WIRED: "The Decade Big-Money Email Scams Took Over"

Dec 26, 2019 2:46:27 PM By Stu Sjouwerman

Excellent article in WIRED, where they observed that In the last few years, the "Nigerian prince" scams have gotten a major upgrade. Here is an extract and a link to the full article:

Whaling: Like Phishing, but After Bigger Game

Dec 23, 2019 9:55:53 AM By Stu Sjouwerman

Organizations have to acknowledge their responsibility for ensuring their employees are able to recognize targeted phishing attacks, according to James McGachie, Legal Director of DLA ...

Top 9 IT Security Trends You Need to Watch Out For in 2020

Dec 20, 2019 10:12:12 AM By Stu Sjouwerman

Cyber security and security awareness training landscapes are constantly changing. IT Professionals, like you, always need to know what is coming next in order to build (and maintain) ...

Spear Phishing in the Royal Canadian Mint

Dec 16, 2019 9:22:18 AM By Stu Sjouwerman

The Royal Canadian Mint, which produces Canada’s coins, nearly sent an employee’s paycheck to an attacker following a spear phishing attack, CBC News reports. The attacker sent an email ...

Microsoft Sees Phishing on the Rise

Dec 11, 2019 7:00:00 AM By Javvad Malik

According to Microsoft security research, the percentage of inbound emails associated with phishing on average increased in the past year. For some, this may feel like obvious news, but ...

Europol Finds Majority of Attack Groups Rely on Spear Phishing as Primary Infection Vector

Dec 4, 2019 6:52:41 AM By Stu Sjouwerman

A new report from Europol’s European Cybercrime Center (EC3) breaks down how targeted phishing attacks are being done, and how to avoid becoming a victim.

Google Sent 12K Nation-State Phishing Warnings In Three Months

Nov 27, 2019 6:54:24 AM By Stu Sjouwerman

Google's Threat Analysis Group (TAG) delivered thousands of alerts of government-backed attempts to spearphish gmail users over just a three-month period earlier this year, they reported.

Click Confessions of a Security Expert

Nov 26, 2019 7:00:00 AM By Perry Carpenter

As a “human security” expert, I used to take a lot of pride in my well-honed security hygiene. Yeah… that all ended back in early 2017 when I joined KnowBe4. You see, up until that time, ...

Instagram Copyright Infringement is the Latest Phishing Scam Targeting Social Media

Nov 14, 2019 7:00:00 AM By Stu Sjouwerman

Focused on compromising social media credentials, scammers trick Instagram users into giving up credentials and other personally identifiable information with convincing phishing emails.

Third Party Phishing: The New Spear-Phishing Attacks That Traditional Defenses Just Don't Stop

Nov 12, 2019 8:00:00 AM By Stu Sjouwerman

Joe in accounting is pretty cyber-savvy. He doesn’t fall for basic phishing emails with masked URLs or phony password reset requests. But what happens when Joe gets an email from a ...

A New Attack Category is Born: You Now Need to Also Worry About Evasive Spear Phishing

Oct 16, 2019 6:43:17 AM By Stu Sjouwerman

Researchers have combed through 25 million emails and found a new method of attack that blends two previously seen attack types combined into a single attack.

I Can Phish Anyone

Oct 15, 2019 7:30:00 AM By Roger Grimes

I’m a bit surprised by some aggressive corporate anti-phishing policies which say they will fire anyone for one accidental phishing offense. Send me the names and email addresses of the ...

CRN: "Kevin Mandia -- Detect Spear Phishing, Lock Down CEO Email To Stay Safe"

Oct 15, 2019 7:10:57 AM By Stu Sjouwerman

Michael Novinson at CRN had a great article that really explains the issues we are dealing with. He started out with: "Spear phishing remains the most common way for adversaries to ...

Extremely Embarrassing 250,000-record Data Breach At Hookers.nl

Oct 14, 2019 10:50:12 AM By Stu Sjouwerman

The data of 250,000 users of Hookers.nl, a forum where experiences with prostitutes and escorts are exchanged, have been stolen and offered for sale on the internet. It concerns e-mail ...

U.S. Organizations Involved with Nuclear Deterrence are the Target of North Korean Phishing Attacks

Oct 14, 2019 7:00:00 AM By Stu Sjouwerman

Using some very sophisticated methods, the Kimsuky group is believed to be behind a spear phishing campaign aimed at stealing U.S. secrets.

Chinese State-Sponsored Phishing

Oct 9, 2019 7:15:59 AM By Stu Sjouwerman

A sophisticated threat group is going after a variety of industries using spearphishing and an arsenal of malware, according to Nalani Fraser and Fred Plan from FireEye. Fraser and Plan ...

The Massive Data Breach Of Australia's Largest University Began With A Spear Phishing Attack

Oct 9, 2019 7:00:00 AM By Stu Sjouwerman

North Koreans Spear Phish U.S. Victims With Social Engineering Hidden In Obscure Kodak FlashPix Format

Oct 1, 2019 7:23:44 PM By Stu Sjouwerman

A suspected North Korean threat actor has been sending spear phishing emails targeting US organizations, according to Prevailion researchers Danny Adamitis and Elizabeth Wharton. Adamitis ...

Massive phishing wave of account hijacks hits YouTube creators

Sep 23, 2019 7:47:49 AM By Stu Sjouwerman

Over the past few days, a massive wave of account hijacks has hit YouTube users, and especially creators in the auto-tuning and car review community, a ZDNet investigation discovered ...

Scam Of The Week: See Jeffrey Epstein Last Words On Video

Aug 12, 2019 8:47:51 AM By Stu Sjouwerman

This weekend, news broke that Jeffrey Epstein was found dead in his cell, apparently a suicide. This is a celebrity death that the bad guys are going to be exploiting in a variety of ways ...

Security Awareness Training Blog

Spear Phishing Blog

View Topics