Spike in Business Email Compromise

Aug 30, 2018 5:06:36 PM By Stu Sjouwerman

Business email compromise attacks (BEC) have spiked by 80% over the past quarter, according to a report by Mimecast. The security provider revealed that over the past three months it had ...

Russian Indictment: They Used Criminal Tradecraft like Spearphishing To Hack The Democratic Party

Jul 15, 2018 2:42:39 PM By Stu Sjouwerman

The email arrived in Hillary Clinton’s campaign chairman John Podesta’s inbox around March 19, 2016, during the height of the presidential primaries, spoofed to look like a standard ...

State Department warns staff of surge in spear phishing attempts

Apr 13, 2018 10:05:33 AM By Stu Sjouwerman

Eric Geller at Politico reported: "The State Department on Thursday warned employees about a tidal wave of malicious messages attempting to trick staffers into opening a door for hackers. ...

An inventive YouTube moderator phishing scam

Jan 2, 2018 2:32:07 PM By Stu Sjouwerman

Full marks for inventiveness If you have a YouTube channel, and have had your fill of sifting through the vile torrent of abusive comments left on your video masterpieces, you can invite ...

If Willie Sutton were working today, he'd be stealing cryptocurrency, not wasting time on banks

Dec 2, 2017 11:36:50 AM By Stu Sjouwerman

Because that's where the money is. Criminals have been installing cryptocurrency miners on victim machines that turn them into sources of money. These operate without the users' ...

What is the difference between the Surface Web, The Deep Web and the Dark Web?

Nov 28, 2017 7:35:00 AM By Stu Sjouwerman

These three terms are often a source of confusion, especially in connection with cybercrime and where that comes from. If you think that search engines like Google (there are more!) know ...

Bad Rabbit Ransomware Attack Was Hiding A Spear Phishing Campaign

Nov 6, 2017 10:00:00 AM By Stu Sjouwerman

During the attacks in eastern Europe with the Bad Rabbit ransomware, a more insidious attack was taking place in Ukraine under its cover, Reuters reported. Serhiy Demedyuk, head of the ...

U.S. warns about phishing attacks on nuclear, energy, aviation, water, and manufacturing industries

Oct 23, 2017 7:26:23 AM By Stu Sjouwerman

(Reuters) — The U.S government issued a rare public warning that sophisticated hackers are targeting energy and industrial firms, the latest sign that cyber attacks present an increasing ...

Ransomware Spear Phishing Attack Used To Hide 60M Cyberheist

Oct 16, 2017 6:39:36 AM By Stu Sjouwerman

In a classic "divert their attention", the Taiwan Far East Bank was first attacked with spear phishing emails that pointed to malicious executables, which were clicked on by employees. ...

A New Spear Phishing Attack Uses Compromised Government Servers And DNS

Oct 15, 2017 9:02:54 AM By Stu Sjouwerman

Cisco's Talos malware researchers posted about a highly sophisticated, targeted spear phishing attack using malicious Word attachments, spoofed to look like it was from the U.S. ...

Third Quarter 2017 Top-Clicked Phishing Email Subjects [INFOGRAPHIC]

Oct 11, 2017 5:16:00 PM By Stu Sjouwerman

KnowBe4 customers run millions of phishing tests per year, and we report quarterly on the latest top-clicked phishing email subjects in 3 separate categories: subjects related to social ...

A Phishing Attack in the Clouds May Rain On Your Parade

Sep 1, 2017 5:02:27 PM By Stu Sjouwerman

According to MeriTalk, an editorial and events organization that focuses on Federal IT and government computing technologies, governments are moving some, or all of their IT to the Cloud, ...

New Defray Ransomware Demands $5,000 In Customized Spear Phishing Attacks

Aug 26, 2017 10:42:45 AM By Stu Sjouwerman

This newly discovered ransomware strain is targeting healthcare, education, manufacturing and tech sectors in the US and UK, using customized spear phishing emails. Defray is demanding a ...

Ukrainian Coder May Be First Potential Witness of DNC Phishing Attack

Aug 17, 2017 4:53:23 PM By Stu Sjouwerman

A lengthy and fascinating article in the New York Times by Andrew E. Kramer and Andrew Higgens on August 16, 2017 reported that a Ukranian coder known to his friends on the “dark web” as ...

This Is A First: Spear Phishing Attack Uses Compromised PowerPoint Slide Deck

Aug 15, 2017 9:36:32 AM By Stu Sjouwerman

Bad guys are exploiting the CVE-2017-0199 vulnerability to bypass endpoint security software and deliver the Remcos remote access Trojan via Microsoft PowerPoint decks. This particular ...

APT28 Uses Spear Phishing and NSA EternalBlue Exploit To Attack Hotel Wi-Fi

Aug 13, 2017 10:28:43 AM By Stu Sjouwerman

Russian APT28 (aka the Fancy Bear hacking group) is harnessing EternalBlue; NSA's Windows SMB exploit which made the WannaCry ransomware and Petya so effective — and are using it to ...

Top White House officials fall for prankster social engineering tricks

Aug 10, 2017 7:25:48 AM By Stu Sjouwerman

A UK-based email prankster used social engineering tactics to fool several top White House officials into responding to his messages, including the Trump administration’s cybersecurity ...

Second Quarter 2017 Top-Clicked Phishing Email Subjects [INFOGRAPHIC]

Jul 14, 2017 5:33:06 PM By Stu Sjouwerman

KnowBe4 customers run millions of phishing tests per year, and we report at least quarterly on the latest top-clicked phishing email subjects so our customers know what the highest-risk ...

Netflix, ABC Hacker Promises More Phishing: "Hollywood Is Under Attack"

Jun 7, 2017 7:29:36 AM By Stu Sjouwerman

The Hollywood Reporter (THR) talked directly to TheDarkOverlord hacking collective that claims to have studio films. They said: "We're in the business of earning vast amounts of internet ...

Top Secret NSA Doc Shows Russians Spear-Phishing Election Officials

Jun 6, 2017 8:00:18 AM By Stu Sjouwerman

The Intercept reported that the GRU (Russian Military Intelligence, the FSB's counterpart) executed a cyberattack on at least one U.S. voting software supplier and sent spear-phishing ...

KnowBe4

Security Awareness Training Blog

Spear Phishing Blog

View Topics

Spike in Business Email Compromise

Russian Indictment: They Used Criminal Tradecraft like Spearphishing To Hack The Democratic Party

State Department warns staff of surge in spear phishing attempts

An inventive YouTube moderator phishing scam

If Willie Sutton were working today, he'd be stealing cryptocurrency, not wasting time on banks

What is the difference between the Surface Web, The Deep Web and the Dark Web?

Bad Rabbit Ransomware Attack Was Hiding A Spear Phishing Campaign

U.S. warns about phishing attacks on nuclear, energy, aviation, water, and manufacturing industries

Ransomware Spear Phishing Attack Used To Hide 60M Cyberheist

A New Spear Phishing Attack Uses Compromised Government Servers And DNS

Third Quarter 2017 Top-Clicked Phishing Email Subjects [INFOGRAPHIC]

A Phishing Attack in the Clouds May Rain On Your Parade

New Defray Ransomware Demands $5,000 In Customized Spear Phishing Attacks

Ukrainian Coder May Be First Potential Witness of DNC Phishing Attack

This Is A First: Spear Phishing Attack Uses Compromised PowerPoint Slide Deck

APT28 Uses Spear Phishing and NSA EternalBlue Exploit To Attack Hotel Wi-Fi

Top White House officials fall for prankster social engineering tricks

Second Quarter 2017 Top-Clicked Phishing Email Subjects [INFOGRAPHIC]

Netflix, ABC Hacker Promises More Phishing: "Hollywood Is Under Attack"

Top Secret NSA Doc Shows Russians Spear-Phishing Election Officials

Search Our Blog

Subscribe To Our Blog

Posts By Topic

Get the latest about social engineering

Subscribe to CyberheistNews

Products & Services

Free Tools

About Us

Contact Us

Contact Support

Search

Search