Security Awareness Training Blog

Social Engineering Blog

Latest social engineering news, analysis, tactics the bad guys are using and what you can do to defend your organization.

Charities Need to Watch Out for Scammers

The UK’s National Council for Voluntary Organisations (NCVO) has warned charities to be wary of scammers, Charity Digital News reports. The NCVO’s Road Ahead 2020 report outlines trends ...
Continue Reading

Look-alike Domain Spoofing Scam Takes Charity for $1 Million

In yet another case of business email compromise, a charity is fooled through a combination of diligence, sophistication, and social engineering.
Continue Reading

Not the Antiques Roadshow

Scammers conned a Dutch museum into sending them £2.4 million (about $3.1 million) by posing as a real London-based art dealer who planned to sell the museum a John Constable painting, ...
Continue Reading

Unusual New Botnet-driven Phishing Attack With Tricky Downloaders

A large phishing campaign is distributing malicious Excel documents and utilizing irritating pop-ups to trick users into enabling macros, researchers at Lastline have found. The campaign ...
Continue Reading

[Heads-up] Scam Of The Week: Coronavirus Phishing Attacks In The Wild

Yup, you can count on it, when there is a worldwide health scare, the bad guys are on it like flies on $#!+. We are seeing a new malicious phishing campaign that is based on the fear of ...
Continue Reading

Contributing to the Delinquency of a Major

A Swedish man used a multitude of forged credentials and a fake school diploma to join the Swedish military, where he maintained the ruse for eighteen years and eventually attained the ...
Continue Reading

Scam Of The Week: "Kobe Bryant Dead, Dies in Helicopter Crash"

Today, news broke that Kobe Bryant died in a helicopter crash. His daughter Gigi was also on board and died in the crash. This is a celebrity death that the bad guys are going to be ...
Continue Reading

Scam Of The Week: Exit Windows 7, Enter Scams

Microsoft ended support for the Windows 7 operating system on January 14th, and scammers are taking advantage of the long-anticipated news to launch tech support scams, according to the ...
Continue Reading

Amazon Phishbait Chums British Waters

Action Fraud, the UK's fraud reporting center, has warned of a widespread phone scam targeting Amazon customers. The phone calls are automated and inform recipients that their Amazon ...
Continue Reading

Emotet Trojan Intelligently Targets Organizations, Impersonates Victims to Improve Attack Success

According to new insights from Cisco Talos, this banking malware is getting nastier as it moves into the island hopping space via email attacks using social engineering.
Continue Reading

Cyber Incidents Are the Top Concern Among Executives

Businesses are finally realizing the continually present threat that hackers, scammers, and cybercrime organizations pose, according to new data from insurer Allianz.
Continue Reading

Bad Guys Built A Completely Fake News Website For A Bitcoin Phishing Scam

The Central Bank of Malta has issued a statement warning people about a bitcoin phishing scam being pushed by a spoofed news website, the Times of Malta reports. The site imitated a ...
Continue Reading

Texas School District Loses $2.3 Million In BEC Scam

Texas’s Manor Independent School District was the victim of a costly 2.3 million dollar Business Email Compromise (BEC) scam in November of 2019.
Continue Reading

An Overview of Phishing from the Accounting Sector

Employee training is an essential long-term defense against phishing attacks, according to David Barton and Kimberly Anderson at UHY Advisors. In an article for Accounting Today, Barton ...
Continue Reading

[Scam Of The Week] Don't Fall For This Tricky: “Start your 2020 with a gift from us”

Paul Ducklin at Naked Security warned us about a scam that just surfaced and promises a gift by courier from overseas where the other person hasn’t told you what they’re sending – the ...
Continue Reading

The Top 5 Eyeopener Strategies To Improve Your IT Defenses And Keep Bad Guys Out Of Your Network

Last year, in 2019 according to CVEdetails, there were 12,174 new, publicly announced vulnerabilities. If that sounds like a high number, it’s a lot less than the previous two years. We ...
Continue Reading

Scammer Who Tricked Facebook and Google Out of $120 Million Gets 5 Years in Jail

The Lithuanian hacker who ran the most notorious, simplest, and most lucrative email-based social engineering fraud scam has been brought to justice and will be serving time and paying ...
Continue Reading

Smishing Examples & Defenses

Smishing is phishing via Short Message Service (SMS) on a participating device, usually a cell phone. Long neglected by phishers and spammers, smishing has recently become a very common ...
Continue Reading

Encryption Isn’t Your Only Ransomware Problem - There Are Some Other Nasty Issues

Ransomware has become one of the most dreaded problems in the cyber world and it’s only getting worse. Much worse!
Continue Reading

Phishing Emails on the Rise as Spear Phishing Continues to Return Bigger Payouts

New data from Microsoft Security Insights sheds some needed light on exactly what the bad guys are doing and how they’re shifting tactics. Sometimes it feels like the bad guys are ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews