It's CONFIRMED: MedStar Receives A Massive Ransomware Demand

Mar 31, 2016 8:15:40 AM By Stu Sjouwerman

It is now confirmed, The MedStar Hospital Chain was hit with ransomware and has received a digital ransom note. A Baltimore Sun reporter has seen a copy of the cybercriminal's demands. ...

I am introducing a new phishing term: "Attackment"

Mar 29, 2016 1:50:35 PM By Stu Sjouwerman

Phishing attacks usually have a payload of infected attachments. With the recent ransomware attacks on hospitals I was asked for a press quote and the word "Attackment" suddenly came into ...

Ransomware Attack Shuts Down Medstar Washington Hospital

Mar 28, 2016 8:29:51 PM By Stu Sjouwerman

The Washington Post reported that a ransomware infection penetrated the computer network of MedStar Health early Monday morning, forcing the Washington health care behemoth to shut down ...

CyberheistNews Vol 6 #13 [ALERT] Last Week Was A Ransomware Horror Show. Here Is The Roundup!

Mar 28, 2016 7:47:28 AM By Stu Sjouwerman

New Feature: IP Geolocation

Mar 27, 2016 7:53:23 PM By Stu Sjouwerman

When a user clicks on a link in a simulated phishing attack, or opens an attachment, we record the IP address of the request. For various reasons, KnowBe4 customers have requested us to ...

Scam Of The Week: Phishing Email Uses Accurate GPS Data To Catch Speeding Drivers

Mar 27, 2016 4:20:15 PM By Stu Sjouwerman

[UPDATE] See new information at the bottom of this posts. A phishing scam posing as a speeding ticket email with a malicious link is nothing new. But here's an innovation that should give ...

Survey: 62% of Companies Lack Confidence in Ability to Confront Ransomware Threat

Mar 26, 2016 9:37:29 AM By Stu Sjouwerman

Tripwire just published a new study which suggests that a majority of businesses might not be adequately prepared to either prevent or fully recover from ransomware infections. They ...

New Ransomware Written In Windows PowerShell

Mar 25, 2016 3:28:53 PM By Stu Sjouwerman

Lucian Constantin at CSO had the scoop. A new ransomware program written in Windows PowerShell is being used in attacks against enterprises, including health care organizations, ...

PETYA ransomware Locks Users Out by Overwriting Master Boot Record

Mar 25, 2016 2:47:26 PM By TAMPA BAY, FL

Security researchers at Trend Micro have found a new type of ransomware that doesn’t encrypt specific files but makes the entire hard drive inaccessible. The malware has been named Petya ...

Social Engineering Tactics101: 18 ways to hack a human [INFOGRAPHIC]

Mar 25, 2016 11:38:45 AM By Stu Sjouwerman

CSO Online found a great infographic created by the folks of Smartfile. They started out with: "What will the cause of your next security breach? Will it be your firewall? Will it be your ...

New Maktub Ransomware Strain - Beautiful And Dangerous

Mar 25, 2016 10:43:28 AM By Stu Sjouwerman

Maktub Locker is the name of a new Russian strain of ransomware. The word Maktub is Arabic for "fate", suggesting it is inevitable you will get infected with ransomware. They have spent a ...

Tampa Bay Business Owner Affected By Ransomware

Mar 25, 2016 10:00:00 AM By TAMPA BAY, FL

Ransomware continues to be a successfull business for the cybercriminals of the world. It can easily get past even the best anti-virus software through a user just clicking once on ...

InfoSec World 2016 Conference & Expo

Mar 23, 2016 11:29:37 AM By Stu Sjouwerman

Responsible for IT Security?

TeamViewer Denies It Is Surprise Ransomware Infection Vector

Mar 23, 2016 7:09:00 AM By Stu Sjouwerman

A modified version of EDA2, an open source ransomware strain developed by Turkish computer engineering student Utku Sen, --by the way, thanks Utku, that was a very smart idea-- has been ...

CyberheistNews Vol 6 #12 Scam Of The Week: TurboTax Phishing Attack

Mar 22, 2016 9:19:10 AM By Stu Sjouwerman

FBI and Microsoft Warn Against Hybrid Targeted Samas Ransomware Attack

Mar 21, 2016 11:53:55 AM By Stu Sjouwerman

The FBI and Microsoft have issued a new alert, a warning of hybrid targeted ransomware attacks that attempt to encrypt an organization’s entire network. This is a new approach where ...

Chinese hackers behind U.S. ransomware attacks - security firms

Mar 20, 2016 12:06:36 PM By Stu Sjouwerman

Reuters was the first out with a story about criminal Chinese hackers also trying to get into the ransomware racket. They started out with: "Hackers using tactics and tools previously ...

Scam Of The Week: TurboTax Phishing Attack

Mar 19, 2016 1:40:48 PM By Stu Sjouwerman

It's tax season and the bad guys are in full swing. They try to get your Accounting or HR team to send over the W-2s of all employees, but they also target employees in the office and/or ...

SURVEY: Even if You Don't Pay, Ransomware Attacks Are Very Expensive

Mar 19, 2016 11:37:16 AM By Stu Sjouwerman

According to a new survey by Intermedia called "2016 Crypto-Ransomware Report", ransomware attacks are increasingly targeting larger companies, costing them dearly. Employees are usually ...

New KnowBe4 Phishing Templates

Mar 18, 2016 2:27:45 PM By Stu Sjouwerman

We have added a dozen new phishing templates in the past few days. All are based on actual bad guy phishing emails seen in the last 2 weeks. At least one is less than 24 hours old. Most ...

TeslaCrypt Ransomware v3.01 Updated With Unique Keys For Each Victim

Mar 17, 2016 11:47:04 AM By Stu Sjouwerman

TeslaCrypt is a relatively new ransomware variant which has made it in the Top 5, and has rapidly innovated in its efforts to evade detection. The latest version which is one of the most ...

Ransomware Attacks Use NY Times, BBC, Other Media Sites

Mar 16, 2016 10:26:09 AM By Stu Sjouwerman

Over the weekend, The NY Times, BBC, Newsweek, AOL, MSN, The HIll and other major news sites had their ad networks hijacked again by criminals using the Angler Exploit Kit to deliver ...

Inoculate Employees Against The Locky Ransomware

Mar 15, 2016 3:56:57 PM By Stu Sjouwerman

KnowBe4 has immediately responded to Dridex's Locky ransomware attack by releasing a new attachment option which is called "MS Office document with Macro". This new option allows a ...

CyberheistNews Vol #6 #11

Mar 15, 2016 9:29:48 AM By Stu Sjouwerman

Deadly Dridex Cybercrime Gang Has Just Moved Into Ransomware

Mar 14, 2016 11:21:36 AM By Stu Sjouwerman

One thing that is driving mainstream recognition of ransomware is the move by the Dridex banking Trojan gang into ransomware with their Locky strain. They have taken over from CryptoWall, ...

The structure of Russia's exports in 2014, including ransomware

Mar 12, 2016 1:30:01 PM By Stu Sjouwerman

Check the orange slice depicting the percentage of ransomware exports. I found this on someone's twitter feed and loved it!

Hackers Spoil Their $1 Billion Cyberheist With a Typo

Mar 12, 2016 9:11:23 AM By Stu Sjouwerman

It helps to know how to spell when you try to rob a billion from a dirt poor country. A spelling mistake thwarted hackers in stealing a $1 billion dollars from the Bangladesh Bank, and ...

CyberheistNews Vol 6 #10 [ALERT] IRS Warns Against Widespread CEO Fraud W-2 Phishing Scam

Mar 7, 2016 8:47:13 AM By Stu Sjouwerman

Weird New Cerber Ransomware Speaks To Its Victims

Mar 6, 2016 9:42:27 AM By Stu Sjouwerman

There is a new strain of ransomware called Cerber that takes creepiness to the next level. It drops three files on the victim's desktop named "# DECRYPT MY FILES #." These files contain ...

IRS Warns Against A Widespread CEO Fraud Phishing Scam

Mar 4, 2016 3:02:57 PM By Stu Sjouwerman

OK, heads up! This tax season there is a widespread new scam that specifically targets your HR and Accounting professionals. They get an urgent email from "the CEO" who asks them for all ...

CEO Fraud Phishing Attack steals 11,000 W-2s From Health Care Workers

Mar 4, 2016 11:31:55 AM By Stu Sjouwerman

A phishing incident has compromised the personal information of 11,000 Pennsylvania Main Line Health employees. Officials said the incident occurred on Feb. 16 when an employee fell for a ...

CyberheistNews Vol 6 #9 How To Suck At Information Security – A Cheat Sheet

Mar 1, 2016 8:42:05 AM By Stu Sjouwerman

CyberheistNews Vol Vol 6 #9 How To Suck At Information Security – A Cheat Sheet Lenny Zeltser is a business and tech leader with extensive experience in Infosec. His areas of expertise ...

Security Awareness Training Blog

View Topics

Search Our Blog

Subscribe To Our Blog

Posts By Topic

Get the latest about social engineering

Subscribe to CyberheistNews

Get the latest about social engineering

Subscribe to CyberheistNews