LastPass Warns of Deepfake Phishing Attempt

Apr 18, 2024 8:39:22 AM By Stu Sjouwerman

Password Manager software developer LastPass warned that one of its employees was targeted by a social engineering attack that used an audio deepfake which impersonated the company’s CEO. ...

[WARNING] FBI Issues Alert on Major Phishing Campaign That Impersonates US Toll Services

Apr 15, 2024 3:57:18 PM By Stu Sjouwerman

The FBI has issued an alert warning of a widespread SMS phishing (smishing) campaign targeting people in several US states with phony notices of unpaid tolls, BleepingComputer reports.

I don't have to say it, do I?

Apr 13, 2024 7:07:09 PM By Stu Sjouwerman

So today, news broke that Iran has sent dozens, if not more than 100 drones to Israel in a direct attack. Discussion on Twitter also claim that ballistic missiles will be sent.

State-Sponsored Disinformation Campaigns Targeting Africa Driving Instability And Violence

Apr 12, 2024 1:46:34 PM By Stu Sjouwerman

A shocking report shows how email-based disinformation campaigns can have material real-world impacts to the citizens in the targeted countries.

U.S. Department of Health Alert: Hackers are Targeting IT Help Desks at Healthcare Organizations

Apr 12, 2024 1:46:29 PM By Stu Sjouwerman

A new sector alert published by the U.S. Department of Health and Human Services outlines new attacks in which social engineering is used to obtain credentials for online fraud.

UK Councils Under Cyber Attack: The Urgent Need for a Culture of Cybersecurity and Resilience

Apr 12, 2024 8:48:09 AM By Javvad Malik

The very fabric that stitches our society together — our councils and local governing bodies — is under a silent siege from cyber attacks. The recent ransomware assault on Leicester ...

Critical Improvements To The Seven Most Common Pieces of Cybersecurity Advice

Apr 9, 2024 2:05:26 PM By Roger Grimes

I have been in the cybersecurity industry for over 35 years and I am the author of 14 books and over 1,400 articles on cybersecurity.

Large-Scale StrelaStealer Campaign Impacts Over 100 Organizations Within the E.U. and U.S.

Apr 8, 2024 7:55:54 AM By Stu Sjouwerman

A new campaign of StrelaStealer attacks identified by security analysts at Unit42 has been spotted targeting E.U. and U.S. organizations. This somewhat new infostealer has evolved to be ...

The Cyber Achilles' Heel: Why World Leaders and High-Profile Individuals Must Prioritise Cybersecurity

Apr 8, 2024 7:55:51 AM By Javvad Malik

Social media has become an indispensable tool for communication, outreach, and engagement. From world leaders to high-profile individuals, these platforms offer an unparalleled ...

IT Leaders Can’t Stop AI and Deepfake Scams as They Top the List of Most Frequent Attacks

Apr 4, 2024 9:09:49 AM By Stu Sjouwerman

New data shows that the attacks IT feels most inadequate to stop are the ones they’re experiencing the most.

Must-Read New Study on Russian Propaganda Techniques

Apr 1, 2024 10:30:14 AM By Stu Sjouwerman

The Kyiv Post just published: "A knockout study by the Institute for the Study of War (“ISW”), just out March 27, is a must read for all the leadership of the West, and particularly, the ...

The Number of New Pieces of Malware Per Minute Has Quadrupled in Just One Year

Mar 27, 2024 1:03:56 PM By Stu Sjouwerman

The threat of novel malware is growing exponentially, making it more difficult for security solutions to identify attachments and links to files as being malware.

There Is Only So Much Lipstick You Can Put on a Cybercriminal Troll

Mar 25, 2024 1:50:11 PM By Martin Kraemer

The one thing I love about our annual conference in Orlando, KB4-CON, is its thought-provoking nature. Year after year, the events team manages to keep a fine balance between product ...

Social Engineering The #1 Root Cause Behind Most Cyber Crimes In FBI Report

Mar 21, 2024 11:37:14 AM By Roger Grimes

The following paragraphs were cited directly from my recent article highlighting social engineering. "Social engineering and phishing are involved in 70% to 90% of all successful ...

[Heads Up] Reinforce Your Defenses Against Rising Supply-Chain Cyber Threats

Mar 20, 2024 10:57:05 AM By Stu Sjouwerman

James Rundle at The Wall Street Journal today reported that in response to escalating supply-chain cyberattacks, companies are intensifying their scrutiny over suppliers to protect ...

State-Sponsored Russian Phishing Campaigns Target a Variety of Industries

Mar 19, 2024 1:18:02 PM By Stu Sjouwerman

Researchers at IBM X-Force are monitoring several ongoing phishing campaigns by the Russian state-sponsored threat actor ITG05 (also known as “APT28” or “Fancy Bear”). APT28 has been tied ...

CISA: Healthcare Organizations Should Be Wary of Increased Ransomware Attacks by ALPHV Blackcat

Mar 18, 2024 10:14:00 AM By Stu Sjouwerman

A joint cybersecurity advisory published last week discusses ransomware attack impacts on healthcare, along with ALPHV’s attack techniques, indicators of compromise (IoCs) and proper ...

If Social Engineering Accounts for up to 90% of Attacks, Why Is It Ignored?

Mar 15, 2024 10:32:57 AM By Roger Grimes

Social engineering and phishing are involved in 70% to 90% of all successful cybersecurity attacks. No other initial root hacking cause comes close.

Organizations Are Vulnerable to Image-based and QR Code Phishing

Mar 14, 2024 10:23:31 AM By Stu Sjouwerman

A majority of organizations have a false sense of security regarding their resistance to phishing attacks, according to a new report from researchers at IRONSCALES and Osterman Research.

Despite Feeling Prepared for Image-Based Attacks, Most Organizations Have Been Compromised by Them

Mar 14, 2024 10:20:00 AM By Stu Sjouwerman

With QR-code phishing attacks on the rise, new data sheds light on just how unprepared organizations actually are in stopping and detecting these device-shifting attacks.

Security Awareness Training Blog

Social Engineering Blog

View Topics