53% of Organizations Experienced Cyber Attacks

Oct 13, 2023 4:52:30 PM By Stu Sjouwerman

As increasing percentages of businesses experience cyberattacks, new data provides details on where the most organizational risk lies.

Should You Use Controversial Simulated Phishing Test Emails?

Oct 13, 2023 1:34:39 PM By Roger Grimes

The Wall Street Journal recently published an article about using highly-emotionally charged, “controversial”, subjects in simulated phishing tests. Controversial topic examples include ...

New Research: Phishing Remains the Most Popular Technique for Bad Actors

Oct 12, 2023 12:11:26 PM By Stu Sjouwerman

A report from Trustwave notes that phishing remains one of the most popular and effective techniques for attackers to gain access to organizations.

Beware of Bogus Roborock Retailers: The Perils of Misleading URLs in E-Commerce

Oct 12, 2023 12:11:22 PM By Martin Kraemer

Roborock's online storefronts have been used for cybercrime schemes in the past, and it seems attackers are continuing to create fake online shops. After all, the Chinese-originated robot ...

Harvested Credentials Are Put Up for Sale Monthly on the Dark Web at a Rate of 10,000 a Month

Oct 12, 2023 8:01:59 AM By Stu Sjouwerman

Credential harvesting has become a business in and of itself within the cybercrime economy. New insight from Microsoft details the types of attacks your organization should watch out for.

New Cyber Attack Techniques Will Not Replace Old-School Social Engineering

Oct 12, 2023 8:01:53 AM By Stu Sjouwerman

Even though there are new attack types for cybercriminals, they are still leveraging old-school attack vectors. Why? Because they still work.

Business Email Compromise Attempts Skyrocket in the Last Year

Oct 12, 2023 8:01:44 AM By Stu Sjouwerman

Threat actors launched 156,000 business email compromise (BEC) attempts per day between April 2022 and April 2023, according to Microsoft’s latest Digital Defense Report. While most of ...

[INFOGRAPHIC] KnowBe4’s SecurityCoach: Top 10 Integrations

Oct 12, 2023 8:00:00 AM By Stu Sjouwerman

Real-time security coaching helps improve your organization’s security culture by enabling real-time coaching of your users in response to risky security behaviors.

Smishing Triad Threat Actor Sets Its Sights on the UAE

Oct 10, 2023 4:05:50 PM By Stu Sjouwerman

Resecurity warns that the Smishing Triad threat actor has “vastly expanded its attack footprint” in the United Arab Emirates (UAE).

Stay a Step Ahead of your #1 Downtime Threat - Business Email Compromise

Oct 9, 2023 5:00:00 AM By Stu Sjouwerman

A new report from Secureworks has found that business email compromise (BEC) remains “one of the most financially damaging online crimes overall for orgs” in 2023. The security firm’s ...

Generative AI and the Automation of Social Engineering Increasingly Used By Threat Actors

Oct 3, 2023 10:43:44 AM By Stu Sjouwerman

Threat actors continue to use generative AI tools to craft convincing social engineering attacks, according to Glory Kaburu at Cryptopolitan.

It’s Official – Generative AI Has Made Phishing Emails Foolproof

Sep 28, 2023 4:20:04 PM By Stu Sjouwerman

The most basic use of tools like ChatGPT to script out professional-looking emails has all but eliminated improperly written content as an indicator of a potential phishing scam.

Threat Group UNC3944 Continues to See Success Using Text-Based Social Engineering

Sep 28, 2023 4:19:51 PM By Stu Sjouwerman

A new update on UNC3944 group's activities shows how they are evolving their focus squarely on SMiShing credential harvesting attacks that result in data theft/extortion attacks.

Pharma Industry Seeing Reduction in Data Breach Costs, But Still Have Much to Do

Sep 28, 2023 4:19:36 PM By Stu Sjouwerman

Insights from IBM’s Cost of a Data Breach Report on the Pharmaceutical Industry shows that while the overall cost has improved, there are clear areas of risk that need to be addressed.

[Cybersecurity Awareness Month] Frankenphisher – The Monster of Social Engineering Artificial Intelligence

Sep 28, 2023 9:17:54 AM By Martin Kraemer

Imagine an artificial intelligence (AI) system developed by a mad scientist to leverage the full capabilities of Large-Language-Models (LLM).

Why BJ Fogg and Daniel Kahneman Are Big Security Pro Must-Knows

Sep 27, 2023 8:47:40 AM By Stu Sjouwerman

You're no stranger to the complexities of safeguarding your organization's digital assets. But have you considered the human element in your security equation? Behavioral economics, ...

[NEW RELEASE]: Unleash the Power of Cybersecurity Education with KnowBe4’s 'Hack-A-Cat' on Roblox

Sep 25, 2023 8:30:00 AM By Stu Sjouwerman

What do cheese, fish and cybersecurity training have in common? Each of these comes together to help keep kids informed about cyber threats and cybersecurity best practices with KnowBe4’s ...

[YIKES] AI Now Enables Subliminal Image "Inception"

Sep 23, 2023 8:45:37 AM By Stu Sjouwerman

Seen Christopher Nolan's movie Inception? If you haven't, it's about a thief who is given the task of planting an idea into the mind of a CEO. The technology of implanting ideas is ...

Chinese Spies Infected Dozens of Networks With Thumb Drive Malware

Sep 21, 2023 3:46:21 PM By Stu Sjouwerman

WIRED just published an article that made me both disappointed and surprised at the same time. Security researchers found USB-based Sogu espionage malware spreading within African ...

China's Cyber Offensive: FBI Director Reveals Unmatched Scale of Hacking Operations

Sep 19, 2023 2:40:38 PM By Stu Sjouwerman

WASHINGTON – In a startling revelation, FBI Director Chris Wray disclosed at a recent conference that China's cyber espionage capabilities are so extensive, they bigger than the efforts ...

Security Awareness Training Blog

Social Engineering Blog

View Topics

53% of Organizations Experienced Cyber Attacks

Should You Use Controversial Simulated Phishing Test Emails?

New Research: Phishing Remains the Most Popular Technique for Bad Actors

Beware of Bogus Roborock Retailers: The Perils of Misleading URLs in E-Commerce

Harvested Credentials Are Put Up for Sale Monthly on the Dark Web at a Rate of 10,000 a Month

New Cyber Attack Techniques Will Not Replace Old-School Social Engineering

Business Email Compromise Attempts Skyrocket in the Last Year

[INFOGRAPHIC] KnowBe4’s SecurityCoach: Top 10 Integrations

Smishing Triad Threat Actor Sets Its Sights on the UAE

Stay a Step Ahead of your #1 Downtime Threat - Business Email Compromise

Generative AI and the Automation of Social Engineering Increasingly Used By Threat Actors

It’s Official – Generative AI Has Made Phishing Emails Foolproof

Threat Group UNC3944 Continues to See Success Using Text-Based Social Engineering

Pharma Industry Seeing Reduction in Data Breach Costs, But Still Have Much to Do

[Cybersecurity Awareness Month] Frankenphisher – The Monster of Social Engineering Artificial Intelligence

Why BJ Fogg and Daniel Kahneman Are Big Security Pro Must-Knows

[NEW RELEASE]: Unleash the Power of Cybersecurity Education with KnowBe4’s 'Hack-A-Cat' on Roblox

[YIKES] AI Now Enables Subliminal Image "Inception"

Chinese Spies Infected Dozens of Networks With Thumb Drive Malware

China's Cyber Offensive: FBI Director Reveals Unmatched Scale of Hacking Operations

Search Our Blog

Subscribe To Our Blog

Posts By Topic

Get the latest about social engineering

Subscribe to CyberheistNews

Get the latest about social engineering

Subscribe to CyberheistNews

Products & Services

About Us

Free Tools

Contact Us

Contact Support

Search