Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Phishing Blog

Learn about current phishing techniques, notable campaigns and attacks, what to watch out for 'in the wild', and more.

View Topics

Engineered To Evade: How Phishing Attacks Are Designed To Get Through Your Secure Email Gateway

Jul 16, 2025 4:00:00 PM By Bex Bailey
Getting through secure email gateways (SEGs) is simply the cost of doing business for a cybercriminal. Literally, detection at the perimeter by a SEG is the same as falling at the first ...
Continue Reading

Psychological Contract Breach and the Power of Security Culture - Research Insights

Jul 9, 2025 7:30:00 AM By Martin Kraemer
Employees are expected to behave securely, and the definition of “securely” is often written down in a myriad of security policies. Yet, people do not always comply with security policies ...
Continue Reading

Europol Warns of Social Engineering Attacks

Jun 25, 2025 3:55:29 PM By KnowBe4 Team
Social engineering remains a primary initial access vector for cybercriminals, according to a new report from Europol.
Continue Reading

A Clicking Time Bomb: What To Do About Repeat Clickers

Jun 23, 2025 9:43:34 AM By Bex Bailey
I recently had several conversations about repeat clickers. First with a Forrester analyst and then, shortly after, at KB4-CON Orlando following a presentation on the subject by Matthew ...
Continue Reading

FTC States That Scams Cost U.S. Consumers $158.3 Billion in One Year

Jun 23, 2025 9:43:18 AM By Roger Grimes
I am used to repeating some pretty big numbers when talking about the financial impact of cybercrimes. When you look into the data, it is pretty easy to start talking about tens of ...
Continue Reading

Phishing Deep Dive: EU-Affiliated Survey Platform Exploited in Sophisticated Credential Harvesting Campaign

Jun 18, 2025 9:20:32 AM By KnowBe4 Threat Lab
Lead Researchers: James Dyer and Louis Tiley Between May 5 and May 7, 2025, KnowBe4 Threat Lab identified a phishing campaign originating from accounts created on the legitimate service ...
Continue Reading

Google Report Outlines the Latest Scam Trends

Jun 16, 2025 4:43:01 PM By KnowBe4 Team
Researchers at Google have published a report on the latest scam trends, noting an increase in travel-themed scams targeting people preparing for their summer vacations.
Continue Reading

Spear-Phishing Campaign Targets Financial Executives

Jun 9, 2025 2:37:04 PM By KnowBe4 Team
Researchers at Trellix warn of a spear-phishing campaign that’s targeting CFOs around the world with phony employment offers.
Continue Reading

What Are The Key Components Of A Successful Human Risk Management Program?

Jun 6, 2025 8:38:25 AM By KnowBe4 Team
When it comes to cybersecurity, organizations face an ever-present and often underestimated threat: human risk.
Continue Reading

Fake MFA Reset Warning Message

Jun 6, 2025 8:37:54 AM By Roger Grimes
A KnowBe4 co-worker of mine recently got this SMS phishing message (i.e., smish).
Continue Reading

FBI Alert: Extortion Gang Targets Law Firms With Social Engineering Attacks

Jun 5, 2025 9:03:54 AM By KnowBe4 Team
The FBI is warning that the Silent Ransom Group (SRG) is targeting law firms with IT-themed social engineering attacks and callback phishing emails.
Continue Reading

Copyright-Themed Phishing Lures Target Europe

Jun 5, 2025 9:03:36 AM By KnowBe4 Team
A phishing campaign is targeting European countries with lures themed around copyright infringement, researchers at Cybereason warn.
Continue Reading

The Worsening Landscape of Educational Cybersecurity

Jun 3, 2025 12:56:04 PM By Javvad Malik
Last year, KnowBe4's report "Exponential Growth in Cyber Attacks Against Higher Education Institutions" illustrated the growing cyber threats facing universities and colleges.
Continue Reading

New Unrestricted AI Tool Can Assist in Cybercrime

Jun 3, 2025 12:55:33 PM By KnowBe4 Team
Researchers at Certo warn that a new AI chatbot called “Venice[.]ai” can allow cybercriminals to easily generate phishing messages or malware code.
Continue Reading

Beyond Credentials: When Every Data Point Becomes a Weapon

Jun 2, 2025 9:32:56 AM By Javvad Malik
You know what's interesting about data breaches? Everyone focuses on credit card numbers and financial data, but the reality is that every piece of information has value to someone.
Continue Reading

French Users Targeted by Major Phishing Campaign

Jun 2, 2025 9:32:40 AM By KnowBe4 Team
Researchers at IBM Security warn that a major phishing campaign is targeting users in France, incorporating leaked personal data to make the emails more convincing.
Continue Reading

Scammers Exploit Uncertainty Surrounding US Tariffs

May 29, 2025 4:25:49 PM By KnowBe4 Team
Cybersecurity experts are warning that scammers are taking advantage of uncertainty surrounding the U.S. administration’s tariff policies, CNBC reports.
Continue Reading

Capital One Customers Targeted By Credential Harvesting Phishing Campaign

May 29, 2025 4:25:31 PM By KnowBe4 Threat Lab
The KnowBe4 Threat Lab has identified an active phishing campaign impersonating Capital One.
Continue Reading

Threat Actors Are Using AI-Generated Audio to Impersonate U.S. Officials

May 27, 2025 4:04:49 PM By KnowBe4 Threat Lab
The FBI is warning that threat actors are impersonating senior US officials in phishing attacks designed to compromise users’ accounts.
Continue Reading

Impersonating Meta, Powered by AppSheet: A Rising Phishing Campaign Exploits Trusted Platforms to Evade Detection

May 23, 2025 8:00:00 AM By KnowBe4 Threat Lab
Since March 2025, the KnowBe4 Threat Labs team has observed a surge in phishing attacks that exploit Google’s AppSheet platform to launch a highly targeted, sophisticated campaign ...
Continue Reading
Subscribe

Search Our Blog


New call-to-action

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews