Security Awareness Training Blog

Social Engineering Blog

Latest social engineering news, analysis, tactics the bad guys are using and what you can do to defend your organization.

View Topics

Reuters: 'State-backed hackers targeting coronavirus responders'

May 5, 2020 11:25:35 AM By Stu Sjouwerman
LONDON/WASHINGTON (Reuters) - Government-backed hackers are attacking healthcare and research institutions in an effort to steal valuable information about efforts to contain the new ...
Continue Reading

PerSwaysion: Convincing Executives to Act Against Their Own Interest

May 4, 2020 8:26:14 AM By Stu Sjouwerman
Researchers at Group-IB have discovered a sophisticated spear phishing campaign that’s targeted executives at more than 150 companies around the world since mid-2019. The researchers have ...
Continue Reading

GitHub is the Latest Target of Social Engineering Phishing Attacks

May 4, 2020 7:15:00 AM By Stu Sjouwerman
Using simple alert-style email notices, scammers look to steal credentials to gain access to development code, intellectual property, and project details.
Continue Reading

Half of all Breaches Start with Phishing and Social Engineering

May 4, 2020 7:03:00 AM By Stu Sjouwerman
New data shows successful attacks on internal networks, cloud environments, and POS systems all are very susceptible to this common attack vector.
Continue Reading

Is That COVID-19 Email Legitimate or a Phish?

May 1, 2020 8:39:23 AM By Roger Grimes
It’s no surprise that phishers and scammers are using the avalanche of new information and events involving the global coronavirus pandemic as a way to successfully phish more victims. ...
Continue Reading

Scammers Can Use Recent Transactions to Trick You

Apr 30, 2020 8:53:09 AM By Stu Sjouwerman
KrebsOnSecurity reports that scammers are using caller ID spoofing to impersonate their victims, and then socially engineering victims’ banks into divulging information about recent ...
Continue Reading

[Heads Up] Microsoft: Ransomware Gangs That Don't Threaten To Leak Your Data Steal It Anyway

Apr 29, 2020 3:34:37 PM By Stu Sjouwerman
That means you can from now on count a ransomware infection as a data breach with all the consequences that this brings. Moreover, the so-called "human-operated" ransomware gangs have ...
Continue Reading

[Click Alert] So, What Is The Phish-prone Percentage On Recent Coronavirus Phishing Tests?

Apr 28, 2020 4:37:47 PM By Stu Sjouwerman
I had some numbers run on the usage of our new, dedicated COVID-19 phishing templates to find out what the Phish-prone percentage was, since this is an unprecedented worldwide event.   ...
Continue Reading

Postcards from a Film Director. The challenges of creating a sitcom during COVID-19 Lockdown

Apr 23, 2020 10:23:22 AM By Stu Sjouwerman
By Jim Shields, Managing Director of U.K.-based Twist & Shout - a KnowBe4 company. When we first created Restricted Intelligence over seven years ago, we had no idea it would be so ...
Continue Reading

COVID-19 Emails go From Zero to Half a Million a Day in Just Three Months

Apr 22, 2020 9:44:08 AM By Stu Sjouwerman
According to new data from security researchers at Forcepoint, the interest in coronavirus-themed emails and websites by cybercriminals is cause for concern.
Continue Reading

New COVID-19 Malware Variants Render Your Endpoints Useless

Apr 20, 2020 8:37:09 AM By Stu Sjouwerman
Forget cybercriminals out to steal your money and credentials. Security researchers are now finding more malware intent on rewriting master boot records and wiping file systems.
Continue Reading

Netflix Scams Target People Sheltering in Place

Apr 20, 2020 8:23:54 AM By Stu Sjouwerman
With people sheltering in place during the pandemic emergency, they’re both teleworking and finding their entertainment online. Google searches for Netflix jumped 142% since the advice to ...
Continue Reading

It’s Look-Alike Day: While Doppelganger Humans Can Be Funny, Domains Are Not

Apr 20, 2020 7:00:00 AM By Stu Sjouwerman
On April 20, we celebrate National Look-Alike Day. It’s the perfect time to see which people have similar features as you, instead of that completely normal person you bumped into at the ...
Continue Reading

Damage From Phishing Doubles For Dutch Banks

Apr 20, 2020 6:26:39 AM By Stu Sjouwerman
Dutch banks saw damage from phishing double last year compared to the previous year. This concerns both phishing for 2FA security codes and phishing for credit and debit card numbers, ...
Continue Reading

[Heads-Up] Hacking Attacks Double Against Users Who Now Suddenly Work From Home

Apr 17, 2020 8:52:03 AM By Stu Sjouwerman
Reuters just reported that hacking activity against corporations in the United States and other countries more than doubled by some measures last month as digital thieves took advantage ...
Continue Reading

Re-Opening the American Economy? Malicious Actors Have a Plan...

Apr 17, 2020 8:29:11 AM By Eric Howes
By Eric Howes,  KnowBe4 Principal Lab Researcher.  If you've been following the news over the past week or so then you know that a robust debate has opened at federal, state, and local ...
Continue Reading

Phishing Trend: Quality, Not Quantity?

Apr 16, 2020 8:27:00 AM By Stu Sjouwerman
A new report from CyberCube found that sophisticated cybercriminals are increasingly shifting to launching business email compromise (BEC) attacks against executives, Insurance Business ...
Continue Reading

When the Implausible Seems, Well, More Plausible

Apr 15, 2020 8:34:39 AM By Stu Sjouwerman
Everyone is vulnerable to social engineering and no security tool can block every phishing email, according to Kevin Casey at The Enterprisers Project. Casey talked to a number of ...
Continue Reading

Phishing *Better* Than the Bad Guys During the Pandemic

Apr 14, 2020 4:19:23 PM By Stu Sjouwerman
By Katie Brennan, KnowBe4 Product Content Director.  The COVID-19 pandemic has had cyber criminals in a phishing frenzy for months. They’ve been sending countless attacks, with the ...
Continue Reading

Novel, but Retrospectively Obvious: a QR Code Generator Scam

Apr 13, 2020 8:28:11 AM By Stu Sjouwerman
A scammer has stolen more than $45,000 worth of bitcoin over the past month by tricking people with fake QR code generators, ZDNet reports. Harry Denley, Director of Security at MyCrypto, ...
Continue Reading
Subscribe

Search Our Blog


Ransomware Hostage Rescue Manual

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews