CyberheistNews #21



CyberheistNews Vol 1, #21







Editor's Corner



KnowBe4


[caption id="attachment_1367" align="alignleft" width="150" caption="Stu"]cybercrime[/caption]



Title Firm Sues Bank Over $207k Cyberheist





Been trying to get the word out about this, and Brian Krebs was at it

a lot earlier than I was. There is a new cyberheist with major legal

repercussions this time.







A title insurance firm in Virginia is suing its bank after an eight-day cyber

heist involving more than $2 million in thefts and more than $200,000 in losses

last year. In an unusual twist, at least some of the Eastern European thieves

involved in the attack have already been convicted and imprisoned for their

roles in the crime. Much more detail at the Krebs website:




http://krebsonsecurity.com/2011/11/title-firm-sues-bank-over-207k-cyberheist/







They got infected with the ZeuS virus, which, you guessed it, gets

onto workstations using email and social engineering. Get those end-users

trained!



Quotes of the Week









"If you want to make an apple pie from scratch, you must first create the

universe."
- Dr. Carl Sagan









"I want to put a ding in the universe." - Steve Jobs









"I find hope in the darkest of days, and focus in the brightest. I do not

judge the universe."
- Dalai Lama









Please tell your friends about CyberheistNews! They can subscribe here:


http://www.knowbe4.com/about-us/cyberheist-news/



KnowBe4






Shaking Up DARPA's Security Software Routine







WASHINGTON, DC -- Getting non-traditional security technology quickly into

military networks was at best a trying experience. Not only that, if you

or your company had a novel security tools the last place you may have

wanted to show it off would have been to the government.







But the inventor of L0phtCrack, a Microsoft password auditing tool and

ex-BBN scientist Peiter "Mudge" Zatko now a program manager with the

military's advanced research arm, DARPA, is changing those notions and

changing them quickly. Interesting article!


http://www.networkworld.com/article/2221059/security/-mudge--zatko-shaking-up-darpa-s-security-software-routine.html





KnowBe4






How Training Helps Prevent Breaches







HealthcareInfoSecurity has a great article about this. "A lack of ongoing

HIPAA compliance training increases the risk of internal breaches, says

Terrell Herzig, information security officer at UAB Medicine. "A lot of

organizations did their initial HIPAA training as required and that was

pretty much the extent of the training they offered," Herzig laments.

A HealthcareInfoSecurity survey shows 42 percent of organizations grade

their staff security training and awareness activities as poor, failing

or in need of improvement. More:


http://www.healthcareinfosecurity.com/podcasts.php?podcastID=1271





KnowBe4






Cyberheist 'FAVE' LINKS:







* This Week's Links We Like. Tips, Hints And Fun Stuff.





The Best HD View of Earth from Space Ever - Stunning time lapse sequences

taken by the crew of ISS Expedition 28 & 29:


http://www.flixxy.com/the-best-hd-view-of-earth-from-space-ever.htm






Air France presents "L'Envol", a poetic metaphor of flight. This is one

classy ad:
http://www.flixxy.com/air-france-the-flight.htm





How many jelly beans does it take to make a music video? This one took

288,000 beans, 22 months, 1,357 hours, 30 people, two ladders and one

still camera:
http://www.flixxy.com/in-your-arms-kina-grannis.htm





'Simple Gratitude' - a beautiful and inspiring 5 min short film by

award-winning cinematographer and director Louie Schwartzberg:
http://www.flixxy.com/simple-gratitude.htm





The World's first manned flight of an electric multicopter. I can’t wait

to get my own personal helicopter!:
http://www.flixxy.com/worlds-first-manned-flight-of-an-electric-multicopter.htm





PETMAN The Humanoid Military Robot - CyberEye. Imagine the implications

if Petman ever gets hacked into... :
http://www.youtube.com/watch?v=DDOW30nNpmg




Subscribe to Our Blog


Comprehensive Anti-Phishing Guide




Get the latest about social engineering

Subscribe to CyberheistNews