The evolution of Business Cards

May 4, 2012 9:44:07 AM By Stu Sjouwerman

I just got a 'perk' over at the Klout site, which gives you a score how you do in Social Media. The perk was 50 business cards, each with a different backside if you want to. The company ...

Symantec Report Says User Behavior is Root of Most Breaches

May 4, 2012 8:51:55 AM By Stu Sjouwerman

Tracy Kitten over at BankInfoSecurity spotted something interesting in Symantec's recent Internet Security Threat Report. This is the upshot: "Which Internet security threats pose the ...

No Exploit Required: How Attackers Exploit Business Logic Flaws

May 4, 2012 4:15:34 AM By Stu Sjouwerman

Kelly Jackson Higgins over at Dark Reading had a very interesting article: "Cyberattacks don't always employ exploited vulnerabilities: Sometimes they prey on weaknesses in the business ...

$1,000 Walmart Gift Card Scam Inflates Your Phone Bill

May 4, 2012 3:04:56 AM By Stu Sjouwerman

We have seen crooked Walmart gift card offers before, but now and then I run across one that's craftier than earlier versions. And as usual, you do not get the gift card, but a high dose ...

How To Land A Cybersecurity Job

May 3, 2012 6:03:05 AM By Stu Sjouwerman

Just found an article in NetworkWorld by Carolyn Duffy Marsan that is very interesting. Here is a snippet: "One specific skill related to cloud security that's in demand: SAML. The ...

Proof: Antivirus Only Defends Against Low-skilled Attackers

May 3, 2012 4:40:59 AM By Stu Sjouwerman

The SANS Computer Forensics and Incident Response team built a real-life network for their students so they could learn how to hack into the network. They put McAfee enterprise endpoint ...

Scam Of The Week: Fake Storage Upgrades

May 3, 2012 3:29:51 AM By Stu Sjouwerman

Phishers are now offering fake storage upgrades. Symanted reported: "Customers of popular email service providers have been a common target for phishers for identity theft purposes. ...

CISPA fight far from over. A Guide To The Cybersecurity Bill Alphabet Soup

May 3, 2012 2:42:35 AM By Stu Sjouwerman

Stefanie Hoffman over at Fortinet took the time to summarize the current cybersecurity bills. This fight is far from over, so you might want to take a look at what's cooking at Capitol ...

CyberheistNews vol 2, #20

May 2, 2012 7:19:45 AM By Stu Sjouwerman

CyberheistNews Vol 2, #20 Editor's Corner [caption id="attachment_1367" align="alignleft" width="150" caption="Stu"][/caption] Warn Your Users: NY Traffic Ticket Phish This phish is a ...

Bogus PayPal payment alert causes malware infection

May 2, 2012 3:12:03 AM By Stu Sjouwerman

Gary Warner just reported: "A new malicious spam campaign has just launched this morning targeting Paypal users. This malware campaign attempts to "social engineer" users into clicking a ...

Cybercrime uses hidden file extensions to trick users

May 2, 2012 3:00:26 AM By Stu Sjouwerman

Symantec contributor Fred Gutierrez shows clearly in this blog post why it can be deadly to click on a .JPG file: "Cybercriminals have continuously evolved their methods throughout the ...

Make sure 'challenge questions' aren't a backdoor into your account!

Apr 30, 2012 9:21:33 AM By Stu Sjouwerman

The Lookout Mobile Security Blog pointed out something important. Patty talked about the man who hacked hollywood: "Finding a working e-mail address was a simple process of trial and ...

Omaha cast net that caught cyberthieves

Apr 29, 2012 8:24:21 AM By Stu Sjouwerman

Matthew Hansen, World-Herald Staff Writer just wrote a great article that illustrates what I have been warning about these last years. It starts out like this: "Imagine for a moment that ...

Hacking The Hackers: A Counter-Intelligence Operation

Apr 28, 2012 7:27:46 AM By Stu Sjouwerman

Marc Weber Tobias, a contributor to Forbes Magazine wrote a very interesting article: "One of our security lab team members is an ex-cyberspook who spent his career in the military doing ...

2012 Doomsday Scam Continues to Serve up Doom, Giftcards

Apr 27, 2012 9:34:49 AM By Stu Sjouwerman

Chris Boyd over at GFI wrote: "If we survive the Mayan Apocalypse of 2012, does that mean were technically immortals? Ive no idea, but it will probably mean we dont see quite as many ...

How to Start an IT Security Awareness Program

Apr 27, 2012 2:44:36 AM By Stu Sjouwerman

Mike Chapple is an IT professional and assistant professor of computer applications at the University of Notre Dame. He wrote at biztechmagazine:"Are your users aware of their ...

If PCI Is Your Whole Security Program, Youre Not Doing Your Job Right

Apr 26, 2012 6:51:22 AM By Stu Sjouwerman

Steve Ragan at the SecurityWeek site, wrote: "Painless PCI assessments are possible if you work for them. For most CISOs, the pain of an audit is part of the job, but it doesnt have to ...

Check Out This NY Traffic Ticket Phish!

Apr 26, 2012 4:29:04 AM By Stu Sjouwerman

Kevin Mitnick sent this phish over. It's a classic attempt to get you to avaid a problem, but the moment you click this link, life will become a lot more painful. So... Stop. Look. Think ...

The Latest Anti-Phishing Working Group Report

Apr 26, 2012 3:46:45 AM By Stu Sjouwerman

This week, the new APWG Global Phishing Report is being today at the Anti-Phishing Working Group meeting in Prague. This report is published every six months, detailing how phishers are ...

New 2011 Report on Russian Cybercrime

Apr 26, 2012 3:38:11 AM By Stu Sjouwerman

Group-IB, a leading Russian cybercrime investigation and computer forensics company and LETA Group subsidiary, this week announced a 28-page report on the Russian cybercrime market in ...

Security Awareness Training Blog

View Topics