Russian Super-Threat Group Fin7 Comes Back from the Dead

Jul 26, 2024 8:33:58 AM By Stu Sjouwerman

Declared “dead” by the U.S. Attorney’s Office in 2023, the Russian cyber crime group Fin7 is impersonating some of the top global brands.

Russian Spear Phishing Campaigns Target NATO Entities

Jul 10, 2024 10:00:52 AM By Stu Sjouwerman

Researchers at Mandiant (part of Google Cloud) warn that Russian government threat actors continue to target NATO member countries with spear phishing attacks. APT29 in particular has ...

Ransomware Attack on U.K. Health Service Laboratory Disrupts Major London Hospital Services

Jul 2, 2024 1:55:38 PM By Stu Sjouwerman

What likely started as a quick ransomware “smash and grab” has turned into a headline case resulting in responses from both U.K. and U.S. law enforcement.

Russian Threat Actor Launches Spear Phishing Attacks Against French Diplomats

Jun 27, 2024 1:46:32 PM By Stu Sjouwerman

France’s cybersecurity agency ANSSI has issued an alert outlining a Russian spear phishing campaign targeting French diplomats, the Record reports. The agency attributes the campaign to ...

Simulated Phishing Tests Matter

Jun 26, 2024 1:51:18 PM By Roger Grimes

If you had to choose between regular cybersecurity training and simulated phishing testing, the data shows you should choose simulated phishing tests.

Brazilian Entities Increasingly Targeted by Nation-State Phishing Attacks

Jun 18, 2024 1:58:40 PM By Stu Sjouwerman

Mandiant has published a report looking at cyber threats targeting Brazil, finding that more than 85% of government-backed phishing activity comes from threat actors based in China, North ...

No Politician Too Small: School Board Candidates Targeted By Phishing and BEC Scams

Jun 17, 2024 3:15:49 PM By Stu Sjouwerman

Cybercriminals are broadening their targets to include even local political candidates, as an escalating series of phishing attacks was recently directed at school board candidates in ...

[NEW RESEARCH]: KnowBe4’s 2024 Phishing by Industry Benchmarking Report Reveals that 34.3% of Untrained End Users Will Fail a Phishing Test

Jun 4, 2024 8:00:00 AM By Joanna Huisman

The prevalence of cyber crime continues to soar, victimizing individuals in both their work and private lives. Cybercriminals are indiscriminate, targeting around the clock and across the ...

Russia’s Military Intelligence Service Launches Spear Phishing Attacks

Jun 3, 2024 1:39:24 PM By Stu Sjouwerman

Researchers at Recorded Future warn that BlueDelta, a threat actor tied to Russia’s GRU, is launching spear phishing attacks against European defense and transportation entities.

China Threat Actor Targeting African and Caribbean Entities With Spear Phishing Attacks

May 28, 2024 2:27:04 PM By Stu Sjouwerman

The China-aligned threat actor “Sharp Dragon” is launching spear phishing attacks against government entities in African and Caribbean countries, according to researchers at Check Point.

Alert: Nova Scotians Hit by Surge of Sophisticated Spear Phishing Scams

May 14, 2024 8:37:34 AM By Stu Sjouwerman

The Royal Canadian Mounted Police (RCMP) in Nova Scotia is warning of spear phishing attacks that impersonate company managers. The scammers text company employees requesting a payment to ...

U.S. Government Warns of North Korean Spear-Phishing Campaigns

May 7, 2024 8:00:00 AM By Stu Sjouwerman

The North Korean state-sponsored threat actor Kimsuky is launching spear phishing attacks against individuals working at think tanks and academic institutions in the US, according to a ...

US Justice Department Accuses Iranian Nationals of Launching Spear Phishing Attacks

Apr 26, 2024 8:20:23 AM By Stu Sjouwerman

The US Department of Justice has indicted four Iranian nationals for allegedly launching spear phishing attacks against the US government and defense contractors. In one instance, the ...

Russian Threat Actor FIN7 Targeting the Automotive Industry with Spear Phishing Attacks

Apr 19, 2024 9:03:32 AM By Stu Sjouwerman

The cybercriminal threat actor FIN7 is launching spear phishing attacks against the automotive industry in the United States, according to researchers at BlackBerry.

Critical Improvements To The Seven Most Common Pieces of Cybersecurity Advice

Apr 9, 2024 2:05:26 PM By Roger Grimes

I have been in the cybersecurity industry for over 35 years and I am the author of 14 books and over 1,400 articles on cybersecurity.

Catfishing Campaign Targets Members of the UK Government

Apr 4, 2024 1:28:49 PM By Stu Sjouwerman

At least twelve men working in the UK parliament have recently been targeted by WhatsApp spear phishing messages, POLITICO reports. The targeted individuals include “a senior Labour MP, ...

New Report Shows Phishing Links and Malicious Attachments Are The Top Entry Points of Cyber Attacks

Apr 3, 2024 12:36:17 PM By Stu Sjouwerman

New TTP attack data covering 2023 sheds much needed light on the threat actor and user actions that are putting organizations at the most risk.

Narwhal Spider Threat Group Behind New Phishing Campaign Impersonating Reputable Law Firms

Mar 29, 2024 12:07:32 PM By Stu Sjouwerman

Using little more than a well-known business name and a invoice-related PDF, the “NaurLegal” phishing campaign aims at installing malware trojans.

If Social Engineering Accounts for up to 90% of Attacks, Why Is It Ignored?

Mar 15, 2024 10:32:57 AM By Roger Grimes

Social engineering and phishing are involved in 70% to 90% of all successful cybersecurity attacks. No other initial root hacking cause comes close.

Microsoft and OpenAI Team Up to Block Threat Actor Access to AI

Mar 5, 2024 9:46:52 AM By Stu Sjouwerman

Analysis of emerging threats in the age of AI provides insight into exactly how cybercriminals are leveraging AI to advance their efforts.

Security Awareness Training Blog

Spear Phishing Blog

View Topics