KnowBe4 Prevents Customer From Becoming Social Engineering Victim Of Duke Energy Vendor’s Hack

Dec 6, 2017 1:39:03 PM By Stu Sjouwerman

A customer just sent us this: "Stu, the company who processes payments for Duke Energy’s walk in payments was hacked and as a result about 375,000 bank accounts may have been stolen. "We ...

Phishing Schemes Are Using Encrypted Sites To Seem Legit

Dec 6, 2017 6:39:41 AM By Stu Sjouwerman

WIRED wrote: "A MASSIVE EFFORT to encrypt web traffic over the last few years has made green padlocks and "https" addresses increasingly common; more than half the web now uses internet ...

Your Cybercrime Insurance Policy May Not Cover You For Social Engineering Fraud

Dec 3, 2017 8:44:18 AM By Stu Sjouwerman

I have talked about this potentially extremely expensive and very disappointing "CEO fraud" or "Business Email Compromise" problem many times before. Your cybercrime policy may not ...

Google Kicks Harmful Apps Out Of Google Play And Offers 5 Steps Against Social Engineering

Dec 3, 2017 6:56:40 AM By Stu Sjouwerman

You're always better off getting apps from reputable stores like Google Play than you are from potentially dodgy, at best unknown, third-party sites. But even Google Play isn't immune ...

Surface Web vs. Deep Web vs. Dark Web: Differences Explained

Nov 28, 2017 7:35:00 AM By Stu Sjouwerman

These three terms are often a source of confusion, especially in connection with cybercrime and where that comes from. If you think that search engines like Google (there are more!) know ...

Spam was nearly dead, then it became an essential tool for crime and came roaring back

Nov 25, 2017 7:59:50 AM By Stu Sjouwerman

John Christian at TheOutline wrote a post that made me take notice because it neatly summarized the current state of affairs and confirms our own experience: spam has morphed and is back ...

Uber Total Loss: 57 Million Records Stolen But Data Breach Was Hidden For A Year

Nov 22, 2017 7:37:46 AM By Stu Sjouwerman

Oh boy. Uber is known for pushing the limits of the law and has dozens of lawsuits pending against it, but this one went too far and now comes the reckoning. Bloomberg was first to report ...

[ALERT] This Scary New Phishing Attack Is Very Hard To Detect

Nov 11, 2017 7:57:49 AM By Stu Sjouwerman

You need to know about a new phishing attack vector reported by our friends at Barkly. It utilizes a new technique that's just plain nasty. This week, users at one of their customers ...

[On-Demand Webinar] Phishing and Social Engineering in 2018

Nov 9, 2017 10:37:48 AM By Stu Sjouwerman

Ransomware has tipped the 1 billion mark and damages are expected to be around 5 billion before the year is out. Use of ransomware has evolved throughout the year with a 600% rise in URL ...

Is combosquatting a new trick hackers use to lure users into visiting malicious websites?

Nov 1, 2017 7:30:11 AM By Stu Sjouwerman

Georgia Tech researchers reported that hackers are using a technique identified with a newly coined term "combosquatting" to trick users into visiting malicious websites. Sorry to break ...

Putin Uses Psychiatrists For Social Engineering Attacks Against Individual Targets

Oct 30, 2017 7:20:36 AM By Stu Sjouwerman

Newsweek cross-posted an article that first appeared on The Daily Signal, and this is extremely relevant to what we are battling here today. Kiev, Ukraine—Since 2014, Russia has used ...

Worldwide Bad Rabbit Ransomware Outbreak Starts With Social Engineering

Oct 24, 2017 8:05:15 PM By Stu Sjouwerman

Organizations in Russia, Ukraine and a few hours later also the U.S. are under siege from Bad Rabbit , a new strain of ransomware which is basically a new, improved NotPetya version 2, ...

Advertising Intelligence—ADINT—Can Be Misused For Social Engineering

Oct 22, 2017 10:05:44 AM By Stu Sjouwerman

You are probably aware of the terms SIGINT (signals intelligence, like radio interception) and HUMINT (human intelligence, like espionage). There is a new term coined by the University of ...

You Need To See This, And It Will Make You Crap Your Pants

Sep 21, 2017 7:32:27 AM By Stu Sjouwerman

You and I know that your users are the weak link, things like ID10T and PEBKAC come to mind. But do you know how bad the problem really is? Some people like to bury their head in the sand ...

Scam Of The Week: Equifax Phishing Attacks

Sep 9, 2017 8:06:14 AM By Stu Sjouwerman

You already know that a 143 million Equifax records were compromised. The difference with this one is that a big-three credit bureau like Equifax tracks so much personal and sometimes ...

Equifax Reports Data Breach Possibly Impacting 143 Million U.S. Consumers

Sep 7, 2017 5:57:05 PM By Stu Sjouwerman

The Wall Street Journal just reported that Credit-reporting company Equifax Inc. disclosed Thursday that hackers gained access to some of its systems, compromising the personal ...

These 4 Maps Will Make You Understand Russia's Aggressive Cyber Attacks

Sep 3, 2017 1:23:29 PM By Stu Sjouwerman

There are many kinds of maps, they can show roads or general geography, but sometimes they shed light on other dimensions like economic, political and/or military perspectives. First of ...

Introducing Behavioral Information Security

Aug 31, 2017 7:27:54 AM By Stu Sjouwerman

Ben Tomhave posted a great article on his "The Falcon's View" blog. Loved the concept and I'm cross-posting the whole thing in it's entirety without any edits with grateful ...

Criminals Use Social Engineering To Make Victims Install Malicious Chrome Extensions

Aug 21, 2017 7:30:08 AM By Stu Sjouwerman

The attackers did reconnaissance on their targets, using social networks which people inside the organization were involved in making financial transactions. These victims were then ...

Here Is A Cool And Useful INFOGRAPHIC About Social Engineering

Aug 20, 2017 11:33:56 AM By Stu Sjouwerman

Kevin Mitnick, KnowBe4's Chief Hacking Officer retweeted a link to well-executed infographic about Social Engineering, and here it is, courtesy of the team at Smartfile.com

Security Awareness Training Blog

Social Engineering Blog

View Topics