Wombat Security is a leader in security awareness and training. Our blog covers the latest cyber security news, insights, and best practices. We arm infosec professionals with the knowledge and tools they need to improve end-user behaviors and reduce organizational risk.


Wombat Vlog: Avoiding Tax-Related Phishing Scams

Posted by Gretel Egan on Feb 23, 2017 1:45:15 PM

Check out and share our latest vlog post and infographic, in which we offer advice about how to avoid becoming a victim of tax fraud.

Read More »

Wombat Vlog: What Is Social Engineering?

Posted by Gretel Egan on Jun 15, 2016 4:00:00 PM

In this first segment of our two-part video blog, I bring end users up to speed on the concept of social engineering. Viewers will understand what this threat is and the ways they might encounter social engineers in their work and personal lives, including phishing attacks, smishing text messages, social media fraud, vishing calls, and imposter scenarios. I also discuss the emotional aspect of social engineering, and how attackers attempt to use our natural human tendencies to trick us into providing access to people, places, and things that should be off limits. 

Read More »

Business Email Compromise: When Hackers (and Competitors) Attack

Posted by Gretel Egan on Apr 13, 2016 1:46:03 PM

You surely don’t need us to tell you that business email compromise (BEC) attacks are on the rise. But are you aware of how dramatic the increase has been? The FBI released an alert on April 4 that included some sobering statistics about fraudulent wire transfer requests:

Read More »

Security Spotlight: Avoiding Tax-Related Scams

Posted by Gretel Egan on Feb 22, 2016 10:28:24 AM

It’s that most stressful time of the year for millions of Americans: tax season. As you search for deductions and gather your W-2s, 1098s, and 1095s, you should also be on the lookout for bogus Internal Revenue Service emails, phone calls, and tax-related scams.

Read More »

Social Engineering Alert: Vishing Scams on the Rise

Posted by Gretel Egan on Sep 30, 2014 8:40:00 AM

The phone rings, you answer. Who’s on the other end of the line? The reality is, unless you personally know the caller, you can’t be sure.

In the past few months, I’ve received any number of phony phone calls. Known as “vishing” (a shortened term for “voice phishing”), this social engineering technique has gained a lot of ground in recent years. You might be surprised to learn this; after all, voice-to-voice calls are decidedly low-tech in comparison to other communication channels open to scammers.

Read More »