Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Social Engineering Blog

Latest social engineering news, analysis, tactics the bad guys are using and what you can do to defend your organization.

View Topics

Navigating the Masquerade: Recognizing and Combating Impersonation Attacks

May 1, 2024 1:57:31 PM By Stu Sjouwerman
With all great power, there comes an equal potential for misuse. Among the sophisticated arsenal of threat actors, impersonation attacks have surged to the forefront, which questions our ...
Continue Reading

Phishing Failures: How Not to Phish Your Users

Apr 30, 2024 1:42:21 PM By Javvad Malik
This blog was co-written by Javvad Malik and Erich Kron. Let’s dive into the cautionary world of phishing simulations gone wrong. You know, those attempts to train users not to fall for ...
Continue Reading

Targeted Smishing Attacks by Threat Group “The Com” On The Rise

Apr 29, 2024 2:03:09 PM By Stu Sjouwerman
Cyber activity by the group "The Com," which leverages (SIM) swapping, cryptocurrency theft, swatting, and corporate intrusions, is increasing.
Continue Reading

The Art of Huh?

Apr 29, 2024 2:03:05 PM By Roger Grimes
One of the best things you can teach yourself, your family, and your organization is how to recognize the common signs of phishing and how to mitigate and appropriately report it.
Continue Reading

US Justice Department Accuses Iranian Nationals of Launching Spear Phishing Attacks

Apr 26, 2024 8:20:23 AM By Stu Sjouwerman
The US Department of Justice has indicted four Iranian nationals for allegedly launching spear phishing attacks against the US government and defense contractors. In one instance, the ...
Continue Reading

Kudos! CEO Reveals He Got Phished

Apr 22, 2024 9:31:26 AM By Stu Sjouwerman
The other day I was participating in a company’s employee meeting when the CEO revealed he had been “caught” that morning by a real phishing attack email.
Continue Reading

LastPass Warns of Deepfake Phishing Attempt

Apr 18, 2024 8:39:22 AM By Stu Sjouwerman
Password Manager software developer LastPass warned that one of its employees was targeted by a social engineering attack that used an audio deepfake which impersonated the company’s CEO. ...
Continue Reading

[WARNING] FBI Issues Alert on Major Phishing Campaign That Impersonates US Toll Services

Apr 15, 2024 3:57:18 PM By Stu Sjouwerman
The FBI has issued an alert warning of a widespread SMS phishing (smishing) campaign targeting people in several US states with phony notices of unpaid tolls, BleepingComputer reports.
Continue Reading

I don't have to say it, do I?

Apr 13, 2024 7:07:09 PM By Stu Sjouwerman
So today, news broke that Iran has sent dozens, if not more than 100 drones to Israel in a direct attack. Discussion on Twitter also claim that ballistic missiles will be sent.
Continue Reading

State-Sponsored Disinformation Campaigns Targeting Africa Driving Instability And Violence

Apr 12, 2024 1:46:34 PM By Stu Sjouwerman
A shocking report shows how email-based disinformation campaigns can have material real-world impacts to the citizens in the targeted countries.
Continue Reading

U.S. Department of Health Alert: Hackers are Targeting IT Help Desks at Healthcare Organizations

Apr 12, 2024 1:46:29 PM By Stu Sjouwerman
A new sector alert published by the U.S. Department of Health and Human Services outlines new attacks in which social engineering is used to obtain credentials for online fraud.
Continue Reading

UK Councils Under Cyber Attack: The Urgent Need for a Culture of Cybersecurity and Resilience

Apr 12, 2024 8:48:09 AM By Javvad Malik
The very fabric that stitches our society together — our councils and local governing bodies — is under a silent siege from cyber attacks. The recent ransomware assault on Leicester ...
Continue Reading

Critical Improvements To The Seven Most Common Pieces of Cybersecurity Advice

Apr 9, 2024 2:05:26 PM By Roger Grimes
I have been in the cybersecurity industry for over 35 years and I am the author of 14 books and over 1,400 articles on cybersecurity.
Continue Reading

Large-Scale StrelaStealer Campaign Impacts Over 100 Organizations Within the E.U. and U.S.

Apr 8, 2024 7:55:54 AM By Stu Sjouwerman
A new campaign of StrelaStealer attacks identified by security analysts at Unit42 has been spotted targeting E.U. and U.S. organizations. This somewhat new infostealer has evolved to be ...
Continue Reading

The Cyber Achilles' Heel: Why World Leaders and High-Profile Individuals Must Prioritise Cybersecurity

Apr 8, 2024 7:55:51 AM By Javvad Malik
Social media has become an indispensable tool for communication, outreach, and engagement. From world leaders to high-profile individuals, these platforms offer an unparalleled ...
Continue Reading

IT Leaders Can’t Stop AI and Deepfake Scams as They Top the List of Most Frequent Attacks

Apr 4, 2024 9:09:49 AM By Stu Sjouwerman
New data shows that the attacks IT feels most inadequate to stop are the ones they’re experiencing the most.
Continue Reading

Must-Read New Study on Russian Propaganda Techniques

Apr 1, 2024 10:30:14 AM By Stu Sjouwerman
The Kyiv Post just published: "A knockout study by the Institute for the Study of War (“ISW”), just out March 27, is a must read for all the leadership of the West, and particularly, the ...
Continue Reading

The Number of New Pieces of Malware Per Minute Has Quadrupled in Just One Year

Mar 27, 2024 1:03:56 PM By Stu Sjouwerman
The threat of novel malware is growing exponentially, making it more difficult for security solutions to identify attachments and links to files as being malware.
Continue Reading

There Is Only So Much Lipstick You Can Put on a Cybercriminal Troll

Mar 25, 2024 1:50:11 PM By Martin Kraemer
The one thing I love about our annual conference in Orlando, KB4-CON, is its thought-provoking nature. Year after year, the events team manages to keep a fine balance between product ...
Continue Reading

Social Engineering The #1 Root Cause Behind Most Cyber Crimes In FBI Report

Mar 21, 2024 11:37:14 AM By Roger Grimes
The following paragraphs were cited directly from my recent article highlighting social engineering. "Social engineering and phishing are involved in 70% to 90% of all successful ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews