CyberheistNews Vol 2, #38
Editor's Corner
[caption id="attachment_1367" align="alignleft" width="150" caption="Stu"]
[/caption]
Scam Alert: Naked Prince Harry Pictures
Watch out for the latest Internet craze. The bad guys are having a field
day with a post from celeb gossip website TMZ, which looked like pictures
of Prince Harry caught playing “strip billiards” in a Las Vegas hotel
suite with a bunch of party girls.
Prince Harry is many a young woman’s dream, and a lot of your users
may feel tempted to see what all the excitement is about. Please warn
your employees and friends. Cybercriminals are taking advantage of
‘breaking news’ celeb stories, there are examples enough: Michael Jackson,
Amy Winehouse, Rihanna sex videos or a claimed video of the Osama Bin Laden
killing. Remind them not to fall for these social engineering tricks!
What Is Wrong With This Picture?
This picture is a screen shot from the Polish TV Channel TVP. See
something that should not be there on the whiteboard? Here is a hint,
Haslo is the Polish for “Password”. The two screen shots are on the
KnowBe4 Blog, with a suggestion what to do when a TV crew visits your
office. LOL (Hat Tip to Sophos Naked Security Blog):
http://blog.knowbe4.com/what-is-wrong-with-this-picture/
Please Forward This Newsletter To Your Friends
There are 40,000 people getting CyberheistNews every week, but
we need to get the word out to many more, to protect everyone's
network. Please forward this newsletter to people you know, that can
benefit. Here is the link to subscribe:
http://www.knowbe4.com/cyberheist-news/
Quotes of the Week
"Life is short. Find a job that allows you a good work-life balance.
You should work to live, not live to work." - Gerard Mainardi
"All labor that uplifts humanity has dignity and importance and should
be undertaken with painstaking excellence." - Martin Luther King, Jr.
Please tell your friends about CyberheistNews! They can subscribe here:
http://www.knowbe4.com/about-us/cyberheist-news/
Prevent Email Phishing
Want to stop Phishing Security Breaches? Did you know that many of the email addresses of your organization are exposed on the Internet and easy to find for cybercriminals? With these addresses they can launch spear-phishing attacks on your organization. This type of attack is very hard to defend against, unless your users are highly ‘security awareness’ trained.
IT Security specialists call it your ‘phishing attack surface‘. The more of your email addresses that are floating out there, the bigger your attack footprint is, and the higher the risk is. Find out now which of your email addresses are exposed with the free Email Exposure Check (EEC). An example would be the email address and password of one of your users on a crime site. Fill out the form and we will email you back with the list of exposed addresses. The number is usually higher than you think.
Sign Up For Your Free Email Exposure Check Now:
http://www.knowbe4.com/email-exposure-check/
Remind Your Users: Do Not Use Company Password Anywhere Else
Found a very good article at the IT Pro Portal that illustrates this.
The following is an extract:
Taking over someone's digital identity is not that difficult if you have
access to that person's email account. A researcher conducted a "small
experiment" to illustrate just how easy it is to seize control.
Lundgren's research project was simple. He tried breaking into various
online accounts, either by searching on Google or using social engineering
techniques, on six of his family and friends. There would be no need to
brute force passwords, because he targeted the true "weakest link," the
password reset mechanism. He succeeded with five of them.
"It's getting easier and easier to use just one source for authentication
and that means if any link is weak, you jeopardize all your other accounts
as well," Lundgren concluded, adding that if there are any work-related
accounts or information in the mix, the employer is at risk, too. Read more:
http://www.itproportal.com/2012/08/22/emailed-password-reset-a-weak-security-link/
Prevent Your Own 'Epic Hack' With A 60-Minute Security Makeover
"Is it possible to make your email, social media and other online accounts
100% hack-proof? Probably not. But if you've got an hour to invest, you
can shore up your defenses so at least you're a tougher target. Beef up
security on your digital life -- before someone duplicates the hack
that seized control of a reporter's Apple, Amazon, and Google accounts."
Excellent article at InfoWorld:
http://www.infoworld.com/d/security/prevent-your-own-epic-hack-60-minute-security-makeover-200799
Prevent Email Phishing
Want to stop Phishing Security Breaches? Did you know that many of the email addresses of your organization are exposed on the Internet and easy to find for cybercriminals? With these addresses they can launch spear-phishing attacks on your organization. This type of attack is very hard to defend against, unless your users are highly ‘security awareness’ trained.
IT Security specialists call it your ‘phishing attack surface‘. The more of your email addresses that are floating out there, the bigger your attack footprint is, and the higher the risk is. Find out now which of your email addresses are exposed with the free Email Exposure Check (EEC). An example would be the email address and password of one of your users on a crime site. Fill out the form and we will email you back with the list of exposed addresses. The number is usually higher than you think.
Sign Up For Your Free Email Exposure Check Now:
http://www.knowbe4.com/email-exposure-check/
Cyberheist 'FAVE' LINKS:
* This Week's Links We Like. Tips, Hints And Fun Stuff.
Your 5-minute exotic vacation this week. Breathtaking footage from Kenya,
East Africa by the talented videographer Devin Graham:
http://www.flixxy.com/africa-into-the-wild.htm
"The Chubb Chubbs", Academy Award Winner for "Best Animated Short Film"
(2002): See how many popular characters you recognize!:
http://www.flixxy.com/chubb-chubbs.htm
Enjoy the beauty of the underwater world to the music of "Full Sail" by
Ryan Farish. There are some creatures in there I have -never- seen:
http://www.flixxy.com/aquarium-full-sail.htm
Is your hotel room lock safe? One in three can be easily hacked. See how:
http://www.gizmag.com/onity-lock-hack/23840/
A full-resolution version of NASA's Curiosity Rover descent to Mars set
to Beethoven's 5th Symphony:
http://www.flixxy.com/complete-mars-curiosity-rover-descent-and-beethoven-5th.htm
This hover bike flies on the pilot's intuition. It responds to one's natural
sense of balance, without the need for any flight control mechanisms. I want one!
http://www.flixxy.com/star-wars-hover-bike.htm
Magician Marcel Kalisvaart with his amazing performance at the "Cirque d'Hiver Bouglione" in Paris, France:
http://www.flixxy.com/the-prince-of-illusions.htm
