[HEADS UP] Carnival Corp. is the Next Victim of a Ransomware Attack

Aug 18, 2020 2:19:05 PM By Stu Sjouwerman

Carnival Corporation said it detected a ransomware attack that accessed and encrypted a portion of one brand’s information technology systems over this past weekend, according to Cruise ...

Credential Stuffing Attacks Shut Down Canada's Revenues Service

Aug 18, 2020 12:47:25 PM By Stu Sjouwerman

The Canada Revenue Agency is investigating two online hacking incidents affecting the personal information of thousands of Canadians, according to CBC News.

U.K. Firms Have Dismissed Employees for Breaching Cybersecurity Policy Since COVID-19 Pandemic

Aug 18, 2020 11:23:11 AM By Stu Sjouwerman

Almost two-fifths of business decision-makers have fired employees because of a cybersecurity policy breach since the pandemic began, a survey has found.

ABC News Interviewed Me on South Carolina Man Finding Personal Information of WWE Star and Raiding Her Home

Aug 18, 2020 10:13:04 AM By Stu Sjouwerman

A man in South Carolina was just arrested after finding the personal information of WWE Star Sonya Deville, and ABC Action News Tampa Bay interviewed me about how we can prevent ...

CyberheistNews Vol 10 #34 My Lazy Sunday Afternoon Was Interrupted...

Aug 18, 2020 9:38:48 AM By Stu Sjouwerman

The Celebrities Don't Know You, and You Don't Know Them

Aug 18, 2020 8:48:00 AM By Stu Sjouwerman

Over the past four months, the UK’s National Cyber Security Centre (NCSC) has shut down more than 300,000 URLs linking to investment schemes that fraudulently claim to be endorsed by ...

RedCurl APT Uses Spear Phishing to Conduct Corporate Espionage

Aug 18, 2020 8:26:36 AM By Stu Sjouwerman

A previously unobserved APT group called “RedCurl” has been launching cyber espionage campaigns against organizations around the world since at least 2018, according to researchers at ...

Trying for a win, win, win game. Listen to this 5-minute interview with me.

Aug 17, 2020 10:34:42 AM By Stu Sjouwerman

Cyberwire has a short-form podcast called Career Notes and interviewed me recently. They said: "Founder and CEO Stu Sjouwerman takes us on a journey of how his career developed from ...

Phishing with Canva: Bad Guys Exploit Graphic Design Platform

Aug 17, 2020 8:54:15 AM By Eric Howes

Late last year we reported that Microsoft Sway, an online presentation program, was being exploited by malicious actors to host malicious files used in phishing attacks. Since then, ...

YIKES: Fancy Bear Linux Rootkit

Aug 14, 2020 2:31:27 PM By Stu Sjouwerman

Heads-Up! The CyberWire staff wrote: "The US National Security Agency and Federal Bureau of Investigation yesterday issued a joint alert concerning a new malware toolset operated by ...

43,000+ NHS Staff Hit With Phishing Emails Since March

Aug 14, 2020 11:27:25 AM By Stu Sjouwerman

A Freedom of Information (FOI) request revealed that over 43,000 National Health Service (NHS) staff have had phishing emails slip through the cracks and into their inboxes in the past ...

COVID-Themed Phishing Scams Are on Their Way Out While Some Scammers Use a Vaccine as a Last-Ditch Effort

Aug 13, 2020 2:33:47 PM By Stu Sjouwerman

The latest data on COVID-related phishing scams from security researchers at CheckPoint comes with some good news and insightful trends that may help keep you secure.

Having a Wonderful Time, Wish Your Data Were Here

Aug 13, 2020 11:30:11 AM By Stu Sjouwerman

The US Department of Health and Human Services (HHS) Office for Civil Rights (OCR) issued an alert warning that someone is impersonating the OCR and sending fraudulent postcards to ...

[On-Demand] The Best Ways to Stop Malware and Ransomware That No One Else Will Tell You

Aug 13, 2020 10:15:42 AM By Stu Sjouwerman

With malware attacks on the rise, making sure you keep your organization safe from a costly breach is a top priority. The two best things you can do to stop malware and ransomware attacks ...

Pressure, Peer and Otherwise: Ransomware and Data Theft Go Hand-In-Hand

Aug 13, 2020 9:01:33 AM By Stu Sjouwerman

Data theft is now a well-established element of ransomware attacks, according to John Shier, a Senior Security Expert at Sophos. In a blog post (summarized by iTwire), Shier noted that in ...

FOLLOWUP: Small Business Administration Phishing Campaign

Aug 13, 2020 8:46:59 AM By Eric Howes

On Wednesday August 12 the Dept. of Homeland Security issued an alert concerning a phishing campaign using malicious spoofs of the Small Business Administration's (SBA) web site. The ...

Phishing Golden Hour

Aug 12, 2020 6:08:44 PM By Roger Grimes

In emergency healthcare settings, the “golden hour” is the time between when a patient suffering a life threatening event (e.g., heart attack, stroke, aneurysm, etc.) is most likely to ...

My lazy Sunday afternoon was interrupted...

Aug 12, 2020 5:19:33 PM By Stu Sjouwerman

My lazy Sunday afternoon was interrupted with what appeared to be a prank, a social engineering attempt, or something else that remains to be identified.

Paying the Ransom After a Ransomware Attack May Become More Complicated, Thanks to the U.S. Treasury

Aug 12, 2020 4:10:51 PM By Stu Sjouwerman

With many organizations considering to pay the ransom should they experience an attack, new guidance from the U.S. Treasury may put a damper on an organization’s ability to pay.

[Heads Up] Apparently Slack Phishing Got So Bad They Had To Do Something About It

Aug 12, 2020 10:09:15 AM By Stu Sjouwerman

Slack has announced a slew of new security features, certificates and integrations, including a verification system that adds an additional layer to protect against phishing scams.

Security Awareness Training Blog

View Topics