FireEye's Mandia on SolarWinds hack: 'This was a sniper round'

Dec 22, 2020 11:16:19 AM By Stu Sjouwerman

Joe Warminsky at Cyberscoop wrote: "The foreign espionage operation that breached several U.S. government agencies through SolarWinds software updates was unique in its methods and ...

Just 8% of U.K. Firms Offer Regular Security Training

Dec 22, 2020 11:06:01 AM By Stu Sjouwerman

A majority of UK businesses are failing to adequately train their remote working employees to spot security threats, according to new research from iomart. The cloud services company ...

Wedbush Analyst: "Cybersecurity spending will increase 20% in 2021 Due To SolarWinds."

Dec 22, 2020 10:59:16 AM By Stu Sjouwerman

Wedbush senior tech analyst Dan Ives says cybersecurity spending will increase by 20% in 2021 as more companies ramp up protection following the SolarWinds hack that compromised state ...

[HACK ALERT] Here Is A Whole New Way Cyber Criminals Empty Out Your Bank Account

Dec 22, 2020 10:46:07 AM By Stu Sjouwerman

Researchers at IBM discovered a brand new type of massive banking fraud campaign that raked in millions of dollars over the course of a few days before it was put to a stop.

CyberheistNews Vol 10 #52 [Heads Up] Recent SolarWinds MFA Bypass Attack Pushes the Limits

Dec 22, 2020 9:43:04 AM By Stu Sjouwerman

Eye-Opening Password Predictions: Remote Work Will Increase Risk for Data Breaches

Dec 21, 2020 2:12:55 PM By Stu Sjouwerman

Ponemon's State of Password and Authentication Security Behaviors Report analyzes password and security behaviors over time with similar trends. We wanted to deep dive into the reports of ...

No, it's not You in the Facebook Video... it's a Phishing Link

Dec 21, 2020 8:28:13 AM By Stu Sjouwerman

Scammers are using compromised Facebook accounts to circulate phishing attack to the hacked accounts’ friends, according to Paul Ducklin at Naked Security. The links are sent via Facebook ...

KnowBe4 is not a SolarWinds Orion Customer

Dec 18, 2020 10:45:53 AM By Stu Sjouwerman

More and more companies are putting out press releases that they have found malware in their networks because of the recent SolarWinds supply chain attack. Just today Microsoft admitted ...

MountLocker Ransomware Provides a Glimpse into What’s Next in Ransomware-as-a-Service

Dec 18, 2020 8:28:23 AM By Stu Sjouwerman

This family of ransomware is growing in popularity with affiliates, providing them with two attack variants and appears to be establishing a new “as-a-service” business model.

Beware! The Holidays Bring the Worst Out in Cyber Scammers

Dec 18, 2020 8:26:19 AM By Stu Sjouwerman

With emotions running high, time running out to get that last needed gift, and a returned focus on family and what’s truly important, scammers are taking advantage at every turn.

New Office 365 Credential Scam Uses a Received Fax to Trick Victims

Dec 18, 2020 8:22:43 AM By Stu Sjouwerman

A clever mix of brand impersonation, a supposedly received message, a thumbnail preview, and new spoofed Office 365 logon pages are all that’s needed to trick victims into giving up ...

The Cost of Ransoms Demanded and Paid Double in 2020!

Dec 18, 2020 8:19:18 AM By Stu Sjouwerman

According to new data from UK cyber insurer Beazley shows ransomware claims have increased materially and calls for organizations to employ a layered cyber defense.

Over Half of Users Admit to Reusing the Same Password on Multiple Accounts

Dec 17, 2020 3:50:39 PM By Stu Sjouwerman

New data reported earlier this year by Security Magazine shared a report from Secure OAuth that 53% of users reuse the same passwords on multiple accounts. Among those 44% admit to using ...

A Christmas poem to remind everyone to stay safe for the Holidays!

Dec 17, 2020 12:48:52 PM By Stu Sjouwerman

KnowBe4 customer , Eric McManis from Armellini Logistics Corporation sent us a Christmas poem that he sent out to his organization to remind everyone to stay safe for the Holidays! I hope ...

[NEW PhishER Feature] Use Security Roles to Create a Multi-Tiered Incident Response System in PhishER

Dec 17, 2020 9:48:57 AM By Stu Sjouwerman

You asked, we listened! We're excited to introduce the new Security Roles feature within your PhishER platform! You now have the ability to create different user roles for your security ...

[INFOGRAPHIC] Holiday Phishing Red Flags to Watch Out For

Dec 17, 2020 8:26:15 AM By Stu Sjouwerman

Phishing attacks never slow down during the holiday season. Experian reported that 1 in 4 victims fell victim to fraud during the holidays.

Learning More on Social Engineering Tactics are the Key to Preventing Phishing Expeditions

Dec 17, 2020 8:24:48 AM By Stu Sjouwerman

Understanding social engineering attacks is the key to thwarting them, according to Juan Badell and Russell Petrich, content designers for Sophos’s phishing simulation service. Badell and ...

Solarwinds MFA Bypass Attack Pushes Limits

Dec 16, 2020 12:59:35 PM By Roger Grimes

Excellent, long-time, tech reporter Dan Goodin reported in Ars Technica that the recent Solarwinds’ supply chain attack involved hackers bypassing a popular multi-factor authentication ...

University-themed Phishbait Angles for Students

Dec 16, 2020 8:21:15 AM By Stu Sjouwerman

Researchers at Zix have observed phishing emails sent from legitimate but compromised university email accounts, impersonating the university’s IT department. The emails notified users ...

CyberheistNews Vol 10 #51 [HEADS UP] They're Here! The COVID-19 Vaccine Phishes Finally Arrive

Dec 15, 2020 9:37:40 AM By Stu Sjouwerman

Security Awareness Training Blog

View Topics