Gootloader Malware Uses Social Engineering to Target Law Firms (or their Clients)

Aug 14, 2023 10:56:30 AM By Stu Sjouwerman

Law firms are being targeted by a large number of social engineering attacks involving the Gootloader malware delivery tool, according to researchers at Trustwave.

[GUIDE] Scary SEO and Waterhole Attacks: What You Need to Know Now

Aug 11, 2023 8:22:22 AM By Roger Grimes

Most social engineering scams search out their potential victims, often sending emails to known email addresses, sending chat messages to them or calling known phone numbers. The ...

KnowBe4’s Interactive Phishing Analysis Center: Keep Your Finger On The Pulse

Aug 8, 2023 1:50:55 PM By Stu Sjouwerman

As a security awareness practitioner, keeping your pulse on industry - and geographical - benchmarking data and best practices is always a good way to measure your organization’s security ...

Most Organizations Using Weak Multifactor Authentication

Aug 8, 2023 10:10:03 AM By Stu Sjouwerman

Most organizations are still using weak forms of multi-factor authentication (MFA), a survey by Nok Nok has found. These forms of MFA can be bypassed if an employee falls for a social ...

GitHub Warns of Social Engineering Campaign Targeting Employees in the Technology Industry

Aug 7, 2023 10:09:34 AM By Stu Sjouwerman

A few weeks ago, GitHub posted on their blog a recent security alert that should have any organization in the tech industry worried.

Boarding Pass Selfies and Cybersecurity Don't Mix

Aug 4, 2023 9:14:42 AM By Stu Sjouwerman

There is no such thing as a vacation for cybercriminals. We recently released our top summer cybersecurity travel tips to help keep you safe. Earlier this year, we posted about ...

Advanced Phishing Campaign Exploits 3rd Parties

Aug 3, 2023 10:27:09 AM By Stu Sjouwerman

Researchers at BlueVoyant warn that attackers are increasingly adding an extra step to their phishing campaigns, impersonating third-parties to lend credibility to the scams.

How KnowBe4 Can Help You Fight Spear Phishing

Jul 27, 2023 8:00:00 AM By Roger Grimes

This blog was co-written by KnowBe4's Data-Driven Defense Evangelist Roger A. Grimes and Chief Learning Officer John Just. Social engineering is involved in 70% to 90% of successful ...

Beware of the Barbie Scam: What You Need to Know After the Recent Movie Release

Jul 26, 2023 8:44:37 AM By Stu Sjouwerman

Scammers are taking advantage of the popularity of the Barbie movie, according to researchers at McAfee.

Phony Browser Updates Deliver NetSupport Trojan Using Social Engineering Tactics

Jul 25, 2023 10:16:41 AM By Stu Sjouwerman

A new social engineering campaign tracked as “FakeSG” is distributing the NetSupport remote access Trojan (RAT) via phony browser updates, according to researchers at Malwarebytes. The ...

[INFOGRAPHIC] KnowBe4’s Content Library by the Numbers

Jul 19, 2023 9:27:35 AM By Stu Sjouwerman

KnowBe4 offers the world’s largest library of always-fresh security awareness and compliance training content that includes assessments, interactive training modules, videos, games, ...

[HEADS UP] See WormGPT, the new "ethics-free" Cyber Crime attack tool

Jul 17, 2023 1:26:05 PM By Stu Sjouwerman

A new generative AI model called “WormGPT” is being offered on cybercrime forums, according to researchers at SlashNext. While other AI tools, such as ChatGPT, have safeguards in place ...

Tailgating Through Physical Security Using Social Engineering Tactics

Jul 13, 2023 9:00:47 AM By Stu Sjouwerman

Researchers at Check Point outline various forms of tailgating attacks. These attacks can allow threat actors to bypass physical security measures via social engineering.

Launch Of New Meta Thread App Spawns Hundreds Of Spoof Domains

Jul 12, 2023 8:56:35 AM By Stu Sjouwerman

Researchers at Veriti have observed hundreds of spoofed domains following Meta’s launch of its Threads social media platform.

Australia’s National Anti-Scam Centre: Prevention Is Better Than the Cure

Jul 10, 2023 10:56:48 AM By Jacqueline Jayne

Australia officially launched their National Anti-Scam Centre this week. With more than AUD $3.1 billion lost each year, Australians need support.

Job Recruitment Scams Rising Due to Social Engineering

Jul 10, 2023 10:52:29 AM By Stu Sjouwerman

Job scams are a rising form of socially engineered cybercrime. And while it’s easy to imagine the trouble they cause individuals who innocently fall for them (lost opportunities, identity ...

Amazon Prime Day Alert: Beware of Fake Logins, Gift Card Scams

Jul 7, 2023 11:39:18 AM By Stu Sjouwerman

A new threat alert from ConsumerAffairs and TrendMicro proves more than just shoppers will take advantage of Amazon’s upcoming Prime Day.

U.K. Twitter Impersonation Hacker Sentenced to Prison in the U.S.

Jul 7, 2023 11:00:00 AM By Stu Sjouwerman

The British national responsible for hacking into and impersonating high-profile individuals as part of a crypto theft scheme has been sentenced to five years in prison.

Microsoft Teams Cyber Attack Exploit Tool Relies on Social Engineering to Deliver Malware

Jul 7, 2023 8:00:00 AM By Stu Sjouwerman

If your organization uses Microsoft Teams, then you definitely want to hear about a new way bad actors are exploiting this newly discovered cyber attack tool.

New Report Shows Social Engineering and Business Email Compromise Attacks Have Drastically Increased in 2023

Jul 6, 2023 8:45:53 AM By Stu Sjouwerman

Email-based social engineering attacks have risen by 464% this year compared to the first half of 2022, according to a report by Acronis. Business email compromise (BEC) attacks have also ...

Security Awareness Training Blog

Social Engineering Blog

View Topics