Smishing Down Under

Apr 17, 2019 11:18:02 AM By Stu Sjouwerman

Banking malware is being installed on Android devices via malicious links in SMS messages, CRN reports. Cisco Talos discovered the malware being advertised on an exploit forum, and found ...

Ransomware Attack Hits Stratford City Hall

Apr 17, 2019 11:12:40 AM By Stu Sjouwerman

Stratford city hall was the target of an apparent cyber-attack, but officials do not believe personal information was compromised.

I need your input and I've got a ONE-Question Super Short Survey!

Apr 17, 2019 10:36:26 AM By Stu Sjouwerman

I need your input and I've got a ONE-Question Super Short Survey! Are you lacking a (free) tool that gives you more insight about social engineering risks that your users are exposed to? ...

Phishing Attack Spoofs Email Security Firm

Apr 16, 2019 10:50:49 AM By Stu Sjouwerman

Ray Shultz at MediaPost's EmailINSIDER wrote about a nasty new way that the bad guys are trying to establish trust: spoofing the return path and received email headers of Barracuda in an ...

How And Why KnowBe4 Got An 800+ Million Valuation

Apr 16, 2019 10:05:52 AM By Stu Sjouwerman

I found a great article by Rey Mashayekhi at Fortune Magazine where Rey interviews KnowBe4 investor KKR Managing Director Vincent Letteri:

[SCAM OF THE WEEK]: Notre Dame Disaster Causes FireStorm Of Social Engineering And Misinformation

Apr 16, 2019 7:17:33 AM By Stu Sjouwerman

The Notre Dame Cathedral in Paris caught fire and was barely saved from total destruction. Millions of people visit every year and hundreds of millions feel a powerful, and personal, ...

Island Hopping Grows in Popularity as Attackers use One Victim to Create the Next

Apr 16, 2019 6:45:43 AM By Stu Sjouwerman

Cybercriminals no longer see your organization as just their next target; they see the organization as a valuable source of intel and the launch point for their next attack. In business ...

Insurers Discuss What to Expect from a Ransomware Attack, and How to Defend Yourself Against One

Apr 16, 2019 6:41:35 AM By Stu Sjouwerman

Ransomware tops the list of attacks for insurers of the food and beverage industry. Outdated software and lax user concern for security controls provide attacker with a way in.

Staff and Students Put School Districts at the Greatest Risk of Cyber Attack

Apr 16, 2019 6:35:25 AM By Stu Sjouwerman

Inadvertent sharing, phishing attacks, and ransomware top the list of attack vectors, with teachers, students, and vendors all contributing to the risk of breach.

Spycatching: Social Engineering and the FBI's Insider Threat Experience

Apr 15, 2019 5:11:52 PM By Stu Sjouwerman

We’ve recently shared a link to a podcast, “The Ghost and the Mole,” which revisits the infamous case of FBI Special Agent turned Russian spy Robert Hanssen. Before dismissing this as ...

CyberheistNews Vol 9 #16 The City of Tallahassee Lost Half a Million Dollars in an Insidious Payroll Attack

Apr 15, 2019 9:55:52 AM By Stu Sjouwerman

Extortionists Threaten Victims with WannaCry Ransomware

Apr 15, 2019 6:37:32 AM By Stu Sjouwerman

An email extortion scam is threatening victims with DDoS attacks and WannaCry ransomware, according to researchers at Avast. The scammers claim to have hacked the victim’s network and ...

[PODCAST] The ghost and the mole; Eric O'Neill's Gray Day.

Apr 15, 2019 6:30:42 AM By Stu Sjouwerman

Eric O’Neill is a former FBI counterintelligence and counterterrorism operative, and founder of the Georgetown Group, a security and investigative firm, as well as national security ...

Reuters: "Cybersecurity Firm Cofense Says Pamplona To Sell Stake After U.S. Probe"

Apr 11, 2019 7:01:24 AM By Stu Sjouwerman

(Reuters) - U.S. cybersecurity firm Cofense Inc said on Wednesday that buyout firm Pamplona Capital Management is seeking to sell its stake in the company following a year-long probe by ...

What's The Best Name? ThreadJacking or Man-in-the-Inbox Attacks?

Apr 10, 2019 2:23:33 PM By Stu Sjouwerman

We are seeing a new type of attack popping up more and more. Bad guys send a phishing attack and steal the credentials of your employee. But they stay under the radar and lurk for a while ...

Get Ready for the First Wave of AI Malware

Apr 10, 2019 10:41:43 AM By Stu Sjouwerman

This is an excerpt from an article in SecurityWeek by Gunter Ollmann, who is currently the CSO of Microsoft’s Cloud and AI Security division. He is a seasoned information security leader.

Ottawa City Treasurer sends $128,000 to fraudsters in email phishing scam

Apr 10, 2019 7:05:29 AM By Stu Sjouwerman

The treasurer of the city of Ottawa, Marian Simulik, fell for a business email compromise (BEC) scam and sent $100,000 to a scammer, the city’s auditor general revealed this week. Simulik ...

[Heads-up] Survey Finds 82% Of You Are Impacted By Payment Fraud

Apr 10, 2019 6:53:10 AM By Stu Sjouwerman

Payment fraud continues to soar, as a record 82 percent of organizations reported incidents in 2018, according to the 2019 AFP Payments Fraud & Control Survey, underwritten by J.P. ...

A Powerful Malware That Tried To Blow Up A Saudi Plant Strikes Again

Apr 10, 2019 6:39:02 AM By Stu Sjouwerman

A highly capable malware reportedly used in a failed plot to blow up a Saudi petrochemical plant has now been linked to a second compromised facility.

Organizations Face a 63% Likelihood of Being the Victim of Successful Cyberattack in Next 12 Months

Apr 10, 2019 6:27:56 AM By Stu Sjouwerman

The latest data from 1,200 IT organizations shows organizations seeing attacks as inevitable and, for some industries, successful compromise as even more a given.

Security Awareness Training Blog

View Topics