Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

SANS: "Less Than Half of Cyberattacks Detected via Antivirus"

Jul 18, 2018 1:19:21 PM By Stu Sjouwerman
We have been saying here for a while that antivirus is dead, but SANS just confirmed it in a new report that starts with: "Companies are buying next-gen antivirus and fileless attack ...
Continue Reading

UK SMEs: Know Your Enemy. Plan Your Defense

Jul 17, 2018 1:13:33 PM By Stu Sjouwerman
Organizations in the UK with 250 employees or less need a solid understanding of the attack potential, methods used, and how to prepare.
Continue Reading

CyberheistNews Vol 8 #28

Jul 17, 2018 9:35:31 AM By Stu Sjouwerman
Continue Reading

Ransomware Mid-Year Update: It’s Worse Than Ever

Jul 16, 2018 4:59:06 PM By Stu Sjouwerman
We’re finally getting a look at how much ransomware attacks have been seen in the wild in the first half of 2018 – and the numbers are astounding.
Continue Reading

Another Hacking Scandal? Russians could be behind 'cyber caliphate'

Jul 16, 2018 7:13:30 AM By Stu Sjouwerman
The US Senate is asking the Justice Department to look into the possibility that an Islamic extremist hacking group was actually the work of the Russian government.
Continue Reading

Russian Indictment: They Used Criminal Tradecraft like Spearphishing To Hack The Democratic Party

Jul 15, 2018 2:42:39 PM By Stu Sjouwerman
The email arrived in Hillary Clinton’s campaign chairman John Podesta’s inbox around March 19, 2016, during the height of the presidential primaries, spoofed to look like a standard ...
Continue Reading

What Would You Like To Ask Kevin Mitnick About Social Engineering?

Jul 14, 2018 5:02:39 PM By Stu Sjouwerman
Here's your chance. Late August we'll do a live webinar with Kevin, and he asked me to find out what questions you have for him regarding social engineering, so we can cover them in this ...
Continue Reading

Bad guys use Google's Golang to cross-compile multi-platform malware

Jul 14, 2018 4:34:36 PM By Stu Sjouwerman
Here is the bad news: The use of Google's Golang (also called Go) programming language allows attackers to cross-compile malware for use on multiple platforms, making potential attacks on ...
Continue Reading

New Report: Mobile Phishing on the Rise

Jul 13, 2018 1:28:53 PM By Stu Sjouwerman
With users being three times more likely to click on a suspicious link on their mobile device, along with over half of mobile users tapping on a phishing URL, mobile phishing is a bigger ...
Continue Reading

[Scam Of The Week] Amazon Prime Day Is Only 4 days away

Jul 12, 2018 4:35:15 PM By Stu Sjouwerman
It's a prime opportunity for the bad guys to send a raft of phishing attacks. We do have a "Free Amazon Prime Account" template that we just modified to fit a Prime Day-style scam. It's ...
Continue Reading

From the Phishing Archives: Just How Far Will Cybercriminals Go for a Scam? Apparently into Outer Space.

Jul 12, 2018 11:08:53 AM By Stu Sjouwerman
The Nigerian Prince scam was found taking a turn upwards to the stars, seeking your help to bring a poor lonely astronaut home.
Continue Reading

Do You Have A Millennial Security Awareness Training Gap?

Jul 12, 2018 11:04:51 AM By Stu Sjouwerman
Unlike previous generations, millennials have used (and trusted) technology all their lives. So, does it cause a gap in your organization’s Security Awareness Program?
Continue Reading

North Korea Brings Light to a “Cool” Way to Spread Malware

Jul 12, 2018 11:02:27 AM By Stu Sjouwerman
In the midst of all the political talk about the recent summit between the United States and North Korea, one particular gift caught the eye of security experts.
Continue Reading

Sextortion Phishing Campaign Uses Recipient's Hacked Passwords

Jul 12, 2018 10:31:33 AM By Stu Sjouwerman
Krebs on Security has posted a new item: "Here's a clever new twist on an old email scam that could serve to make the con far more believable. The message purports to have been sent from ...
Continue Reading

[Heads-Up] New Deceptive Strains Of Payroll Phishing: "Because that's where the money is..."

Jul 10, 2018 3:48:50 PM By Stu Sjouwerman
Most readers will probably be familiar with the story of bank robber Willie Sutton who, after being nailed by the cops, was asked why he robbed the bank. His answer (undoubtedly delivered ...
Continue Reading

Court Ruling: Chubb Insurance Unit Crime Policy Covers ‘Spoofed’ Phishing Wire Transfer

Jul 9, 2018 2:50:02 PM By Stu Sjouwerman
Very interesting article in the Insurance Journal. In a closely-watched case on insurance coverage in an age of expanding cyber risk, a federal appeals court in New York has upheld a ...
Continue Reading

Don’t Catch a Case of the (Gand)Crabs!

Jul 9, 2018 9:36:38 AM By Stu Sjouwerman
As irritating as a real case of the crabs can be, organizations now have to deal with GandCrab v4 – a more dangerous and invasive newly released strain of the notorious ransomware. If you ...
Continue Reading

CyberheistNews Vol 8 #27 [Heads-up] Employees Sue Company for W-2 Phishing Scam. Federal Court Decides Triple Damages

Jul 9, 2018 9:32:32 AM By Stu Sjouwerman
Continue Reading

"What Exactly Are The Risks Of Breached Passwords?"

Jul 7, 2018 9:08:06 AM By Stu Sjouwerman
First of all, the term means that a particular password is available in a data breach on the dark web–and there are billions of breached passwords out there. KnowBe4 just released a free ...
Continue Reading

Context is the Key to Phishing Success

Jul 7, 2018 7:12:55 AM By Stu Sjouwerman
According to the latest report from NIST, one of the most critical factors around whether a user clicks a phishing email or not is context.
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews