8-Character Windows NTLM Passwords Can Be Cracked In Under 2.5 Hours

Feb 17, 2019 8:15:08 AM By Stu Sjouwerman

BeauHD posted in Slashdot: "HashCat, an open-source password recovery tool, can now crack an eight-character Windows NTLM password hash in less than 2.5 hours. "Current password cracking ...

Iran indictments show even U.S. intelligence officials are vulnerable to basic phishing schemes

Feb 15, 2019 1:31:01 PM By Stu Sjouwerman

As the story broke about the charges against former U.S. Air Force intelligence specialist who defected to Iran and support targeted hacking against some of her former colleagues, one ...

U.S. Cities Remain at Risk of Cyber Attacks

Feb 14, 2019 7:39:59 PM By Stu Sjouwerman

Recent attacks on city governments have not only provided their attackers with revenue from scams, data breaches, and data held ransom, but have also drawn the attention of other ...

Business Email Compromise, Credential Theft, and Many Other Attack Vectors Surged as High as 5x in Q4 2018

Feb 14, 2019 11:30:32 AM By Stu Sjouwerman

The latest data from Proofpoint shows many types of cyberattacks making massive jumps in comparison to both previous quarters and years.

Cyberheist On Bank Causes Shutdown Of All Operations

Feb 14, 2019 8:51:11 AM By Stu Sjouwerman

Reuters reported that the Bank of Valetta, which accounts for almost half of Malta’s banking transactions, had to shut down all of its operations on Wednesday after hackers broke into its ...

New York State Education Department Proposes New Regulations to Strengthen PII Security

Feb 13, 2019 2:47:23 PM By Stu Sjouwerman

The new proposed amendments seek to protect the personally identifiable information for students and school personnel accessible by both educational agencies and contractors.

Bogus Security Alerts Aren’t From Norton

Feb 12, 2019 10:55:52 AM By Stu Sjouwerman

Con artists are targeting thousands of people with tech support scams that pose as security alerts from Norton Security, researchers at Symantec have found. The phony alerts pop up in the ...

Surge in Email-enabled Healthcare Fraud

Feb 12, 2019 10:49:51 AM By Stu Sjouwerman

Email fraud targeting healthcare professionals has spiked 453% over the past two years, according to a new report by Proofpoint. Proofpoint researchers tracked business email compromise ...

Company Sues Employee After She Falls For USD 250K CEO Fraud Scam

Feb 12, 2019 10:02:32 AM By Stu Sjouwerman

A woman is being sued for sending approx. 250K of her employer's cash to an online fraudster. Patricia Reilly, who was working for the UK Peebles Media Group fell for a CEO Fraud Scam ...

CyberheistNews Vol 9 #7 OUCH! Ransomware Attack Via MSP Locks Customers Out of Systems

Feb 12, 2019 9:42:04 AM By Stu Sjouwerman

You Have A Special Valentine's Day Message!

Feb 11, 2019 5:11:01 PM By Stu Sjouwerman

Another Home Buyer Falls Victim to a Business Email Compromise Scam

Feb 11, 2019 3:57:59 PM By Stu Sjouwerman

A man in Portland, Oregon lost $123,000 after falling victim to a real-estate scam, according to Michele Lerner at The Washington Post. In December, Aaron Cole and his family were about ...

Massive Increases in Trojans and Backdoor Attacks More Than Double, Spelling Trouble for Organizations

Feb 11, 2019 2:24:32 PM By Stu Sjouwerman

Growth in attacks designed to obfuscate access and purpose should put organizations on alert as cybercriminals gain control over endpoints to do just about anything they want.

One-Third of Organizations Aren’t Ready to Combat Cybersecurity Attacks, Despite Increases in Security Spend

Feb 11, 2019 2:21:56 PM By Stu Sjouwerman

The latest data from eSecurityPlanet highlights that organizations have a lot of work to do to ensure they are secure in the face of a shortage of cybersecurity professionals.

New Phishing Attack Uses Google Translate to Spoof Login Page and Fool Victims

Feb 11, 2019 2:18:25 PM By Stu Sjouwerman

A clever use of Google Translate fools victims into believing spoofed authentication requests are being handled by Google itself.

Data Breaches Result in Lost Customer Confidence Costing Organizations More than Just Fines

Feb 11, 2019 2:16:18 PM By Stu Sjouwerman

Consumers have spoken: According to new data, the majority of your organization’s customers won’t do business with you after a data breach and expect you to pay to protect their personal ...

[On-demand Webinar] Get an Insider View Into the Methods and Exploits of the World's Most Famous Hacker, Kevin Mitnick

Feb 11, 2019 2:16:07 PM By Stu Sjouwerman

Many of the world's most reputable organizations rely on Kevin Mitnick, the world's most famous hacker and KnowBe4's Chief Hacking Officer, to uncover their most dangerous security flaws. ...

Phishers Target Anti-Money Laundering Officers at U.S. Credit Unions

Feb 8, 2019 9:58:24 AM By Stu Sjouwerman

Scammers Still Exploit Hijacked GoDaddy Domains

Feb 7, 2019 7:18:05 AM By Stu Sjouwerman

Criminals are still using hijacked GoDaddy domains to launch large-scale spam campaigns, despite GoDaddy taking steps last month to address the authentication flaw exploited by the ...

A Majority of Cyberattacks Use Lateral Movement and “Living Off the Land”

Feb 7, 2019 7:08:34 AM By Stu Sjouwerman

The latest from Carbon Black’s 2019 Global Threat Report shows cybercriminals are intent to move from endpoint to endpoint and avoid detection using built-in tools.

Security Awareness Training Blog

View Topics