[Heads-up] It's OK To Just Say No To Phone Scams

Jan 31, 2020 6:40:29 AM By Eric Howes

Earlier this week a credit union located in the Midwest United States alerted its members via email to a pair of phone-and-text-based scams designed to trick unwitting users into coughing ...

UN Offices Hacked By SharePoint Vulnerability Says Newly Leaked Report

Jan 31, 2020 5:56:17 AM By Stu Sjouwerman

A newly released report said dozens of United Nations servers were compromised by a remote code execution Microsoft SharePoint vulnerability in July of 2019. The offices targeted were ...

9-Month Compromise of Wawa Results in Data Breach of More Than 30 Million Credit Cards

Jan 30, 2020 10:08:58 AM By Stu Sjouwerman

The breach, discovered in December of last year, is suspected to have led to the theft of and subsequent and sale of one of the largest takes of customer credit card data on the dark web.

Phishing Attacks Target Telecom Companies and their Tools to Facilitate SIM Swapping Attacks

Jan 30, 2020 8:31:04 AM By Stu Sjouwerman

Hackers are phishing telecom workers and “authorized retailers” to steal credentials and gain access to internal company tools. The end game is to modify SIM settings to help with a ...

Judge Orders Insurer to Pay on Small Business Ransomware Claim

Jan 30, 2020 8:27:15 AM By Stu Sjouwerman

Despite attempting to deny the claim revolving around a 2016 ransomware attack, a recent court ruling has caused an Ohio insurer to help cover the losses.

It's the Access, Not the Technology

Jan 30, 2020 8:24:09 AM By Stu Sjouwerman

Exercising a suitable level of operational security is the key to protecting yourself from the consequences of sophisticated cyber attacks, according to Lionel Laurent at Bloomberg. ...

Phishing Telcos for SIM-Swapping

Jan 29, 2020 8:26:50 AM By Stu Sjouwerman

Motherboard reports that SIM swappers are launching phishing attacks against employees at Verizon, T-Mobile, and Sprint in order to hijack customer service tools. Once they have access to ...

‘Ryuk Stealer’ Searches for and Steals Confidential Files from Government, Military, and Law Enforcement

Jan 28, 2020 3:14:04 PM By Stu Sjouwerman

The newest strain of Ryuk ransomware has added new keywords and filetypes to expand its ability to find files with content that can be turned into money through sale, extortion, or ransom.

Latest Ryuk Ransomware Attacks on Oil and Gas Companies Includes Compromising Active Directory

Jan 28, 2020 3:07:49 PM By Stu Sjouwerman

Ransomware has definitely grown up from its infant stages where it simply infected one computer. From spreading through lateral movement, to the use of a victim's email to spread the ...

CyberheistNews Vol 10 #5

Jan 28, 2020 9:52:37 AM By Stu Sjouwerman

A Look Inside the Phishing Tackle Shop

Jan 28, 2020 8:31:51 AM By Stu Sjouwerman

The sophisticated 16Shop phishing kit can now target PayPal and American Express users, according to researchers from ZeroFOX. The researchers came across a new version of 16Shop that ...

Is There Still Hope for Privacy?

Jan 28, 2020 8:15:00 AM By Perry Carpenter

January 28 is Data Privacy Day. In honor of that, I’d like to share some random thoughts on privacy that I put together for a recent webcast with StaySafeOnline.org. And when I say, ...

New Malware Upgrade Steals Browser and Email Client Credentials

Jan 27, 2020 12:28:36 PM By Stu Sjouwerman

Nothing is safe anymore. While tricking users into giving up their credentials still seems pretty impressive, new updates to the FTCode ransomware target the IDs and passwords on your ...

Cyber-Insurance Premiums Jump as High as 25% and May Now Require Co-Insurance

Jan 27, 2020 12:12:18 PM By Stu Sjouwerman

With enough claims under the belts of insurance companies covering data ransoms, data theft, and other types of cyberattack, the risk appears to be shifting somewhat back to the ...

5 Tips to Prevent CEO Fraud

Jan 27, 2020 8:34:51 AM By Stu Sjouwerman

Every day, employees are regularly receiving spoofed emails. Even C-level executives are receiving fraudulent requests to transfer money or provide sensitive information. This form of ...

Contributing to the Delinquency of a Major

Jan 27, 2020 8:33:40 AM By Stu Sjouwerman

A Swedish man used a multitude of forged credentials and a fake school diploma to join the Swedish military, where he maintained the ruse for eighteen years and eventually attained the ...

Scam Of The Week: "Kobe Bryant Dead, Dies in Helicopter Crash"

Jan 26, 2020 4:29:02 PM By Stu Sjouwerman

Today, news broke that Kobe Bryant died in a helicopter crash. His daughter Gigi was also on board and died in the crash. This is a celebrity death that the bad guys are going to be ...

[Heads-up] Will Proposed New Laws Ban Making Ransomware Payments?

Jan 25, 2020 10:21:52 AM By Stu Sjouwerman

The ransomware scourge has become much worse the last 12 months. Highly organized cybercrime gangs have iterated their attacks into a massive extortion racket.

US Government Agency Spear Phished With New CARROTBALL Malware

Jan 24, 2020 3:25:40 PM By Stu Sjouwerman

According to new research posted by Palo Alto Networks' Unit 42, a US Government agency and two non-US foreign nationals professionally affiliated with North Korea were targeted by spear ...

Ransomware Costs Double as Attacks Increase in Downtime and Sophistication

Jan 24, 2020 3:23:15 PM By Stu Sjouwerman

With payouts as much as $780,000, new data shows ransomware threat actors are going after every sized organization doing more damage and asking for more money.

Security Awareness Training Blog

View Topics