The Unsettling Leap of AI in Video Creation: A Glimpse Into Sora

Feb 20, 2024 1:03:06 PM By Javvad Malik

In the rapidly evolving landscape of artificial intelligence (AI), the launch of Sora by OpenAI marks an unnerving milestone in video synthesis.

State-Sponsored Threat Actors Targeting European Union Entities With Spear Phishing Campaigns

Feb 19, 2024 4:01:06 PM By Stu Sjouwerman

Numerous state-sponsored threat actors frequently launched spear phishing attacks against European Union entities last year, according to a new report from the EU’s Emergency Response ...

Only 7% of Organizations Can Restore Data Processes within 1-3 Days After a Ransomware Attack

Feb 19, 2024 4:01:02 PM By Stu Sjouwerman

New data on how organizations are able to respond to ransomware attacks also shows that paying a ransom is highly likely, despite having a policy of “Do Not Pay.”

Augmented Security: The Impact of AR on Cybersecurity

Feb 16, 2024 3:34:17 PM By Javvad Malik

Recently, Apple launched its Apple Vision Pro to much fanfare and has pushed the discussion of Augmented Reality (AR) beyond the realms of gaming and entertainment. From healthcare ...

Iran-Aligned Threat Actor "CharmingCypress" Launches Spear Phishing Attacks

Feb 15, 2024 3:13:42 PM By Stu Sjouwerman

Researchers at Volexity warn that the suspected Iranian threat actor CharmingCypress (also known as “Charming Kitten” or “APT42”) has been launching spear phishing attacks against Middle ...

AI in Cyberspace: A Double-Edged Sword

Feb 14, 2024 8:57:40 AM By Javvad Malik

The UK's National Cyber Security Centre (NCSC), recently shared its findings on how AI might reshape the cyber landscape. In two separate posts, the NCSC is warning that the global ...

Hard Lessons From Romance Scams

Feb 12, 2024 10:32:16 AM By Roger Grimes

Seeing as this week is Valentine’s Day, I should have written something about rom coms, true love, and trusting your heart more. But this is not one of those posts. This post is about ...

Browser-Based Phishing Attacks Increase 198%, With Evasive Attacks Increasing 206%

Feb 9, 2024 12:03:26 PM By Stu Sjouwerman

A new report shows massive increases in browser attacks in the second half of 2023, with over 31,000 threats specifically designed to bypass security solution detection.

Unprecedented Rise of Malvertising as a Precursor to Ransomware

Feb 8, 2024 8:00:00 AM By Stu Sjouwerman

Cybercriminals increasingly used malvertising to gain initial access to victims’ networks in 2023, according to Malwarebytes’s latest State of Malware report.

[On-Demand Webinar] How to Fight Long-Game Social Engineering Attacks

Feb 7, 2024 8:00:00 AM By Stu Sjouwerman

Sophisticated cybercriminals are playing the long game. Unlike the typical hit-and-run cyber attacks, they build trust before laying their traps. They create a story so believable and ...

Generative AI Used to Launch Phishing Attacks

Feb 6, 2024 1:38:52 PM By Stu Sjouwerman

Criminal threat actors are increasingly utilizing generative AI tools like ChatGPT to launch social engineering attacks, according to researchers at Check Point.

New Phishing-As-A-Service Kit with Ability to Bypass MFA Targets Microsoft 365 Accounts

Feb 5, 2024 4:57:58 PM By Stu Sjouwerman

A phishing-as-a-service platform called “Greatness” is facilitating phishing attacks against Microsoft 365 accounts, according to researchers at Sucuri.

Social Engineering Masterstroke: How Deepfake CFO Duped a Firm out of $25 Million

Feb 5, 2024 8:47:01 AM By Stu Sjouwerman

Check out this one line for a moment...“duped into attending a video call with what he thought were several other members of staff, but all of whom were in fact deepfake recreations.”

Ransomware Payments On The Decline As Cyber Attackers Focus on The Smallest, And Largest, Organizations

Jan 31, 2024 1:52:23 PM By Stu Sjouwerman

New data for Q4 of 2023 reveals a sizable shift in the cyber threat landscape, with serious implications regarding ransomware and social engineering attacks targeting both the largest and ...

Houston, We Have a 2024 China Problem

Jan 26, 2024 7:02:27 AM By Stu Sjouwerman

Russia is not the only global problem that democracy has to deal with. The Chinese regime ran large influence campaigns, attempting mass social engineering in the U.S. 2022 midterm ...

New Evasive Phishing Technique “Legacy URL Reputation Evasion" (LURE)

Jan 25, 2024 8:59:50 AM By Stu Sjouwerman

Researchers at Menlo Security observed a 198% increase in browser-based phishing attacks over the past six months.

Social Engineering Attacks Rising in the Trucking Industry

Jan 25, 2024 8:59:28 AM By Stu Sjouwerman

Spear phishing and voice phishing (vishing) are on the rise in the trucking industry, according to a new report from the National Motor Freight Traffic Association (NMFTA).

AI Does Not Scare Me, But It Will Make The Problem Of Social Engineering Much Worse

Jan 22, 2024 2:05:54 PM By Roger Grimes

I am not scared of AI. What I mean is that I do not think AI is going to kill humanity Terminator-style. I think AI is going to be responsible for more cybercrime and more realistic ...

LinkedIn is Being Used for Dating – It’s a Recipe for Disaster

Jan 16, 2024 10:20:50 AM By Stu Sjouwerman

A new article explains how business professionals are beginning to be not-so-professional and seeking to make personal connections. It’s only a matter of time before cybercriminals jump ...

Beware of "Get to Know Me" Surveys

Jan 11, 2024 1:46:46 PM By Roger Grimes

Trained security awareness professionals are aware that whatever someone says about themselves and personal experiences can be used against them in a social engineering scam. It is always ...

Security Awareness Training Blog

Social Engineering Blog

View Topics