Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

A New Attack Category is Born: You Now Need to Also Worry About Evasive Spear Phishing

Oct 16, 2019 6:43:17 AM By Stu Sjouwerman
Researchers have combed through 25 million emails and found a new method of attack that blends two previously seen attack types combined into a single attack.
Continue Reading

MSPs Should Offer Security Awareness Training as Part of a Complete Security Service Offering

Oct 16, 2019 6:33:24 AM By Stu Sjouwerman
The opportunity to both better secure customers while generating recurring revenue through customer end-user education is ripe for the taking for MSPs focusing on security services.
Continue Reading

What Footballers Wives Can Teach Us About Cybersecurity

Oct 15, 2019 12:00:00 PM By Javvad Malik
Professional football (soccer for my American friends) is big around the world. The English Premier League is among the top in the world, attracting some of the best players, generating ...
Continue Reading

China's Criminal Hacking Spree Created A Boeing Competitor

Oct 15, 2019 10:57:19 AM By Stu Sjouwerman
Crowdstrike just released an explosive report which details the lengths China went to narrow the gap of the technological delta between them and market leaders like Boeing and Airbus.
Continue Reading

CyberheistNews Vol 9 #42 [Heads Up] Virtual Hard Disk Images Containing Malware Are Ignored by Antivirus *and* Windows!

Oct 15, 2019 10:07:31 AM By Stu Sjouwerman
Continue Reading

I Can Phish Anyone

Oct 15, 2019 7:30:00 AM By Roger Grimes
I’m a bit surprised by some aggressive corporate anti-phishing policies which say they will fire anyone for one accidental phishing offense. Send me the names and email addresses of the ...
Continue Reading

CRN: "Kevin Mandia -- Detect Spear Phishing, Lock Down CEO Email To Stay Safe"

Oct 15, 2019 7:10:57 AM By Stu Sjouwerman
Michael Novinson at CRN had a great article that really explains the issues we are dealing with. He started out with: "Spear phishing remains the most common way for adversaries to ...
Continue Reading

Simjacking is Still a Problem, British Food Writer Lost £5,000

Oct 15, 2019 6:50:20 AM By Stu Sjouwerman
British food writer Jack Monroe lost £5,000 due to a simjacking attack, the BBC reports. In a series of tweets, Monroe said someone had taken over her phone number and used the access to ...
Continue Reading

It’s Baaaaaaaack! Emotet Trojan Rears Its Ugly Head Once Again After a 3-Month Vacation

Oct 15, 2019 6:42:38 AM By Stu Sjouwerman
One of the most dangerous pieces of malware to-date, this trojan-turned-botnet has come back after a brief hiatus and appears to be a part of a new spear phishing campaign targeting ...
Continue Reading

Cyber Risk Remains a Top Concern for Organizations While Lacking Confidence in Addressing Cyber Threats

Oct 15, 2019 6:37:48 AM By Stu Sjouwerman
It appears priority and ability to execute are two very different things when it comes to dealing with cyber threats, according to the latest data from Marsh and Microsoft.
Continue Reading

Extremely Embarrassing 250,000-record Data Breach At Hookers.nl

Oct 14, 2019 10:50:12 AM By Stu Sjouwerman
The data of 250,000 users of Hookers.nl, a forum where experiences with prostitutes and escorts are exchanged, have been stolen and offered for sale on the internet. It concerns e-mail ...
Continue Reading

Why Hack When You Can Con?

Oct 14, 2019 9:42:25 AM By Stu Sjouwerman
Continue Reading

Organizations Experiencing Attacks Rises by 35% as Most Consider Themselves Cyber-Novices

Oct 14, 2019 7:00:00 AM By Stu Sjouwerman
An increase in attacks should equate to a rise in organizational cyber-preparedness. But according to new research from U.K. cyber insurer Hiscox, organizations simply aren’t ready.
Continue Reading

U.S. Organizations Involved with Nuclear Deterrence are the Target of North Korean Phishing Attacks

Oct 14, 2019 7:00:00 AM By Stu Sjouwerman
Using some very sophisticated methods, the Kimsuky group is believed to be behind a spear phishing campaign aimed at stealing U.S. secrets.
Continue Reading

[PODCAST] Understanding Social Engineering and Maintaining Healthy Paranoia

Oct 11, 2019 11:05:37 AM By Stu Sjouwerman
Recorded Future's Guest today was Rosa Smothers, senior vice president of cyber operations at KnowBe4, where she leads KnowBe4’s federal practice efforts, including providing ...
Continue Reading

Virtual Hard Disk Images Containing Malware Are Ignored by Windows and Antivirus Engines

Oct 11, 2019 7:19:53 AM By Stu Sjouwerman
This disturbing find by a CERT researcher demonstrates how attackers can encode malicious files within a Virtual Hard Disk (VHD) image that acts in the same way as a ZIP archive.
Continue Reading

Universities Worldwide are the Target of Phishing Attacks by a Hacking Group Aimed at Stealing Research and Intellectual Property

Oct 11, 2019 7:17:19 AM By Stu Sjouwerman
The Iranian hacker group dubbed Colbalt Dickens has hit over 60 universities around the globe attempting to steal credentials to provide access to sensitive data.
Continue Reading

Many in Utilities Sector Expect Attacks on Critical Infrastructure: Survey

Oct 11, 2019 7:00:00 AM By Stu Sjouwerman
Ed Kovacs at SecurityWeek reported on something that is one of the few things that keep me "awake at night":
Continue Reading

"Staggering" Increase in Business Email Compromise--aka CEO Fraud

Oct 11, 2019 7:00:00 AM By Stu Sjouwerman
Mimecast’s quarterly Email Security Risk Assessment (ESRA) identified millions of dangerous emails making it through security filters, including a 269% increase in business email ...
Continue Reading

Fake News and Deepfakes: Harmless Fun or the Future of Fraud?

Oct 10, 2019 12:35:09 PM By Stu Sjouwerman
We have all seen them. Fake news articles that get passed off as legit sources. Misleading memes. Entertaining videos that swap people’s faces. But what if these deception techniques were ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews