Security Awareness Training

Mexico has taken a major step toward strengthening its digital defenses with the official unveiling of its first National Cybersecurity Plan, a landmark initiative that establishes the country’s first specialized policy framework for cybersecurity.

A phishing campaign is targeting executives with phony offers for awards, according to researchers at Trustwave SpiderLabs. The attackers first dupe the victims into handing over their credentials, then use the ClickFix social engineering technique to trick them into installing malware.

Malwarebytes warns that threat actors are abusing the free Cloudflare Pages service to host phishing portals, helping the phishing sites avoid detection by security scanners.

“Good information. Everyone who owns a computer should do this training across the country. It should be mandatory!” “Wow, I had no idea of the detail and advanced interrogation these criminals use! This was the most eye-opening session I’ve seen in a long time and VERY timely” “This was a valuable video. I love the practical tips for how to spot the fake video images – especially the shadows and the lack of glare on the glasses. Thank you!” KnowBe4 is here to help you prepare for the evolving AI security landscape. As AI becomes more prevalent in the workplace, new threats and vulnerabilities are emerging. Now is the time to train your users on AI-related security risks! We have 80+ pieces of content in our library specifically addressing AI threats. Here are a few of our most used and highest-rated compliance modules: AI Compliance: Creating Text AI Compliance: Creating Images AI Compliance: Talent Recruitment We have even more AI security content on the roadmap, so stay subscribed to this newsletter for new releases to help you protect your organization against emerging  AI-driven threats.

Deepfake attacks have become more compelling and realistic than ever before.

A friend of mine, John D., received this outreach on Threads (see below). At first, he thought it was the standard fake employer scam, but it is more than that. It is very likely part of a North Korean fake employee scam.  

“Good information. Everyone who owns a computer should do this training across the country. It should be mandatory!” “Wow, I had no idea of the detail and advanced interrogation these criminals use! This was the most eye-opening session I’ve seen in a long time and VERY timely” “This was a valuable video. I love the practical tips for how to spot the fake video images – especially the shadows and the lack of glare on the glasses. Thank you!” KnowBe4 is here to help you prepare for the evolving AI security landscape. As AI becomes more prevalent in the workplace, new threats and vulnerabilities are emerging. Now is the time to train your users on AI-related security risks! We have 80+ pieces of content in our library specifically addressing AI threats. Here are a few of our most used and highest-rated security awareness modules: AI Chatbots: Understanding Their Use, Risks and Limitations in the Workplace New Tools: Artificial Intelligence Scams Generative AI: Seeing through the Deception We have even more AI security content on the roadmap, so stay subscribed to this newsletter for new releases to help you protect your organization against emerging AI-driven threats.

Researchers at CyberProof warn that threat actors are launching phishing attacks via Microsoft Teams’ “Chat with Anyone” feature, which lets external users send direct messages via email addresses.

Researchers at SpyCloud have observed a 400% year-over-year increase in successful phishing attacks, with a disproportionate number of attacks targeting corporate accounts.