Hacking, Phishing and Security Awareness

Best of KB4-CON 2024: The State of Phishing, Hacking and Security Awareness Training

Tech Republic Security

MARCH 6, 2024

We know what went on at security awareness training vendor KnowBe4’s seventh annual KB4-CON user conference in Florida. From March 4-6, close to 1,700 people heard about cybersecurity matters and the two-edged sword that is artificial intelligence.

Security Awareness

Security Awareness Artificial Intelligence Phishing Hacking

Voice Phishers Targeting Corporate VPNs

Krebs on Security

AUGUST 19, 2020

The COVID-19 epidemic has brought a wave of email phishing attacks that try to trick work-at-home employees into giving away credentials needed to remotely access their employers’ networks. The employee phishing page bofaticket[.]com. Image: urlscan.io.

Phishing

Phishing VPN Social Engineering Media

Reddit Hacked — 2FA is no Phishing Phix

Security Boulevard

FEBRUARY 10, 2023

Reddit got hacked with a “sophisticated” spear phishing attack. The post Reddit Hacked — 2FA is no Phishing Phix appeared first on Security Boulevard. The individual victim was an employee who clicked the wrong email link.

Phishing

Phishing Hacking Social Engineering CISO

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Cyber Security Awareness Month: Cyber tune-up checklist

Webroot

OCTOBER 1, 2024

billion people had their social security numbers and other personal information hacked , and all that stolen data ended up for sale on the dark web. Turn on multi-factor authentication Using multi-factor authentication adds a layer of security to your passwords by having you prove your identity in multiple ways.

Security Awareness

Security Awareness Passwords Backups Password Management

Phorpiex botnet sent millions of phishing emails to deliver LockBit Black ransomware

Security Affairs

MAY 13, 2024

Experts reported that since April, the Phorpiex botnet sent millions of phishing emails to spread LockBit Black ransomware. Phishing Reporting : Report phishing emails and other malicious cyber activities to relevant authorities like the FBI’s IC3 and the NJCCIC. All associated emails were blocked or quarantined.”

Phishing

Phishing Ransomware Security Awareness Authentication

Protect your business with security awareness training

SiteLock

AUGUST 27, 2021

In fact, 97% of us can’t tell a phishing email from a legitimate one. Cybercriminals know this, which is why phishing attacks account for more than 80% of reported security incidents and why 54% of companies say their data breaches were caused by “negligent employees. ”. Business Email Compromise (BEC) is similar to phishing.

Security Awareness

Security Awareness Passwords Phishing Scams

From Notifications to Deepfakes: How Human Behaviour Is Shifting and What It Means for Cybersecurity

Jane Frankland

JANUARY 19, 2025

While this might protect our mental bandwidth, and in some cases help us avoid hacking attempts via exhaustion tactics, it also has unintended consequenceswhen it comes to cybersecurity. Focus on Trusted Communication Training employees to verify the authenticity of messages is critical in combating phishing and other scams.

Cybersecurity

Cybersecurity Technology Scams Risk

GoDaddy apologized for insensitive phishing email sent to its employees offering a fake bonus

Security Affairs

DECEMBER 26, 2020

GoDaddy made the headlines for an initiative that is dividing cybersecurity community, it sent phishing messages offering bonuses to its employees. The web provider apologized Thursday for the cyber security test aimed at verifying the response of its personnel to a phishing campaign. SecurityAffairs – hacking, phishing).

Phishing

Phishing Social Engineering Security Awareness Engineering

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

The plummeting price of Bitcoin in 2018, combined with the growth of users’ overall security awareness and better protection practices, caused ransomware operators to rethink their strategies. The logic of the raid mainly comes down to using unsecured RDP ports or spear-phishing to infiltrate networks and gain a foothold in them.

Ransomware

Ransomware Hacking Encryption Penetration Testing

'Darcula' Phishing Service Unleashes Sophisticated Smishing Attacks

SecureWorld News

APRIL 1, 2024

A new Phishing-as-a-Service (PhaaS) threat called "darcula" is taking advantage of encrypted mobile messaging services to unleash a wave of sophisticated smishing attacks targeting organizations across more than 100 countries. If an executive's phone gets hacked, it will open a new gateway into highly valuable information," Savolainen said.

Phishing

Phishing Mobile Encryption Technology

ROUNDTABLE: Targeting the supply-chain: SolarWinds, then Mimecast and now UScellular

The Last Watchdog

FEBRUARY 3, 2021

It’s only February, and 2021 already is rapidly shaping up to be the year of supply-chain hacks. This bad news from UScellular follows similarly troubling disclosures from networking software supplier SolarWinds and from email security vendor Mimecast. Video: What all companies need to know about the SolarWinds hack.

Phishing

Phishing Hacking Accountability Social Engineering

Social engineering: Cybercrime meets human hacking

Webroot

FEBRUARY 22, 2022

According to the latest IDG report, phishing attacks are on the rise. Invest in security awareness training. Prevent your devices from becoming compromised by common attack vectors by investing in security awareness training. Testing yourself regularly with phishing campaigns can help you learn what to avoid.

Social Engineering

Social Engineering Engineering Cybercrime Hacking

Intro to phishing: simulating attacks to build resiliency

Security Affairs

APRIL 21, 2023

Phishing attacks are a major threat to organizations, they remain a perennial choice of cybercriminals when it comes to hacking their victims. The infographic below outlines the most common types of phishing attacks used against individuals or businesses.

Phishing

Phishing Social Engineering Security Awareness Passwords

The Biggest Cybersecurity Risk We're Ignoring—And No, It's Not AI

SecureWorld News

FEBRUARY 28, 2025

Because no firewall, no AI-powered SOC, no quantum-proof encryption will save you if your employees keep clicking phishing emails, because let's face it. it's WAY easier to hack minds than networks. This is a disaster waiting to happen. The solution? What if we thought like a psychologist, not just a CISO?

Cybersecurity

Cybersecurity Risk Social Engineering Phishing

FraudGPT AI Bot Authors Malicious Code, Phishing Emails, and More

SecureWorld News

JULY 26, 2023

A new potential cybercrime tool called "FraudGPT" appears to be an AI bot exclusively being used for offensive purposes, such as crafting spear phishing emails, creating cracking tools, carding, and more nefarious activities. This craftiness would play a vital role in business email compromise (BEC) phishing campaigns on organizations.

Phishing

Phishing Social Engineering Cybercrime Scams

Best Cybersecurity Awareness Training for Employees in 2021

eSecurity Planet

JUNE 17, 2021

Back in the day, security training was largely reserved for IT security specialists and then extended to include IT personnel in general. These days, all employees need to be well educated in security best practices and good habits if the organization wishes to steer clear of ransomware and malware.

Cybersecurity

Cybersecurity Phishing Security Awareness Education

GUEST ESSAY: Here’s what every business should know — and do — about CaaS: crime-as-a-service

The Last Watchdog

NOVEMBER 1, 2021

For example, a hacker may choose one vendor whose specialty uses open-source intelligence (OSINT) to identify the most lucrative targets for phishing scams. In contrast, other hacking vendors may focus their efforts on planting ransomware. No longer are sophisticated hacks relegated to the world of the most technically savvy.

Phishing

Phishing Cybercrime Technology Hacking

GUEST ESSAY: These advanced phishing tactics should put all businesses on high alert

Security Boulevard

SEPTEMBER 28, 2022

Phishing attacks are nothing new, but scammers are getting savvier with their tactics. Related: The threat of ‘business logic’ hacks. The post GUEST ESSAY: These advanced phishing tactics should put all businesses on high alert appeared first on Security Boulevard.

Phishing

Phishing Hacking Security Awareness

5 Ways to Avoid Heartbreak From Valentine’s Day Hacks

Security Boulevard

FEBRUARY 13, 2022

In the run-up to February 14, 2021, cyberattackers launched over 400 new Valentine’s Day-themed phishing emails targeting innocent users every week, a 29%. The post 5 Ways to Avoid Heartbreak From Valentine’s Day Hacks appeared first on Security Boulevard.

Hacking

Hacking Phishing Cybersecurity Social Engineering

The Business Value of the Social-Engineer Phishing Service

Security Boulevard

JUNE 18, 2021

Phishing attacks continue to plague organizations across the globe with great success, but why? The post The Business Value of the Social-Engineer Phishing Service appeared first on Security Boulevard. Cybercriminals are targeting the human element of organizations. Additionally, they are developing techniques to use an.

Social Engineering

Social Engineering Engineering Phishing Penetration Testing

Threat Report Portugal: Q2 2020

Security Affairs

AUGUST 14, 2020

The campaigns were classified as either phishing or malware. This report provides intelligence and indicators of compromise (IOCs) that organizations can use to fight current attacks, anticipating emerging threats, and manage security awareness in a better way. Phishing and Malware Q2 2020. Threats by Sector.

Threat Reports

Threat Reports Phishing Banking Malware

Threat Report Portugal Q1 2020

Security Affairs

APRIL 20, 2020

Threat Report Portugal Q1 2020: Phishing and malware by numbers. The campaigns were classified as either phishing or malware. This report provides intelligence and indicators of compromise (IOCs) that organizations can use to fight current attacks, anticipating emerging threats, and manage security awareness in a better way.

Threat Reports

Threat Reports Phishing Malware Banking

Three Common Mistakes That May Sabotage Your Security Training

The Hacker News

AUGUST 4, 2022

Phishing incidents are on the rise. A report from IBM shows that phishing was the most popular attack vector in 2021, resulting in one in five employees falling victim to phishing hacking techniques. Consequently, companies have no choice but to involve their

Phishing

Phishing Security Awareness Hacking

Fashion brand Guess hacked, DarkSide ransomware group the likely culprit

SC Magazine

JULY 13, 2021

Speed is the natural enemy of security, and retailers must beware of increased risks of DDoS attacks, ransomware, fraudulent purchases, [and] phishing campaigns impersonating retailers.”. The post Fashion brand Guess hacked, DarkSide ransomware group the likely culprit appeared first on SC Media.

Retail

Retail Ransomware Hacking Digital transformation

New Dog, Old Tricks: Reducing Cryptocurrency Phishing Vulnerabilities

Security Boulevard

MAY 4, 2022

The post New Dog, Old Tricks: Reducing Cryptocurrency Phishing Vulnerabilities appeared first on Security Boulevard.

Cryptocurrency

Cryptocurrency Phishing Banking Security Awareness

Threat Report Portugal: Q4 2020

Security Affairs

JANUARY 26, 2021

Threat Report Portugal Q4 2020: Data related to Phishing and malware attacks based on the Portuguese Abuse Open Feed 0xSI_f33d. The submissions were classified as either phishing or malware. Phishing and Malware Q4 2020. These kinds of malware come from Brazil and the attacks are disseminated via phishing campaigns.

Threat Reports

Threat Reports Phishing Malware Banking

GUEST ESSAY: A roadmap for wisely tightening cybersecurity in the modern workplace

The Last Watchdog

MAY 24, 2023

Finally, don’t forget the bad press that results for businesses when they are hacked. Sugar If the hacked businesses can show they’ve been trying to protect data by investing in security, then fines become less likely. This isn’t the kind of exposure you want for your brand. Keep remediation costs in mind.

Cybersecurity

Cybersecurity Backups Data breaches Technology

Cybersecurity in the SMB space — a growing threat

SecureList

JUNE 25, 2024

For example, the UK’s National Cyber Security Centre reports that around 50% of SMBs in the UK are likely to experience a cybersecurity breach annually. Addressing cybersecurity requires a multifaceted approach, combining technological solutions with fostering a security-aware culture within the organization.

Cybersecurity

Cybersecurity Phishing Media Software

Unmasking 2024’s Email Security Landscape

Security Affairs

FEBRUARY 28, 2024

Emerging Threats and Trends The landscape of email threats continues to evolve, with VIPRE’s report shedding light on several alarming trends: Deepfake and AI Exploitation: Attackers increasingly leverage deepfake technology and AI to craft more convincing phishing emails, significantly raising the stakes for email security.

Phishing

Phishing Identity Theft Scams Malware

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

eSecurity Planet

MAY 1, 2025

Abnormal AI rolls out autonomous security agents Abnormal AI made waves with what its calling its most ambitious product release to date with the launch of two new autonomous AI agents designed to protect users and simplify security operations. PDF-based phishing is on the rise. However, technology alone wont win this fight.

Cybersecurity

Cybersecurity Mobile Phishing Artificial Intelligence

The Rise of the 24/7 Security Scanning Access Point

Security Boulevard

JANUARY 21, 2022

An astonishing 90% of enterprise data breaches are caused by phishing attacks, costing businesses billions every year in lost revenue and downtime. The industries most vulnerable to hacking include finance, medicine, education, warehousing, airports and rail stations, government and distributed enterprise networks.

Data breaches

Data breaches Education Phishing Government

Staying a Step Ahead of the Hack

Webroot

DECEMBER 11, 2020

As it turns out, it’s easier to hack our trust than our computers. Standard phishing tactics – Phishing techniques include website spoofing emails appearing to come from an official source asking you to reset your password or confirm personal data. After clicking the link and entering the info, your security is compromised.

Hacking

Hacking Social Engineering Engineering Phishing

0ktapus/‘Scatter Swine’ Hacking Gang Stole 10,000 Corp Logins via Twilio

Security Boulevard

AUGUST 30, 2022

The post 0ktapus/‘Scatter Swine’ Hacking Gang Stole 10,000 Corp Logins via Twilio appeared first on Security Boulevard. More on the Twilio débâcle from earlier this month: Researchers reveal the hackers swiped at least 9,931 user credentials from more than 130 organizations.

Hacking

Hacking Social Engineering Engineering Security Awareness

Trojan Malware Hidden in Cracked macOS Software, Kaspersky Says

Security Boulevard

DECEMBER 8, 2023

The malware can be used by bad actors for a range of malicious activities, including hacking into systems or running phishing campaigns. The post Trojan Malware Hidden in Cracked macOS Software, Kaspersky Says appeared first on Security Boulevard. Attackers can use.

Software

Software Malware Phishing Hacking

Threat Report Portugal: Q1 2021

Security Affairs

MAY 2, 2021

Threat Report Portugal Q1 2021: Phishing and malware by numbers. The submissions were classified as either phishing or malware. This report provides intelligence and indicators of compromise (IOCs) that organizations can use to fight current attacks, anticipating emerging threats, and manage security awareness in a better way.

Threat Reports

Threat Reports Phishing Malware Data collection

Threat Report Portugal: Q2 2021

Security Affairs

JULY 22, 2021

The submissions were classified as either phishing or malware. This report provides intelligence and indicators of compromise (IOCs) that organizations can use to fight current attacks, anticipating emerging threats, and manage security awareness in a better way. Phishing and Malware Q2 2021. Threats by Sector.

Threat Reports

Threat Reports Phishing Malware Banking

Threat Report Portugal: Q3 2021

Security Affairs

NOVEMBER 14, 2021

The submissions were classified as either phishing or malware. This report provides intelligence and indicators of compromise (IOCs) that organizations can use to fight current attacks, anticipating emerging threats, and manage security awareness in a better way. Phishing and Malware Q3 2021. Threats by Sector.

Threat Reports

Threat Reports Phishing Malware Banking

Phish or Be Phished. That is the question!

Security Boulevard

SEPTEMBER 7, 2022

Phish or Be Phished. Email phishing attacks are becoming more challenging to spot. Why did the email provider’s email anti-spam and anti-phish protection layer not quarantine the message? Even with a generic greeting, you would think an AL-powered anti-phishing protection engine would have blocked the message.

Phishing

Phishing Social Engineering Identity Theft Engineering

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

Social engineering attacks , including phishing, spam, and viruses introduced via clickable links within e-mail affected 80% of the banking institutions in 2016. VoIP phishing and impersonation also victimized millions of corporate employees across the world , contributing to an even greater cyber threat.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

Threat Report Portugal: Q4 2021

Security Affairs

FEBRUARY 20, 2022

The submissions were classified as either phishing or malware. This report provides intelligence and indicators of compromise (IOCs) that organizations can use to fight current attacks, anticipate emerging threats, and manage security awareness in a better way. Phishing and Malware Q4 2021. in Q3 2021. Threats by Sector.

Threat Reports

Threat Reports Phishing Malware Banking

Threat Report Portugal: Q2 2022

Security Affairs

JULY 4, 2022

The submissions were classified as either phishing or malware. This report provides intelligence and indicators of compromise (IOCs) that organizations can use to fight current attacks, anticipate emerging threats, and manage security awareness in a better way. Phishing and Malware Q2 2022. in Q1 2022. Threats by Sector.

Threat Reports

Threat Reports Phishing Malware Banking

GUEST ESSAY: How humans and machines can be melded to thwart email-borne targeted attacks

Security Boulevard

NOVEMBER 13, 2022

Phishing emails continue to plague organizations and their users. Related: Botnets accelerate business-logic hacking. No matter how many staff training sessions and security tools IT throws at the phishing problem, a certain percentage of users continues to click on their … (more…).

Phishing

Phishing Hacking Security Awareness

September Snafus: Hackers Take Advantage of Unwitting Employees

Approachable Cyber Threats

SEPTEMBER 24, 2022

Several large companies were hacked in the first half of September. All of the attacks were carried out with relatively simple phishing and social engineering techniques. In the IHG hack, a couple from Vietnam claimed they were attempting to deploy ransomware on the network. Phishing and poor password practices.

Social Engineering

Social Engineering Authentication Engineering Phishing

Threat Group Continuously Updates Malware to Evade Antivirus Software

eSecurity Planet

NOVEMBER 7, 2022

Kaspersky researchers recently found evidence of an advanced threat group continuously updating its malware to evade security products, similar to a release cycle for developers. LODEINFO has been observed engaged in a spear- phishing campaign since December 2019 by JPCERT/CC. Defense in Depth.

Antivirus

Antivirus Software Malware Security Awareness

Best of KB4-CON 2024: The State of Phishing, Hacking and Security Awareness Training

Voice Phishers Targeting Corporate VPNs

Webinars

Trending Sources

Reddit Hacked — 2FA is no Phishing Phix

Webinars

Cyber Security Awareness Month: Cyber tune-up checklist

Phorpiex botnet sent millions of phishing emails to deliver LockBit Black ransomware

Protect your business with security awareness training

From Notifications to Deepfakes: How Human Behaviour Is Shifting and What It Means for Cybersecurity

GoDaddy apologized for insensitive phishing email sent to its employees offering a fake bonus

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

'Darcula' Phishing Service Unleashes Sophisticated Smishing Attacks

ROUNDTABLE: Targeting the supply-chain: SolarWinds, then Mimecast and now UScellular

Social engineering: Cybercrime meets human hacking

Intro to phishing: simulating attacks to build resiliency

The Biggest Cybersecurity Risk We're Ignoring—And No, It's Not AI

FraudGPT AI Bot Authors Malicious Code, Phishing Emails, and More

Best Cybersecurity Awareness Training for Employees in 2021

GUEST ESSAY: Here’s what every business should know — and do — about CaaS: crime-as-a-service

GUEST ESSAY: These advanced phishing tactics should put all businesses on high alert

5 Ways to Avoid Heartbreak From Valentine’s Day Hacks

The Business Value of the Social-Engineer Phishing Service

Threat Report Portugal: Q2 2020

Threat Report Portugal Q1 2020

Three Common Mistakes That May Sabotage Your Security Training

Fashion brand Guess hacked, DarkSide ransomware group the likely culprit

New Dog, Old Tricks: Reducing Cryptocurrency Phishing Vulnerabilities

Threat Report Portugal: Q4 2020

GUEST ESSAY: A roadmap for wisely tightening cybersecurity in the modern workplace

Cybersecurity in the SMB space — a growing threat

Unmasking 2024’s Email Security Landscape

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

The Rise of the 24/7 Security Scanning Access Point

Staying a Step Ahead of the Hack

0ktapus/‘Scatter Swine’ Hacking Gang Stole 10,000 Corp Logins via Twilio

Trojan Malware Hidden in Cracked macOS Software, Kaspersky Says

Threat Report Portugal: Q1 2021

Threat Report Portugal: Q2 2021

Threat Report Portugal: Q3 2021

Phish or Be Phished. That is the question!

Cyber Security Awareness and Risk Management

Threat Report Portugal: Q4 2021

Threat Report Portugal: Q2 2022

GUEST ESSAY: How humans and machines can be melded to thwart email-borne targeted attacks

September Snafus: Hackers Take Advantage of Unwitting Employees

Threat Group Continuously Updates Malware to Evade Antivirus Software

Stay Connected