Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

You Are Still Vulnerable to Password Attacks When Using Passkeys

May 9, 2025 2:26:01 PM By Roger Grimes
Just because you’re using a passkey doesn’t mean your password is gone.
Continue Reading

Phishing Kits Are Growing More Sophisticated; Focused on Bypassing MFA

May 8, 2025 5:12:21 PM By KnowBe4 Team
Researchers at Cisco Talos warn that major phishing kits continue to incorporate features that allow them to bypass multi-factor authentication (MFA).
Continue Reading

Talos Report: Phishing Attacks Surged in Q1 2025

May 7, 2025 2:09:19 PM By Cindy Zhou
Phishing was the initial access vector in 50% of attacks during the first quarter of 2025, according to a new report from Cisco Talos.
Continue Reading

Warning: Phishing Campaign Impersonates the US Social Security Administration

May 7, 2025 2:08:58 PM By Cindy Zhou
Researchers at Malwarebytes warn that phishing emails are impersonating the US Social Security Administration (SSA) to trick users into installing the ScreenConnect remote access tool.
Continue Reading

Xfinity Scam Might Explain Similar Scams

May 1, 2025 4:30:01 PM By Roger Grimes
Recently, I covered a T-Mobile scam where a friend of mine narrowly avoided losing money. In that scam, the attackers called up pretending to be from T-Mobile offering him a ...
Continue Reading

Email Remains the Top Attack Vector for Cyberattacks

May 1, 2025 4:29:20 PM By Stu Sjouwerman
Email is still the most common attack vector for cyber threats, according to a new report from Barracuda.
Continue Reading

Cybercriminals Impersonate DHS Amid Deportation Efforts

Apr 30, 2025 4:42:18 PM By Stu Sjouwerman
Researchers at INKY warn that criminals are impersonating the US Department of Homeland Security to launch phishing scams.
Continue Reading

Criminals Exploit the Death of Pope Francis to Launch Scams

Apr 29, 2025 10:46:20 AM By Stu Sjouwerman
Scammers are exploiting the death of Pope Francis to launch social engineering attacks, according to researchers at Check Point.
Continue Reading

AJ from The Inside Man Now Coaching Your Users Real-time with Security Coach

Apr 29, 2025 10:45:38 AM By John Just
Do your users love The Inside Man? See more of beloved character AJ, now in SecurityCoach!
Continue Reading

Introducing the KnowBe4 Academy: Your Path to Mastering Human Risk Management

Apr 25, 2025 4:04:29 PM By Stu Sjouwerman
We're thrilled to announce the launch of KnowBe4 Academy—a comprehensive learning ecosystem designed specifically for security administrators, IT professionals and team members who manage ...
Continue Reading

Social Engineering Campaign Abuses Zoom to Install Malware

Apr 25, 2025 4:04:00 PM By Stu Sjouwerman
A social engineering campaign is abusing Zoom's remote control feature to take control of victims’ computers and install malware, according to researchers at security firm Trail of Bits.
Continue Reading

Half of Organizations Lack Protection Against Email Spoofing

Apr 24, 2025 3:38:15 PM By Stu Sjouwerman
A new report from Valimail has found that 50% of organizations lack effective protection against email spoofing.
Continue Reading

Broken Cyber Windows Theory

Apr 22, 2025 9:02:13 AM By Javvad Malik
Have you ever walked down a street with broken windows, burnt out cars, graffiti and felt a bit uneasy? There's a reason for that, and it's not just about aesthetics.
Continue Reading

Threat Actors Are Increasingly Abusing AI Tools to Help With Scams

Apr 22, 2025 9:01:39 AM By Stu Sjouwerman
Cybercriminals are increasingly using AI tools to assist in malicious activities, according to Microsoft’s latest Cyber Signals report.
Continue Reading

Powering Down Vulnerability: Securing the Energy Sector's Supply Chain

Apr 18, 2025 4:33:27 PM By Javvad Malik
The energy sector stands as a critical pillar of our society. From the electricity powering our homes to the fuel driving our industries, reliable energy is essential. However, the very ...
Continue Reading

China Cybercriminals Behind Toll-Themed Smishing Attacks Surge in the US and UK

Apr 18, 2025 4:32:52 PM By Stu Sjouwerman
Resecurity warns that a China-based cybercriminal gang dubbed the “Smishing Triad” is launching a wave of road toll-themed SMS phishing (smishing) attacks against users across the US and ...
Continue Reading

How Does Human Risk Management Differ from Security Awareness Training?

Apr 16, 2025 12:13:48 PM By Stu Sjouwerman
In today's cybersecurity landscape, organizations face an ever-present and often underestimated threat: human risk. Despite significant advancements in technological defenses, human error ...
Continue Reading

UK Organizations Cite Phishing as the Most Disruptive Type of Cyberattack

Apr 15, 2025 11:03:55 AM By Stu Sjouwerman
Phishing was the most prevalent and disruptive type of attack experienced by UK organizations over the past twelve months, according to the British government’s Cyber Security Breaches ...
Continue Reading

Europe's Energy Sector at Risk: The Critical Need for Cybersecurity

Apr 11, 2025 6:49:08 PM By Martin Kraemer
Reliable energy is the backbone of any modern society. It powers our homes, industries, and economies. But what happens when this essential infrastructure becomes a target for ...
Continue Reading

Shadow AI: A New Insider Risk for Cybersecurity Teams to Tackle Now

Apr 10, 2025 3:04:40 PM By James McQuiggan
Disclaimer: Don't get me wrong, I love using generative AI daily for research and writing. This is about how other users could be using it when they don't know what they don't know and ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews
OSZAR »