Tag

Social Engineering

Learn how attackers use psychological manipulation to trick people into revealing sensitive information or performing unsafe actions. Topics include pretexting, baiting, tailgating, vishing, and real-world social engineering case studies that expose common human vulnerabilities.

posts

Executive Phishing Attacks

Executive Phishing Attacks: Why the C-Suite Is Target #1

A Single Email Cost This Company $47 Million In 2016, Austrian aerospace firm FACC lost €42 million (roughly $47 million USD) after threat actors impersonated the CEO in a carefully crafted email to the finance department. The employee who wired the money believed they were following a direct executive order.

Carl B. Johnson Jun 17, 2026 6 min read
CEO Fraud Email Scam

CEO Fraud Email Scam: How Attackers Steal Millions

A Single Email Cost This Company $47 Million In 2016, FACC, an Austrian aerospace parts manufacturer, lost €42 million (roughly $47 million USD) after an employee wired funds based on instructions that appeared to come from the CEO. The email was fake. The money vanished into accounts controlled by threat

Carl B. Johnson Jun 16, 2026 6 min read
Phishing Attacks

What Is a Phishing Attack? A Real-World Breakdown

A Single Email Cost This Company $100 Million In 2019, Toyota Boshoku Corporation — a major Toyota parts supplier — lost $37 million after employees wired funds to accounts controlled by attackers who impersonated a business partner via email. Facebook and Google collectively lost over $100 million to a Lithuanian man who

Carl B. Johnson Jun 15, 2026 6 min read
Business Email Compromise

Business Email Compromise: The $2.9B Threat in 2026

One Email Cost This Company $37 Million In 2024, Orion Engineering — a mid-size firm with 200 employees — wired $37 million to what they believed was a trusted overseas supplier. The invoice looked legitimate. The email thread was real. The bank details were the only thing that had changed. By the

Carl B. Johnson Jun 15, 2026 5 min read
Types of Malware

Types of Malware: What Every Organization Must Know

In February 2024, Change Healthcare — one of the largest health payment processors in the U.S. — was hit by the ALPHV/BlackCat ransomware group. The attack disrupted claims processing for hospitals and pharmacies nationwide, exposed protected health information for an estimated 100 million people, and reportedly led to a $22

Carl B. Johnson Jun 12, 2026 6 min read
Spoofing Caller

Spoofing Caller Attacks: How Hackers Weaponize Trust

Your Bank Just Called. Except It Didn't. In 2023, the FBI's Internet Crime Complaint Center reported over $1.2 billion in losses from call center fraud and impersonation scams. A significant chunk of those losses started the same way: a spoofing caller displaying a legitimate number

Carl B. Johnson Jun 12, 2026 5 min read
Business Email Compromise

Business Email Compromise: The $2.9 Billion Threat

In 2023, the FBI's Internet Crime Complaint Center (IC3) reported that business email compromise caused $2.9 billion in adjusted losses — making it the single most financially devastating cybercrime category they track. Not ransomware. Not credential theft rings. BEC. And that number only reflects what gets reported. I&

Carl B. Johnson Jun 11, 2026 5 min read