CyberheistNews Vol 3, #12



 

CyberheistNews Vol 3, # 12

KnowBe4
Stu Sjouwerman's New Security Newsletter Don't miss the Fave Links! Case Studies Resources About Us Contact Us
Facebook LinkedIn Blog Twitter YouTube YouTube
 

CyberheistNews Vol 3, 12

Editor's Corner

KnowBe4

Scam Of The Week: Army CID

The Army Criminal Investigation Department warns that if you get an email that appears to come from “US-Army-Criminal-Investigation-Command@usa.com,” it’s a phishing scam. The real Army Criminal Investigation Command, also known as CID (made famous by the Jack Reacher movie and books), is warning the public that criminals are posing as Army law enforcement officials in an email that is making the rounds. WHAT TO DO:

CID is asking that recipients of emails claiming to be from “Office of the Division of Criminal Investigation” take the following steps: • Do not respond to the email. • If you have responded to the email, stop all contact. • Report the email to Army CID.

“By reporting this crime one can assist CID and other law enforcement officials across the United States in their investigations and help bring those responsible to justice,” said Christopher Grey, CID’s chief of public affairs. More at the armytimes website:
http://www.armytimes.com/news/2013/03/army-cid-warns-of-email-phishing-scam-030713/

Need Real-time And Personally Relevant Cyber Intelligence?

If so, I'd like to introduce you to our new partner Swan Island Networks.

Their Cybero(TM) service helps you navigate today’s dynamic cyber threat environment, by delivering a steady stream of up-to-date, personally relevant cyber intelligence. It addresses your critical cyber risks NOT prevented by next-generation firewalls, anti-virus software or stronger encryption. Cybero addresses the human side of cyber security, with the goal of helping your workforce become a new human firewall. Cybero includes Kevin Mitnick Security Awareness Training but gives you much, much more.

You get the latest cyber threat environment alerts—in understandable, actionable form—filtered precisely for you. When part of a company-wide cyber awareness campaign, you can produce quantifiable reductions in workforce cyber risk, with positive, measurable ROI.

Cybero is powered by Swan Island Networks’ proven TIES® platform, which is currently used by more than 300 enterprises, including 20% of the Fortune 100 and is very easy to use. Cybero provides you and your staff with knowledge that can prevent data loss, stop system intrusion and reduce overall cyber vulnerability.

Cybero Delivers:

• Relevant information feeds from US Federal agencies, leading security vendors and authentic cyber security experts, filtered just for you.

• A consolidated, edited view of the latest cyber developments in order to help you perform your professional responsibilities (in the form of personalized dashboards and alerts).

• A rich library of personal cyber security training and best practices. Open source data feeds: top cyber blogs and news.

• The ability to automatically report critical cyber incidents to the right corporate groups or government agency.

• Ability to integrate with corporate compliance and governance initiatives to help ensure incidents are appropriately managed and documented.

• And much, much more. Register here if you want a product demo:
http://swanisland.net/cybero-referral

Sun Tzu Quotes of the Week

"Agents are a ruler's treasure. They are called the hidden network of mastery over the enemy." - Sun Tzu

"Victory is achieved by means of predicting and then handling that which is predicted" - Sun Tzu

Please tell your friends about CyberheistNews! They can subscribe here:
http://www.knowbe4.com/cyberheist-news/

You can read this newsletter online at the KnowBe4 Blog:
http://blog.knowbe4.com/?p=4467

Thanks for reading CyberheistNews! Warm Regards, Stu Sjouwerman | Email me: feedback@knowbe4.com
Facebook LinkedIn Blog Twitter YouTube YouTube
KnowBe4

Stop Phishing Security Breaches

Your end-users are the weak link in your network security. Today, your employees are frequently exposed to advanced phishing attacks, and over 90% of data breaches start with a phishing attack.

IT Security specialists call it your 'phishing attack surface'. The more email addresses that are exposed, the bigger your attack footprint is, and the higher the risk. It's often a surprise how many of your addresses are actually out there, and who's.

Find out now which of your email addresses are exposed. The Email Exposure Check (EEC) is a one-time free service. KnowBe4 customers with a Gold package get an EEC sent to them regularly so they can address the issues that are found. An example would be the email address and password of one of your users on a crime site. Fill out the form and we will email you back with the list of exposed addresses. The number is usually higher than you think.

Sign Up For Your Free Email Exposure Check Now:
http://info.knowbe4.com/free-email-exposure-test-0-0

KnowBe4

Is Phishing Really Going Down? No, It Is Only Migrated To Mobile

TrendMicro's Pierluigi Paganini wrote: "Recent studies of principal security firms revealed that phishing activities in the last years have increased exponentially, cybercrime is targeting every sector from industry to government institutions and of course private citizens. RSA’s October Online Fraud Report 2012 confirmed a large increase in phishing attacks, up 19% over the second half of 2011.

The total loss for various organizations comes to $2.1 billion over the last 18 months, these are amazing figures that gives an idea of the amplitude. RSA declared that it detected around 33,000 phishing attacks each month worldwide in 2012, 60% of blocked attacks originated from U.S. servers, on the other side the countries most targeted are US hit by 26% percent of the global volume of phishing attacks followed by U.K. at 46%.

Since the beginning of the year, security experts have noticed a slowing of the progression above, certainly due to the monitoring activities of the major security companies, but do not be fooled because we’re observing a significant number of phishing attacks against mobile platforms." Here are some very interesting graphs:
http://securityaffairs.co/wordpress/12593/cyber-crime/is-phishing-really-going-down-no-it-is-only-migrated-to-mobile.html

KnowBe4

Who Loses Their Data And How?

The Harvard Business Review has a fascinating blog post based on data from auditing firm KPMG. Sarah Green spoke with Greg Bell, their information protection lead. The article talks about how they are getting this data, how the threats are evolving, which industries are most at risk, which countries lose the most data and a whole host of other interesting things. Here is a quick summary of the results.

Read the full blog post here.
http://blogs.hbr.org/hbr/hbreditors/2013/03/the_companies_and_countries_lo.html

KnowBe4

Android Integrated With McAfee Whitelisting

Intel subsidiary McAfee announced the first white-listing security tool for Android embedded systems. It's called 'McAfee Application Control for Android' and this tool is unique in the sense that it resides in the Android operating system kernel. That means it can prevent the installation and/or execution of a malicious app that the user might unwittingly try to install. That means protection at the application layer as well as the user level, which is a pretty big deal.

McAfee Application Control for Android blocks unauthorized apps and changes on fixed-function, point-of-service infrastructures, including retail devices, medical devices, industrial control systems, office equipment, gaming devices, automotive and various military and aerospace applications. Too bad you cannot get it yet for your Android-based phone or tablet.

KnowBe4

Cyberheist 'FAVE' LINKS:

* This Week's Links We Like. Tips, Hints And Fun Stuff.

Dan Rice of Hadouken returns with ‘People Are Awesome 2013', a sequel to his 2011 viral hit. Jawdropping stunts:
http://www.flixxy.com/people-are-awesome-2013.htm#.UUTQ7dash8E

I wish I had a wingsuit, but I don't know about doing THIS...
http://www.flixxy.com/urban-wingsuit-flying-rio-de-janeiro.htm

iRACER: The world’s first build at home electric racing car kit. I want one:
http://www.gizmag.com/iracer-kit-electric-race-vehicle-kit-development/26600/?

Magician Michael Carbonaro is a magic clerk at a convenience store - with hidden cameras placed by the Jay Leno Show:
http://www.flixxy.com/michael-carbonaro-the-magic-clerk.htm

Watch this amazing new magic trick called 'The Grid' by Richard Wiseman:
http://www.flixxy.com/the-grid-magic-card-trick.htm

A group of young girls in black and white tights perform a trippy dance to the popular tune of German folk-rock polka band Hiss:
http://www.flixxy.com/black-and-white-tights-dance.htm

Even though they are undoubtedly the Internet's favorite animal, cats can be real jerks sometimes...
http://www.flixxy.com/cats-can-be-jerks-sometimes.htm

Felix Baumgartner Test Drives the 261 mpg(!) Volkswagen XL1:
http://www.flixxy.com/felix-baumgartner-test-drives-the-261-mpg-volkswagen-xl1.htm

HERB the robot butler takes part in Oreo cookie challenge:
http://youtu.be/gBgfpl0lcIo

New medical procedures. Use an APP on your smartphone instead of medicine! But just think about the security issues here. Hacked medical devices. Yikes:
http://www.msnbc.msn.com/id/21134540/vp/50582822#50582822

World Champion of Magic Greg Frewin at the French TV Show 'The Worlds Greatest Cabaret'. This guy is not bad, wait till the very end!:
http://www.flixxy.com/world-champion-of-magic-greg-frewin.htm#.UUTLrNash8E

For the kids. Lion cub and dog are best friends:
http://www.flixxy.com/lion-and-dog-are-best-friends.htm#.UUTNLdash8E

Beginning with the bite of the forbidden fruit in the Garden of Eden, the Trojan horse, Leaning Tower of Pisa, Sack of Rome, Chicago Fire, 2012 NFL Referee Strike and the Liberty Bell, Mayhem (played by actor Dean Winters) causes fender benders and the collapse of a garage roof:
http://www.flixxy.com/forbidden-apple-2013-super-bowl-commercial.htm

"You Know You Have Been in Infosec Too Long When…"
http://www.tripwire.com/state-of-security/off-topic/you-know-you-have-been-in-infosec-too-long-when/

 
KnowBe4
Facebook LinkedIn Blog Twitter YouTube YouTube

Topics: Cybercrime



Subscribe to Our Blog


Comprehensive Anti-Phishing Guide




Get the latest about social engineering

Subscribe to CyberheistNews