Hospitality Provider the Target of an Old-School BadUSB Social Engineering Attack

Mar 26, 2020 7:44:59 PM By Stu Sjouwerman

In what appears to be a mix of old- and new-school social engineering, an attack spotted in the wild using a USB thumb drive offers us a view into how one company could have become the ...

Inception: Your Employee's Mind is the Scene of the Crime

Mar 26, 2020 8:44:33 AM By Javvad Malik

I loved the movie Inception when it came out. It had everything, a stellar cast, amazing visuals, a strong plot, and a twisted end that still has me wondering whether or not they were in ...

[HEADS UP] Cybercriminals Attempt to Exploit Stimulus Package for COVID-19

Mar 26, 2020 8:20:17 AM By Stu Sjouwerman

In several recent blog posts we've showed you the myriad ways in which malicious actors have aggressively -- even ruthlessly -- deployed social engineering tactics to leverage the ...

An Intimate Look at a Nigerian Social Engineer

Mar 23, 2020 10:05:23 AM By Stu Sjouwerman

Researchers at Check Point offer a look at a Nigerian citizen who moonlights as a cybercriminal who uses social engineering techniques. The man, whom the researchers call “Dton,” ...

Just How Lucrative is Cybercrime? According to New Charges Against One Gang, $30 Million Lucrative

Mar 23, 2020 8:28:55 AM By Stu Sjouwerman

The recent arrest and charging of a gang of 24 U.S.-based cybercriminals in Atlanta demonstrates how easy it is to become a cybercriminal and use social engineering tactics to fool people ...

[Heads-Up] Feeding Frenzy: COVID-19 Phishing Attacks Surge as U.S. Reels from Pandemic

Mar 23, 2020 7:00:00 AM By Eric Howes

By Eric Howes, KnowBe4 Principal Lab Researcher. Having already published three blog pieces on the epidemic of Coronavirus-themed phishing emails and spam/scam offerings online (see HERE, ...

Organizations Need To Be Wary Of Home Worker Phishing Risks

Mar 19, 2020 5:31:33 PM By Stu Sjouwerman

Security experts warn that phishing attacks against home workers will rise.

The Effectiveness of Educating End Users With a Test-Out Quiz

Mar 17, 2020 12:54:14 PM By Roger Grimes

Use a “test-out” quiz as a way to get people who are normally resistant to training to proactively take the training. They think they are taking a quiz to avoid the training, but in ...

Coronavirus-Themed Simulated Phishing Templates

Mar 16, 2020 9:48:41 AM By Stu Sjouwerman

The following templates were added to the console this morning:

Hackers Use Interactive Malicious COVID-19 Map to Spread Malware

Mar 14, 2020 10:44:24 AM By Stu Sjouwerman

Cybercriminals constantly latch on to news items that captivate the public’s attention, but usually they do so by sensationalizing the topic or spreading misinformation about it. ...

U.S. Homeland Security: "Malicious Actors Expected To Focus Attacks On Teleworkers. Secure Your VPN"

Mar 14, 2020 9:55:44 AM By Stu Sjouwerman

The Department of Homeland Security's cybersecurity agency this week shared tips on how to properly secure enterprise virtual private networks (VPNs) seeing that a lot of organizations ...

[Heads Up] Your Exfiltrated Ransomware Data Is Now Used To Spearphish Your Business Partners

Mar 12, 2020 1:26:41 PM By Stu Sjouwerman

Ransomware operators are continually improving their tactics to ensure more lucrative payouts, according to Information Security Media Group (ISMG). Over the past several years, attackers ...

[Heads Up!] A Whopping 21 Percent of Phishing Attack URLs Are Not Detected As Malicious For Days After They Go Live

Mar 12, 2020 7:03:09 AM By Stu Sjouwerman

New data from Akamai provides insight into why phishing attacks are making it all the way to the endpoint… and why they can trick users so easily into becoming a victim.

Secret Service Warning: Exploiting the Coronavirus for Fraud and Profit.

Mar 11, 2020 1:07:08 PM By Eric Howes

By Eric Howes, KnowBe4 Principal Lab Researcher. On Monday of this week we published a review of the coronavirus-themed emails that had been reported to us by customers using the Phish ...

Exploiting the Coronavirus: The Spammers, the Scammers, and the Bad Guys

Mar 9, 2020 1:35:06 PM By Eric Howes

By Eric Howes, KnowBe4 Principal Lab Researcher. If you've been paying attention to the news over the past week or so, you've undoubtedly noticed that the majority of the stories on your ...

Use Advocates to Spread Your Security Awareness Training Program

Mar 9, 2020 8:00:00 AM By Roger Grimes

I’ve always been a big fan of train-the-trainer programs. Even if you are a great computer security consultant and trainer, there is a limit to what you, one person or one team, can do. ...

Social Security Administration Warns of Phone Scams On March 5th "Slam The Scam Day"

Mar 4, 2020 3:47:47 PM By Stu Sjouwerman

The Social Security Administration in Association with the Federal Trade Commission's (FTC) National Consumer Protection Week, want to remind everyone that scammers are now targeting ...

Bogus Singapore Police Site Serves as a Watering Hole

Mar 2, 2020 11:09:01 AM By Stu Sjouwerman

The Singapore Police Force (SPF) released an advisory warning about a phishing site that’s spoofing the Force’s website, Channel News Asia reports. The bogus website informs the user that ...

Verizon: More Than Half of Users Click on Multiple Phishing Links. Social Engineering, Innovation are Responsible

Feb 26, 2020 10:08:50 AM By Stu Sjouwerman

The latest data from Verizon’s 2020 Mobile Security Index report shows that both consumer and business users make it all too easy for cyberattackers to fool them into becoming a victim.

An Influence or Wire Fraud?

Feb 26, 2020 8:26:37 AM By Stu Sjouwerman

A 22-year-old Instagram and YouTube influencer named Kayla Massa has been arrested after allegedly convincing her followers to assist her in a fraud scheme, Quartz reports. Prosecutors ...

Security Awareness Training Blog

Social Engineering Blog

View Topics