North Koreans Spear Phish U.S. Victims With Social Engineering Hidden In Obscure Kodak FlashPix Format

Oct 1, 2019 7:23:44 PM By Stu Sjouwerman

A suspected North Korean threat actor has been sending spear phishing emails targeting US organizations, according to Prevailion researchers Danny Adamitis and Elizabeth Wharton. Adamitis ...

Massive phishing wave of account hijacks hits YouTube creators

Sep 23, 2019 7:47:49 AM By Stu Sjouwerman

Over the past few days, a massive wave of account hijacks has hit YouTube users, and especially creators in the auto-tuning and car review community, a ZDNet investigation discovered ...

Scam Of The Week: See Jeffrey Epstein Last Words On Video

Aug 12, 2019 8:47:51 AM By Stu Sjouwerman

This weekend, news broke that Jeffrey Epstein was found dead in his cell, apparently a suicide. This is a celebrity death that the bad guys are going to be exploiting in a variety of ways ...

New UK Study: "3 out of 4 phishing scams get to your inbox untouched"

Aug 5, 2019 7:10:08 AM By Stu Sjouwerman

Chris Matyszczyk wrote: "Apple sends me so many invoices every week that I scarcely know what I've gone and bought. This appears to have also crossed the minds of researchers at the UK's ...

Chinese Hackers Infiltrate Global Telecom Networks With Spear Phishing

Jun 25, 2019 6:59:27 AM By Stu Sjouwerman

The WSJ revealed a brazen hack by Chinese state-sponsored bad actors who totally owned more than 10 global telecom networks, and had full admin access to their networks. They were able to ...

FBI Alert: Last Week Conflict With Iran Can Cause Spear Phishing Retaliation

Jun 22, 2019 10:34:21 AM By Stu Sjouwerman

This blog post has been superseded by a more recent one. You can find this new post here.

“Hack for Hire” Groups Offer Single Account Break-In Services For Just $750

May 20, 2019 9:32:47 AM By Stu Sjouwerman

Along with everything else malicious that’s available “as-a-Service”, the latest addition takes the burden of trying to initially hack an organization off of the plate of would-be ...

Account Takeover Attacks Increase as Cybercriminals Fine-Tune Their Brand Impersonation, Social Engineering, and Phishing Skills

May 17, 2019 6:35:31 AM By Stu Sjouwerman

The latest Spear Phishing Report from Barracuda highlights how cybercriminals are systematically improving their game… and are becoming more successful for it. The capturing of user ...

Florida Spearphishing: Meddle Globally, Phish Locally

Apr 22, 2019 6:58:17 AM By Stu Sjouwerman

Russian intelligence services sent spearphishing emails to more than 120 email accounts used by Florida election officials in November 2016, according to Special Counsel Robert Mueller’s ...

FINRA Warns of New Phishing Attack Targeting Brokerage Firms

Mar 4, 2019 3:56:55 PM By Stu Sjouwerman

The latest warning from Financial Industry Regulatory Authority (FINRA) puts firms on notice of yet another tailored attack seeking to gain access to firms networks.

Various Types Of Phishing Attacks Defined

Feb 21, 2019 3:31:36 PM By Stu Sjouwerman

The definition of phishing is a cybercrime in which potential victims are contacted via email, telephone or text message by someone posing as a legitimate institution to lure individuals ...

Details of North Korea Attacks Highlight Email’s Role in Attacks

Sep 12, 2018 2:29:00 PM By Stu Sjouwerman

When you think of cyber-espionage, you might be surprised it’s far less “Mission: Impossible” and a lot more basic phishing tactics.

Spike in Business Email Compromise

Aug 30, 2018 5:06:36 PM By Stu Sjouwerman

Business email compromise attacks (BEC) have spiked by 80% over the past quarter, according to a report by Mimecast. The security provider revealed that over the past three months it had ...

Russian Indictment: They Used Criminal Tradecraft like Spearphishing To Hack The Democratic Party

Jul 15, 2018 2:42:39 PM By Stu Sjouwerman

The email arrived in Hillary Clinton’s campaign chairman John Podesta’s inbox around March 19, 2016, during the height of the presidential primaries, spoofed to look like a standard ...

State Department warns staff of surge in spear phishing attempts

Apr 13, 2018 10:05:33 AM By Stu Sjouwerman

Eric Geller at Politico reported: "The State Department on Thursday warned employees about a tidal wave of malicious messages attempting to trick staffers into opening a door for hackers. ...

SAM.Gov Hackers Were Handed Spear Phishing, Spoofing & Credential Theft On A Gold Platter

Mar 31, 2018 6:49:45 PM By Stu Sjouwerman

Cybercrooks who stole federal payments by hacking contractor accounts on a GSA website used sophisticated spear phishing techniques to steal login credentials and then diverted payments ...

An inventive YouTube moderator phishing scam

Jan 2, 2018 2:32:07 PM By Stu Sjouwerman

Full marks for inventiveness If you have a YouTube channel, and have had your fill of sifting through the vile torrent of abusive comments left on your video masterpieces, you can invite ...

If Willie Sutton were working today, he'd be stealing cryptocurrency, not wasting time on banks

Dec 2, 2017 11:36:50 AM By Stu Sjouwerman

Because that's where the money is. Criminals have been installing cryptocurrency miners on victim machines that turn them into sources of money. These operate without the users' ...

Surface Web vs. Deep Web vs. Dark Web: Differences Explained

Nov 28, 2017 7:35:00 AM By Stu Sjouwerman

These three terms are often a source of confusion, especially in connection with cybercrime and where that comes from. If you think that search engines like Google (there are more!) know ...

Bad Rabbit Ransomware Attack Was Hiding A Spear Phishing Campaign

Nov 6, 2017 10:00:00 AM By Stu Sjouwerman

During the attacks in eastern Europe with the Bad Rabbit ransomware, a more insidious attack was taking place in Ukraine under its cover, Reuters reported. Serhiy Demedyuk, head of the ...

Security Awareness Training Blog

Spear Phishing Blog

View Topics