Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

CryptoWall 2.0 Ransomware Moves to TOR network

A new version of the world's most widespread ransomware CryptoWall has migrated to the TOR network. It has been upgraded to version 2.0, and continues to encrypt files so that ransom can ...
Continue Reading

Poll: Employees Clueless About Social Engineering

Fresh from Dark reading: "When it comes to social engineering, Pogo, the central character of a long-running American comic strip, said it best. "We have met the enemy and he is us."
Continue Reading

Who Is The Most Dangerous Cyber Celebrity of 2014?

No, it's not who you think. In recent year it was always a female celebrity like Emma Watson, Heidi Klum or Cameron Diaz that lured web surfers to sites laced with malware. At the end of ...
Continue Reading

Latest Anti Phishing Working Group Report

The latest APWG report came out: "Phishers are criminal, but they do make rational decisions about how to go about their work. They’re in it for the money, and they work to make their ...
Continue Reading

Top 5 eLearning Statistics for 2014 [Infographic]

The rise in eLearning’s popularity isn’t showing any signs of slowing. In fact, judging by the following Top 10 eLearning statistics for 2014, the future of the eLearning Industry is ...
Continue Reading

CyberheistNews Vol 4, # 39 Home Depot Hack Turns Into Criminal Negligence Scandal

CyberheistNews Vol 4, # 39
Continue Reading

Kevin Mitnick Selling 0-day Exploits Is A Good Idea

OK, so here is my take on the recent hatchet job by WIRED Magazine.
Continue Reading

Home Depot Hack Turns Into Criminal Negligence Scandal

Wait for the class-actions lawsuits to get unleashed. The lawyers are going to be over this one like white on rice. Ex-employees from the Home Depot IT technology group are now claiming ...
Continue Reading

CyberheistNews Vol 4, # 38 Home Depot Target Breaches Exploited Old WinXP

CyberheistNews Vol 4, # 38
Continue Reading

New Android Ransomware Strain Locks The Device Twice

Researchers in Russia discovered a new Android ransomware strain which does not lock the device just once but twice. It spreads by using a social engineering trick, disguising itself as a ...
Continue Reading

Home Depot, Target Breaches Exploited Old WinXP Flaw

The massive security breaches and theft of credit card information at The Home Depot and Target have something in common. They were both allowed by a vulnerability in XP embedded that was ...
Continue Reading

Regular Facebook Users Are More Likely To Fall For Phishing Scams

Techcrunch was the first one to report on some very interesting findings:
Continue Reading

CyberheistNews Vol 4, # 37 Symantec: Crypto Ransomware Phishing Up 700 Percent in 2014

CyberheistNews Vol 4, # 37
Continue Reading

Home Depot Hit By Same Russian Hackers As Target

Right after the Target Hack, C-level execs at Home Depot Inc. put together a task force to prevent being the victim of a similar attack. The task force recommended to fully encrypt ...
Continue Reading

Symantec: Crypto Ransomware Phishing Up 700 Percent in 2014

Very interesting data from Symantec. This is fresh from the press and shows Phishing, Spam and Malware trends. There is a PDF with a whole bunch more data, but these are the most relevant ...
Continue Reading

We Are At War In The Digital World

I just read an opinion editorial in the Wall Street Journal that really did clarify the new threat we are faced with this last decade. "Ten years ago, the 9/11 Commission Report triggered ...
Continue Reading

Cyber Criminals Use AEA-256 Crypto To Obfuscate Phishing Sites

The Register said: "Well, at least someone listened to Snowden about privacy... Phishing fraudsters have begun using industry-standard AES-256 encryption to disguise the content of ...
Continue Reading

CyberheistNews Vol 4, 36 Scam Of The Week: Bitcoin Wallet Theft

CyberheistNews Vol 4, # 36
Continue Reading

Five Reasons Why Clicking "Unsubscribe" May Be A Bad Idea

When you get on a mailing list you don't want to be on, it's easy to get off – just click on the "unsubscribe" link. But should you? Sophos Naked Security says maybe not. When you ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews