Two New KnowBe4 Phishing Categories: Scam Of The Week and Reported Phishes of the Week



Halloween0068.jpgKnowBe4's Templates Mistress Katie has added two new categories to the System Templates:
 
1) SCAM OF THE WEEK - this will act as an optional weekly newsletter for you to send to your users. Similar to Security Hints and Tips but updated weekly, it will contain Stu's "blurb to send to your employees, friends and family" that he includes as part of his blog or CyberheistNews (mostly) each week.  See FAQ: How to set up a "Scam of the Week" email newsletter for your users: https://knowbe4.zendesk.com/hc/en-us/articles/226314167
 
2) REPORTED PHISHES OF THE WEEK -  This category will contain copies of the Top 10 actual Phish Alert Button-reported phishing emails. You will have fresh templates each week which represent real-life phishing attacks.
The new category "Reported Phishes of the Week" collects the ten best real-world phishing emails seen over the previous seven days and makes them available as templates for customers interested in using actual phishes sent by the bad guys. This week's collection of "reported phishes" includes the following new templates:
 
  • "Account Update Security Alert!" -- Fake security alert prompts users to update their credit card profile at an alleged "secure login portal"
  • "Alert - New Transaction Review" -- Employees are instructed to download and review a summary of account transactions
  • "Download the schedule document" -- Email instructs users to download a "schedule document"
  • "Help Desk Support" -- Email directs users to download and read a "secure message from Helpdesk Administrator"
  • "New or modified user account information" -- Fake Microsoft email prompts users to update their expired passwords
  • "Payment Advice - ACH credits" -- Email provides users with a malicious attachment billed as "payment advice"
  • "Re: formal complaint" -- False customer complaint email includes malicious attachment allegedly sent for a manager's eyes
  • "Re: Re: casefarmsnet.com invoice" -- Email supplies a malicious attachment advertised as an invoice
  • "Settlement Agreement (Initial version) - 1TOS11710" -- Email includes a malicious attachment billed as a "draft settlement agreement"
  • "TD Web Business Banking News - Security Device Required" -- Fake banking email prompts customers to upgrade their bank account by logging on to a fake bank web site or opening a malicious attachment
Katie will be updating this new phishing template category every Monday with a new batch of real world phishes from the previous seven days!
 

Did you know that 91% of successful data breaches started with a spear-phishing attack?

Find out what percentage of your employees are Phish-prone™ with your free phishing security test.

Over the last few years, thousands of organizations in the U.S have started to phish their own users. IT pros have realized that doing this is urgently needed as an additional security layer. Today, phishing your own users is just as important as having antivirus and a firewall.

Free Phishing Security Test

Why? If you don't do it yourself, the bad guys will. Take the first step now to significantly improve your organization’s defenses against cybercrime.

Get Your Free PST Now
 
PS, do not like redirected buttons? Cut & Paste this link in your browser:
 
 



Subscribe To Our Blog


Comprehensive Anti-Phishing Guide




Get the latest about social engineering

Subscribe to CyberheistNews