Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

77% of the FTSE 100 Have Compromised Credentials - What is your Stolen-password percentage?

Nov 29, 2017 11:06:44 AM By Stu Sjouwerman
IT security vendor Anomali, released a new report showing the volume of stolen credentials of FTSE 100 employees tripled In 2017, and a whopping 77% of the FTSE 100 were exposed with an ...
Continue Reading

Yahoo Hacker Arrested And Admits Working for The Russians

Nov 29, 2017 9:42:02 AM By Stu Sjouwerman
The Kazakhstan-born Canadian citizen Karim Baratov (22) has pleaded guilty to massive 2014 Yahoo hack that affected three billion accounts. He admitted that he generally spearphished his ...
Continue Reading

Stolen Passwords Of FTSE 100 Employees Tripled In 2017

Nov 29, 2017 7:21:09 AM By Stu Sjouwerman
The Financial Times Stock Exchange 100 share index is an average of share prices in the 100 largest, most actively traded companies on the London Stock Exchange. IT security vendor ...
Continue Reading

Surface Web vs. Deep Web vs. Dark Web: Differences Explained

Nov 28, 2017 7:35:00 AM By Stu Sjouwerman
These three terms are often a source of confusion, especially in connection with cybercrime and where that comes from. If you think that search engines like Google (there are more!) know ...
Continue Reading

CyberheistNews Vol 7 #47 Scam of the Week: Warn Your Users About Uber Phishing Attacks

Nov 27, 2017 9:42:01 AM By Stu Sjouwerman
Continue Reading

Baffling FBI silence about Russian phishing attacks on US officials

Nov 27, 2017 6:59:05 AM By Stu Sjouwerman
WASHINGTON – The Associated Press revealed a baffling FBI silence about spear phishing attacks by Russian hackers on US officials like the former head of cybersecurity for the U.S. Air ...
Continue Reading

Something funny happened on the way to repealing Net Neutrality rules...

Nov 26, 2017 1:00:51 PM By Stu Sjouwerman
Sorry to interrupt your Thanksgiving, but this one has had me laughing all afternoon. You might have seen the news that the Trump-era FCC is planning to repeal the Net Neutrality rules ...
Continue Reading

Massive Phishing Attack On Businesses with Evil New Ransomware Strain

Nov 25, 2017 11:02:08 AM By Stu Sjouwerman
The Scarab ransomware strain is updated again and spreads via Necurs botnet in a massive 12.5 million campaign, mostly targeting .com domains. Scarab was spotted June 2017 for the first ...
Continue Reading

Spam was nearly dead, then it became an essential tool for crime and came roaring back

Nov 25, 2017 7:59:50 AM By Stu Sjouwerman
John Christian at TheOutline wrote a post that made me take notice because it neatly summarized the current state of affairs and confirms our own experience: spam has morphed and is back ...
Continue Reading

URGENT - If IT and Marketing are not freaking out about GDPR compliance, you are not paying attention

Nov 24, 2017 3:04:00 PM By Stu Sjouwerman
I found an article about GDPR compliance written by the fine folks of HubSpot, which we use ourselves here at KnowBe4 use for marketing automation. We have customers in Europe, so our ...
Continue Reading

Uber Total Loss: 57 Million Records Stolen But Data Breach Was Hidden For A Year

Nov 22, 2017 7:37:46 AM By Stu Sjouwerman
Oh boy. Uber is known for pushing the limits of the law and has dozens of lawsuits pending against it, but this one went too far and now comes the reckoning. Bloomberg was first to report ...
Continue Reading

[ALERT] Zombie Remote Access Phishing Trojan Kills Antivirus

Nov 20, 2017 10:00:00 AM By Stu Sjouwerman
Almost two years ago we took note of two different write-ups on the Adwind (aka AlienSpy) remote access trojan (RAT), one by McAfee and the other by Fidelis Security. Those pieces caught ...
Continue Reading

CyberheistNews Vol 7 #45 [HEADS-UP] Skeleton in the Closet: 17-Year Old MS Office Flaw Allows Malware Install When User Opens File

Nov 20, 2017 9:59:43 AM By Stu Sjouwerman
Continue Reading

We're Still Not Ready for GDPR? What is Wrong With Us?

Nov 19, 2017 10:30:08 AM By Stu Sjouwerman
Sara Peters, Senior Editor at Darkreading wrote an excellent article about GDPR. It is both reprimanding and encouraging to get off our collective butts and do something about GDPR very ...
Continue Reading

‘Grey’s Anatomy’ Fall Finale Cliffhanger: Hospital Shut Down By Ransomware Attack

Nov 19, 2017 8:24:01 AM By Stu Sjouwerman
Ransomware goes prime time: TV Show Grey's Anatomy characters Bailey and Arizona are unable to access medical records on the computer and an I.T. specialist named Tim notes that cardiac ...
Continue Reading

The future of cyberwar: ​Weaponised ransomware, IoT attacks and a new arms race

Nov 18, 2017 11:03:15 AM By Stu Sjouwerman
Steve Ranger at TechRepublic did a good job summarizing the direction of future threats we are going to have to deal with. "After at least a dozen years in the shadows, cyberwarfare is ...
Continue Reading

Ransomware recovery methods: What does the NIST suggest?

Nov 18, 2017 8:37:09 AM By Stu Sjouwerman
Knowing what ransomware recovery methods are available is important as the threat continues to grow. Expert Judith Myerson at TechTarget outlines what the NIST recommends for enterprises. ...
Continue Reading

Antivirus Software Doing The Complete Opposite And Spreading Malware

Nov 17, 2017 2:01:47 PM By Stu Sjouwerman
Nicknamed AVGater by Austria-based security consultant Florian Bogner, he discovered an exploit within Antivirus software that takes advantage of the “restore from quarantine” function ...
Continue Reading

Skeleton in the closet: 17-year old MS office flaw allows malware install when user opens file

Nov 15, 2017 11:18:35 AM By Stu Sjouwerman
Here is a new pain in the neck! Fix this one ASAP. While the world is still dealing with the threat of 'unpatched' Microsoft Office's built-in DDE feature, researchers have uncovered a ...
Continue Reading

[On-Demand Webinar] Six Cybersecurity Trends Organizations Need to Watch for in 2018

Nov 14, 2017 8:54:25 AM By Stu Sjouwerman
Watch this insider’s perspective of cybersecurity trends to expect in 2018 from our founder Stu Sjouwerman. The list of six predictions are founded on KnowBe4’s deep insight into threats ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews