CyberheistNews Vol 8 #9 2,000 Systems Down Due to SamSam Ransomware Infection at Colorado DOT

Feb 26, 2018 9:58:55 AM By Stu Sjouwerman

Annabelle: The Terrifying New Ransomware Variant

Feb 24, 2018 7:50:07 AM By Stu Sjouwerman

A new ransomware variant called Annabelle has been discovered, which seems to have been designed to ‘show off the skills’ of the developer who created it, by being as difficult to deal ...

Which phishing messages have a near 100% click rate?

Feb 23, 2018 3:26:00 PM By Stu Sjouwerman

Zeljika at HelpnetSecurity had a great summary of Wombat's latest State of the Phish report: "Training employees to spot phishing emails, messages and phone calls can’t be done just once ...

The Class Action Litigation Consequences of Business Email Compromise Attacks

Feb 23, 2018 11:41:45 AM By Stu Sjouwerman

Sunil Shenoi, Seth Traxler and Gianni Cutri are partners at Kirkland & Ellis LLP and advise clients on a variety of data security issues, including responding to data security ...

2,000 Systems Down Due To SamSam Ransomware Infection At Colorado Department of Transportation

Feb 22, 2018 7:03:16 AM By Stu Sjouwerman

February 22, the attack hit CDOT’s computers, encrypted files and demanded to pay the ransom in Bitcoins. Security officials shut down more than 2,000 employee computers while they ...

Insider Trading Can Pose Cyber Security Risks Says SEC Chair Clayton

Feb 21, 2018 7:47:48 PM By Stu Sjouwerman

Securities and Exchange Commission Chair Jay Clayton warned today insider trading by executives from undisclosed hacks and weak protections can pose cyber security risks to the reputation ...

Bad news: 43% of login attempts 'malicious' Good news: Er, umm...

Feb 21, 2018 11:19:57 AM By Stu Sjouwerman

The Register in the UK reported: "An extraordinary 43 per cent of all attempted online account logins are malicious, Akamai claims in its latest internet security report. "Credential ...

Now HERE Is A Devious Combo pretexting / vishing / SMS Social Engineering Attack!

Feb 21, 2018 11:03:14 AM By Stu Sjouwerman

Someone on Reddit described how he was the victim of a very sophisticated social engineering attack. Wow, this is crafty. This is the story!: "I have different passwords for every website ...

PHISHING SCHEMES NET HACKERS MILLIONS OF DOLLARS FROM FORTUNE 500

Feb 21, 2018 10:39:36 AM By Stu Sjouwerman

IBM has uncovered sophisticated CEO Fraud campaigns—aka Business Email Compromise—which are successfully targeting Fortune 500 companies. On Wednesday, researchers from IBM's X-Force ...

Cryptojacking Scripts And Phishing Pages Could Soon Invade Your Word Documents

Feb 21, 2018 7:19:39 AM By Stu Sjouwerman

Let's open that doc file and watch the Matrix again. Catalin Cimpanu at Bleepingcomputer had the scoop on this concerning news: "Cryptojacking scripts that mine Monero via JavaScript code ...

[Heads-up] The May 2018 GDPR Deadline May Fuel New Extortion Attempts

Feb 20, 2018 11:21:29 AM By Stu Sjouwerman

Trend Micro has released its annual security roundup, and it shows several interesting trends that will likely continue into 2018. There is bad news and worse news, with a little bit of ...

Global Cyber Security Risk Perception: Highest Management Priorities

Feb 19, 2018 10:50:24 AM By Stu Sjouwerman

Few organizations are highly confident in their ability to manage the risk of a cyber-attack, despite viewing cybersecurity as a top risk management priority, according to a survey ...

CyberheistNews Vol 8 #8 Scam of the Week: Lowlife Scum Exploits Recent Florida Parkland School Shooting

Feb 19, 2018 10:17:54 AM By Stu Sjouwerman

Scam Of The Week: Lowlife Scum Exploits Recent Florida Parkland School Shooting

Feb 16, 2018 7:27:24 AM By Stu Sjouwerman

Just when you think they cannot sink any lower, criminal internet scum are now exploiting the Parkland tragedy in Florida. Unfortunately, from this spot I have been warning about these ...

Edward Snowden returns to U.S.! Oops, nope, it's a phishing scam

Feb 15, 2018 2:19:38 PM By Stu Sjouwerman

Bradley Barth at SCMedia nailed it when he wrote: "No, NSA whistleblower and U.S. fugitive Edward Snowden did not just purchase a 2 terabyte storage plan for iCloud, nor has he moved back ...

Trusted Sites Often Deliver Phishing Attacks: Study

Feb 15, 2018 12:56:15 PM By Stu Sjouwerman

Ray Schultz at MediaPost had a great summary of some troublesome news: "Some of the world’s most popular websites are also the most dangerous when in comes to phishing attacks, according ...

New Research: Number of Microsoft vulnerabilities continues to go up over the years

Feb 15, 2018 12:34:37 PM By Stu Sjouwerman

The number of Microsoft vulnerabilities has more than doubled in the last five years, according to the fifth annual Microsoft Vulnerabilities Report from Avecto. The global security ...

New Multi-Stage Word Phishing Attack Infects Users Without Using Macros

Feb 15, 2018 11:06:24 AM By Stu Sjouwerman

Spam distributors are using a new technique to infect users with malware, and while this phishing attack relies on having users open Word documents, it does not involve social engineering ...

Lazarus Hacking Group back with new phishing campaign targeting banks and bitcoin users

Feb 15, 2018 10:50:24 AM By Stu Sjouwerman

The North Korean Lazarus Hacking Group, suspected to be behind the WannaCry ransomware attack last year, has returned with a new crime spree, this time targeting financial institutions ...

Security Awareness Training Top Priority for CISOs: Report [PDF]

Feb 14, 2018 11:07:32 AM By Stu Sjouwerman

SecurityWeek's Kevin Townsend wrote an excellent summary of the brand new FS-ISAC - "CISO Cybersecurity Trends Study": "Thirty-five percent of CISOs in the financial sector consider staff ...

Security Awareness Training Blog

View Topics