Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

How the Syrian Electronic Army Hacked The Onion

This is a write-up of how the Syrian Electronic Army hacked The Onion using spear-phising. In summary, they phished Onion employees’ Google Apps accounts via 3 separate methods. From ...
Continue Reading

Cybercrime Targets: C-Level execs, HR managers and System Admins

According to a recent research of Group-IB on cybercrime, senior management is considered among most popular targets.
Continue Reading

Interesting Infection Danger Numbers

Symantec just released a white paper where they compared their product with 6 other enterprise endpoint security products. They had AV-Test do the review, and they included above graph to ...
Continue Reading

Top 5 System Admin Hate Votes

May 22, the question was asked on Spiceworks: "What is your IT-related arch nemesis?". More than 200 replies came in. We tabulated (and somewhat normalized) the main things that generate ...
Continue Reading

The Seven Deadly Social Engineering Vices

(updated June 17, 2015) You may not be aware that there is a scale of seven deadly vices connected to social engineering. The deadliest social engineering attacks are the ones that have ...
Continue Reading

CyberheistNews Vol 3 #22

Continue Reading

Webroot Spots NATO Job Apps Lead To Malware

This one qualifies as a Scam Of The Week and it's a good one to forward to your employees.
Continue Reading

0-Day Threats and Security Awareness

OK, we all know that there is a lively trade in 0-day threats. Often this is an unknown vulnerability in a popular browser that is not fixed yet. Microsoft recently announced they fixed ...
Continue Reading

Your Opinion Please! Family Online Safety

Continue Reading

CyberheistNews Vol 3, # 21

CyberheistNews Vol 3, # 21
Continue Reading

End-user awareness is the missing link in cyber security

This article appeared originally at Government Security News Fri, 2013-05-17 03:56 PM By: Megan Horner Megan Horner Nobody can argue that cyber security and data privacy have become hot ...
Continue Reading

Phishing Scam Of The Week: Walmart.com

Wal-Mart took special effort this week and warned customers of an unusually 'high quality' phishing email that tries to get personal and credit information. They stated on their corporate ...
Continue Reading

Cybercrime Attack Vector Of Choice: Employees

Today, employees are the low hanging fruit for cybercrime. Organizations counter this with what is called 'Security Awareness Training' (SAT), but modern SAT is far removed from how it ...
Continue Reading

Facebook 'Fraud-as-a-Service' Promoted Via Google

You may have read CyberheistNews Vol 3, #19, which had 'Fraud-as-a-service Goes Mainstream' as its headline. Here is a follow up on that. You can now download apps that hack Facebook, and ...
Continue Reading

CyberheistNews Vol 3 #20

Latest Attack Trend: 'Persistent Spear Phishing'
Continue Reading

1st Quarter 2013: 6.5 Million New Malware Strains Built

The Research Team of Panda Labs just reported that between January and March of this year, more than 6.5 million new malware strains were built, and that of those 75% were trojans. In ...
Continue Reading

We hired 3 more people, the office is getting full !

We had three more people start this week, two in sales and one to help our channel partners. The office is getting full! Our Kevin Mitnick Security Awareness Training is doing GREAT. We ...
Continue Reading

Don't Get Hijacked On Social Media

John Mello over at Chief Security Magazine wrote today: "Online social networkers invite data marauders to compromise their accounts by choosing a convenient but risky option offered by ...
Continue Reading

CyberheistNews Vol 3, # 19

CyberheistNews Vol 3, # 19 Fraud-as-a-service Goes Mainstream
Continue Reading

Do This Phishing IQ Test!

Did you know that SonicWall has an interesting Phishing IQ test on their website?
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews