGate malware.

Ransomware Attack on U.K. Health Service Laboratory Disrupts Major London Hospital Services

Jul 2, 2024 1:55:38 PM By Stu Sjouwerman

What likely started as a quick ransomware “smash and grab” has turned into a headline case resulting in responses from both U.K. and U.S. law enforcement.

[Important Alert] TeamViewer Network Breached as Russian APT29 Hackers Strike Again

Jun 28, 2024 8:47:56 AM By Stu Sjouwerman

In a concerning development, TeamViewer, one of the world's leading remote access software providers, has disclosed a cyber attack that breached its corporate network environment.

FBI Warns of Phishing Campaign Targeting the Healthcare Industry

Jun 27, 2024 1:46:27 PM By Stu Sjouwerman

The US FBI and the Department of Health and Human Services (HHS) have released a joint advisory warning of a social engineering campaign that’s targeting the healthcare industry.

Cybercriminals Set Sights on Digital Identities of Singapore Citizens

Jun 27, 2024 1:46:23 PM By Stu Sjouwerman

Singapore has become the latest target for cybercriminals looking to steal digital identities and exploit them for nefarious purposes.

The Double-Edged Sword of AI: Empowering Cybercriminals and the Need for Heightened Cybersecurity Awareness

Jun 26, 2024 2:33:03 PM By Javvad Malik

The BBC recently reported that Booking.com is warning that AI is driving an explosion in travel scams. Up to 900% in their estimation - making it abundantly clear that while AI can be a ...

BEC Attacks Accounted for More Than One in Ten Social Engineering Attacks in 2023

Jun 24, 2024 9:21:30 AM By Stu Sjouwerman

A new report from Barracuda has found that email conversation hijacking attacks have risen by 70% since 2022. Additionally, business email compromise (BEC) attacks accounted for 10.6% of ...

The Indispensable World of Red Teaming

Jun 20, 2024 11:35:56 AM By Javvad Malik

In this mad, mad world of breaches, organizations are scrambling to keep their heads above water. It's like trying to navigate a minefield while blindfolded and riding a unicycle — one ...

[Heads Up] Tricky Fake Invoice Phishing Attack Uses Search to Deliver Malware

Jun 17, 2024 3:16:07 PM By Stu Sjouwerman

Researchers at Trustwave warn that a phishing campaign is distributing malware via HTML attachments disguised as invoices. Notably, the HTML files abuse the Windows Search protocol to ...

No Politician Too Small: School Board Candidates Targeted By Phishing and BEC Scams

Jun 17, 2024 3:15:49 PM By Stu Sjouwerman

Cybercriminals are broadening their targets to include even local political candidates, as an escalating series of phishing attacks was recently directed at school board candidates in ...

Phishing With Deepfakes for HK$200 Million

Jun 13, 2024 2:29:59 PM By Martin Kraemer

My hacker story occurred not too long ago at the Hong Kong office of an undisclosed multinational corporation. The hackers pulled off a first-of-its-kind scam that leveraged a phishing ...

New Research Shows An Alarming Trend of Phishing Attacks Doubling For US and European Organizations

Jun 12, 2024 3:25:33 PM By Stu Sjouwerman

Cybercriminals never sleep, and their aim keeps getting better. According to new research from Abnormal Security, phishing attacks targeting organizations in Europe shot up by a ...

Everything You Can Do to Fight Social Engineering and Phishing

Jun 10, 2024 8:00:00 AM By Stu Sjouwerman

Social engineering and phishing are not just IT buzzwords; they are potent threats capable of devastating damage to your organization.

Nearly Three-Quarters of Organizations Were the Target of Attempted Business Email Compromise Attacks

Jun 7, 2024 2:20:40 PM By Stu Sjouwerman

New data highlights just how dangerous Business Email Compromise attacks are.

Fighting Phishing: Everything You Can Do to Fight Social Engineering and Phishing

Jun 7, 2024 8:16:24 AM By Roger Grimes

I have created a comprehensive webinar, based on my recent book, “Fighting Phishing: Everything You Can Do to Fight Social Engineering and Phishing”. It contains everything that KnowBe4 ...

Social Engineering Scams Can Come in the Mail, Too

Jun 6, 2024 8:27:18 AM By Roger Grimes

Social engineering scams can come through any communications channel (e.g., email, web, social media, SMS, phone call, etc.). They can even come in the mail as the Nextdoor warning below ...

“Operation Endgame” Ends with the Arrest of 4 Cybercriminal Suspects and 100 Servers

Jun 6, 2024 8:27:15 AM By Stu Sjouwerman

Coordinated efforts between law enforcement agencies across nine countries has resulted in a major disruption of a threat group’s malware and ransomware operations.

Security Awareness Training Blog

Social Engineering Blog

View Topics