Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

Scam Of The Week: Homicide Suspect

The same cybergang that was sending alarming emails about people being evicted from their homes, and are to appear in court, have a new variant of their racket. It's a community "alert" ...
Continue Reading

Attacks Give Lift to Cyber Insurance

Today in the Wall Street Journal, reporter Leslie Scism quoted Bloomberg News that "Target's data breach 'was the equivalent of 10 free Super Bowl ads."
Continue Reading

Hackers hit Monster Jobs users with Gameover Zeus malware

Companies that are recruiting new employees are being targeted through Monster Jobs. The bad guys are using malware called Gameover Zeus, security firm F-secure reported in a blog post ...
Continue Reading

CyberheistNews Vol 4, # 12 NSA's Secret Efforts To Hack System Admins

CyberheistNews Vol 4, # 12
Continue Reading

CryptoLocker Has A Competitor That Is Worse: CryptoDefense

As we said before, there is furious competition between cybergangs. Late February 2014 a copycat ransomware competitor to Cryptolocker was released which outdoes CryptoLocker. The malware ...
Continue Reading

Florida Blue takes security awareness training personally

Great post about security awareness by Douglas B. Robison, Florida Blue, a 2014 CSO40 award recipient. Here is an excerpt:
Continue Reading

Scam Of The Week: You Owe Taxes, Pay Now Or Else

This scam uses a combination of phishing emails and spoofed Caller ID scam calls. The scammers intimidate the victim, threaten with arrest, deportation or loss of a business or driver’s ...
Continue Reading

All major browsers fall during day 2 of Pwn2Own hacking contest

Security researchers demonstrated zero-day exploits against Google Chrome, Microsoft Internet Explorer, Apple Safari, Mozilla Firefox and Adobe Flash Player during the second day of the ...
Continue Reading

Target Breach: Where The Weak Points Were

Dave Kearns posted March 18 that he's been fascinated by the information that keeps coming out of the Taget Stores data breach. He's got a great analysis, and he ends off with words that ...
Continue Reading

CyberheistNews Vol 4, # 11 Scam Of The Week:

CyberheistNews Vol 4, # 11
Continue Reading

No Antivirus Detects Russian Malware For 8 Years!

It was all over the news the last few days. Researchers with BAE Systems determined that Russian malware known as Snake dates back as far as 2006, instead of 2011 as initially presented ...
Continue Reading

Phishing FaceBook: Malaysia Plane MH370 Has Been Spotted

Hackers jump on every opportunity they can to trick people. This time they hijacked to story about the missing Malaysian Airlines plane.
Continue Reading

New Phishing Scam Promises Bitcoins

Lily Newman at the Future Tense blog wrote this post for the slate site, after Slate's news editor Chad Lorenz received a new phishing email purportedly from coinbase, who happily ...
Continue Reading

Scam Of The Week: "You may have cancer" phishing email

Amy Stevens of the PR group Davies Murphy became part of the story when Eduard Kovacs at SoftPedia picked up on her tweet about a phishing email she just received. If you recently had a ...
Continue Reading

U.S. Risks National Blackout From Small-Scale Attack

The Wall Street Journal this morning published something that I do NOT like at all. I am expressing myself mildly. A federal analysis says that sabotage of just nine key substations is ...
Continue Reading

CyberheistNews Vol 4, # 10 Scam Of The Week Cell Phone Voucher

CyberheistNews Vol 4, # 10
Continue Reading

When A Stranger Calls

Dr. Neal Krawetz posted something very useful over at the hackerfactor. Apart from that it's also very entertaining. He is legally recording various cold-calls he gets. Some of them are ...
Continue Reading

Sophisticated Scam Of The Week: Cell Phone Voucher

There's a fresh, well thought-out social engineering scam sticking up its ugly head right now. The bad guys are promising cell phone users amounts of up to $100 in vouchers using a ...
Continue Reading

Sticking With WinXP? 10 Things You Must Do

I'm sure you know that April 8 2014, Microsoft will stop supporting Windows XP and stop creating security updates for XP as well. That means that when after April 8, 2014 another security ...
Continue Reading

Pre-installed malware turns up on new phones

A fake version of Netflix that steals personal data and sends it to Russia has been found on several phone models
Continue Reading

Inevitable: Phishing That Pretends To Be Salesforce.com

Just a heads-up, screen shot above. The lifehacker site in Australia warned about a phishing scam using a "salesforce" email as bait. The bad guys will use anything to get you to click, ...
Continue Reading

Are malware threats making anti-virus software useless?

CBC News had a pretty controversial headline today. They wrote that some computer consultants say the global malware threat has gotten so bad that conventional security measures, such as ...
Continue Reading

How to Test the Phishing Savvy of Your Staff

Continue Reading

CyberheistNews Vol 4, # 09 41 Percent Of Infected Pay The CryptoLocker Ransom

CyberheistNews Vol 4, # 09
Continue Reading

Average Enterprise Is Hit by a Cyber Attack Every 1.5 Seconds

FireEye released its yearly Advanced Threat Report, and they did some interesting math. Enterprises are hit by cyber attacks on average once every 1.5 seconds, which is double from the ...
Continue Reading

41 Percent Of Infected Pay The Cryptolocker Ransom

I have warned about the Cryptolocker ransomware before, but now we have some hard numbers about the percentage of people that are forced to pay up when a workstation or server has been ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews