FBI Warns of Spike in W2 Phishing But Two Central Texas Employers Fall For The Scam

Mar 2, 2018 4:52:10 PM By Stu Sjouwerman

The FBI has joined the IRS in warning that W2 tax form phishing is on the rise. The US tax filing deadline is now less than a month-and-a-half away, and tax-themed phishing is trending ...

[On-Demand Webinar] What Most Computer Security Defenses Are Doing Wrong and How to Fix It

Mar 2, 2018 2:23:39 PM By Stu Sjouwerman

Most companies have huge gaps in their computer security defenses, and can be compromised at will by a determined hacker. The industry even has a term for it: “Assume Breach”. But it ...

Another Ransomware Variant Strikes Colorado DOT Days after Initial Attack

Mar 2, 2018 10:26:26 AM By Stu Sjouwerman

Colorado’s Department of Transportation (CDOT) has suffered an infection from another variant of the same ransomware family that attacked it just days earlier. On 1 March, a variant of ...

UK University Students Lose £100,000 to Phishing

Mar 1, 2018 10:19:19 AM By Stu Sjouwerman

Phishing technique aided by social engineering in the form of using social channels to friend victims and create fake events to get creds. UK university students have been conned out of ...

Almost One Quarter Of Canadians Have Clicked On A Phishing Link

Mar 1, 2018 9:54:12 AM By Stu Sjouwerman

TORONTO, March 1, 2018 /CNW/ - Online payment fraud like phishing is a growing trend, and Canadians are worried about it. According to a new survey conducted by Interac Corp., Canadians ...

Ad Network Uses Advanced Malware Technique To Conceal Cryptojacking Ads

Feb 28, 2018 4:46:51 PM By Stu Sjouwerman

I blogged a few days ago about a method to embed a crypto-mining script in a Word doc. Turns out an ad network has done an even better job! Arstechnica wrote: "Domain-name algorithms are ...

Financial phishing accounts for over 50% of all phishing attacks for the first time

Feb 28, 2018 2:25:50 PM By Stu Sjouwerman

In 2017 Kaspersky Lab’s anti-phishing technologies detected over 246 million user attempts to visit different kinds of phishing pages. Of those, over 53 per cent were attempts to visit a ...

Hackers Invade German Ministries of Defense and Foreign Affairs

Feb 28, 2018 2:17:34 PM By Stu Sjouwerman

Foreign hackers have invaded secure networks of various German government departments. According to German and Dutch media, the Ministries of Foreign Affairs and Defense were among the ...

Organizations Are Failing To Learn From Phishing And Ransomware Attacks

Feb 28, 2018 10:33:17 AM By Stu Sjouwerman

Warwick Ashford, security editor at ComputerWeekly had an interesting observation after reading CyberArk's latest cyber threat report: "Organisations are failing to learn from cyber ...

Defender Comes To Aid Of Older Microsoft Windows Versions

Feb 27, 2018 4:00:04 PM By Stu Sjouwerman

Antivirus companies are not going to like this. Microsoft blogged that their Windows Defender Advanced Threat Protection (ATP) security service soon will be coming to Win7 and Win8.1 ...

CyberheistNews Vol 8 #9 2,000 Systems Down Due to SamSam Ransomware Infection at Colorado DOT

Feb 26, 2018 9:58:55 AM By Stu Sjouwerman

Annabelle: The Terrifying New Ransomware Variant

Feb 24, 2018 7:50:07 AM By Stu Sjouwerman

A new ransomware variant called Annabelle has been discovered, which seems to have been designed to ‘show off the skills’ of the developer who created it, by being as difficult to deal ...

Which phishing messages have a near 100% click rate?

Feb 23, 2018 3:26:00 PM By Stu Sjouwerman

Zeljika at HelpnetSecurity had a great summary of Wombat's latest State of the Phish report: "Training employees to spot phishing emails, messages and phone calls can’t be done just once ...

The Class Action Litigation Consequences of Business Email Compromise Attacks

Feb 23, 2018 11:41:45 AM By Stu Sjouwerman

Sunil Shenoi, Seth Traxler and Gianni Cutri are partners at Kirkland & Ellis LLP and advise clients on a variety of data security issues, including responding to data security ...

2,000 Systems Down Due To SamSam Ransomware Infection At Colorado Department of Transportation

Feb 22, 2018 7:03:16 AM By Stu Sjouwerman

February 22, the attack hit CDOT’s computers, encrypted files and demanded to pay the ransom in Bitcoins. Security officials shut down more than 2,000 employee computers while they ...

Insider Trading Can Pose Cyber Security Risks Says SEC Chair Clayton

Feb 21, 2018 7:47:48 PM By Stu Sjouwerman

Securities and Exchange Commission Chair Jay Clayton warned today insider trading by executives from undisclosed hacks and weak protections can pose cyber security risks to the reputation ...

Bad news: 43% of login attempts 'malicious' Good news: Er, umm...

Feb 21, 2018 11:19:57 AM By Stu Sjouwerman

The Register in the UK reported: "An extraordinary 43 per cent of all attempted online account logins are malicious, Akamai claims in its latest internet security report. "Credential ...

Now HERE Is A Devious Combo pretexting / vishing / SMS Social Engineering Attack!

Feb 21, 2018 11:03:14 AM By Stu Sjouwerman

Someone on Reddit described how he was the victim of a very sophisticated social engineering attack. Wow, this is crafty. This is the story!: "I have different passwords for every website ...

PHISHING SCHEMES NET HACKERS MILLIONS OF DOLLARS FROM FORTUNE 500

Feb 21, 2018 10:39:36 AM By Stu Sjouwerman

IBM has uncovered sophisticated CEO Fraud campaigns—aka Business Email Compromise—which are successfully targeting Fortune 500 companies. On Wednesday, researchers from IBM's X-Force ...

Cryptojacking Scripts And Phishing Pages Could Soon Invade Your Word Documents

Feb 21, 2018 7:19:39 AM By Stu Sjouwerman

Let's open that doc file and watch the Matrix again. Catalin Cimpanu at Bleepingcomputer had the scoop on this concerning news: "Cryptojacking scripts that mine Monero via JavaScript code ...

Security Awareness Training Blog

View Topics