Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

NSA Launches Cybersecurity Arm To Defend The U.S. From Foreign Adversaries

Jul 27, 2019 8:23:25 AM By Stu Sjouwerman
Kate O'Flaherty wrote in Forbes: "The National Security Agency has announced its intention to create a cybersecurity directorate this fall in a bid to defend the U.S. against foreign ...
Continue Reading

Here Is Some Great InfoSec Budget Ammo From UBS

Jul 27, 2019 7:19:40 AM By Stu Sjouwerman
A KnowBe4 employee forwarded this PDF to me. There is a very interesting point in here: your cybersecurity practices affect the valuation of your company. That should get the attention of ...
Continue Reading

Louisiana Declares Cybersecurity State of Emergency

Jul 26, 2019 9:35:33 AM By Stu Sjouwerman
A series of ransomware attacks on school district systems leads the governor to declare the state's first cybersecurity state of emergency.
Continue Reading

OSINT – a Hacker’s First Asset in Targeted Attacks

Jul 25, 2019 5:19:19 PM By Stu Sjouwerman
Before a cybercriminal wants to engage in a targeted attack against a particular organization or individual, they’d like to know a few things first. That’s where OSINT comes into play.
Continue Reading

New Study Finds Employees Pose the Greatest Cybersecurity Risk

Jul 25, 2019 5:15:59 PM By Stu Sjouwerman
While historically being seen as an organization’s greatest asset, the latest report from the analyst firm Ponemon cites humans as the weakest link.
Continue Reading

Netflix's New "The Great Hack" Reminds Us -- If you Don't Pay For the Product You *Are* The Product

Jul 25, 2019 5:11:46 PM By Stu Sjouwerman
Last night, Netflix premiered “The Great Hack” which is based on the Cambridge Analytica scandal. They reminded us of the golden expression: “If you don't pay for the product you are the ...
Continue Reading

Romanian Cybercriminals Sentenced for Phishing Campaign

Jul 25, 2019 11:48:44 AM By Stu Sjouwerman
Our friends at Phishlabs wrote: "This week, the Department of Justice for the U.S. Attorney’s Office for the Northern District of Georgia announced the final of three sentences to be ...
Continue Reading

BEC = “Because it’s Easy Cash” Scammers Trick Employees Into Giving Away Customer Info

Jul 25, 2019 10:51:29 AM By Stu Sjouwerman
Business Email Compromise—also known as CEO Fraud—scammers are now targeting a company's customers using a new indirect attack method designed to collect information on future scam ...
Continue Reading

This Year, Phishing Causes Losses of $17,700 per minute And Ransomware Attacks Will Cost $22,184 Per Minute

Jul 25, 2019 10:37:42 AM By Stu Sjouwerman
Global losses to cybercrime total $1.5 trillion per year, which amounts to $2.9 million per minute, a new report by RiskIQ shows. Some of the largest companies are losing $25 each minute ...
Continue Reading

A Phishing Campaign Evades Email Gateways via WeTransfer

Jul 25, 2019 8:39:51 AM By Stu Sjouwerman
A phishing campaign is abusing the legitimate file hosting site WeTransfer to get malicious links through email filters, according to Jake Longden at Cofense. The attackers send real ...
Continue Reading

80% of Organizations Don’t Use DMARC Making Them Susceptible to Email Spoofing

Jul 24, 2019 5:17:12 PM By Stu Sjouwerman
DMARC’s ability to confirm a sending domain’s identity seems like a no-brainer, and yet most organizations aren’t taking advantage of this protective service to stop phishing attacks.
Continue Reading

Ransomware Attacks Costs Nearly Triple in 2019 to over $36K Per Attack

Jul 24, 2019 4:40:39 PM By Stu Sjouwerman
The latest data from ransomware recovery vendor, Coveware, outlines the current state of the cost, duration, and recovery rate of ransomware attacks today.
Continue Reading

HoneyTrap, The Oldest In The World Now As Iranian Catphish on LinkedIn

Jul 24, 2019 6:48:59 AM By Stu Sjouwerman
Iranian state-sponsored hackers are increasing their targeting of civilian targets amid escalating tensions between the US and Iran, according to Zak Doffman at Forbes. Doffman cites a ...
Continue Reading

Q2 2019 Top-Clicked Phishing Email Subjects from KnowBe4 [INFOGRAPHIC]

Jul 23, 2019 3:21:21 PM By Stu Sjouwerman
KnowBe4 reports on the top-clicked phishing emails by subject lines each quarter in three different categories: subjects related to social media, general subjects, and 'In the Wild' - we ...
Continue Reading

KnowBe4 Achieves Highest and Furthest Overall Position for Its Ability to Execute and Completeness of Vision in the 2019 Gartner Magic Quadrant for Security Awareness CBT

Jul 23, 2019 1:19:33 PM By Stu Sjouwerman
We are excited to announce that KnowBe4 has achieved the highest and furthest overall position as a Leader for its ability to execute and completeness of vision in the 2019 Magic Quadrant ...
Continue Reading

CyberheistNews Vol 9 #30 [NEW] Here Is a Fantastic Report You Need to Read Before You Buy

Jul 23, 2019 12:07:32 PM By Stu Sjouwerman
Continue Reading

New Cyber Attack Trends Report Reveals That Digital Criminals Made Off With $45 Billion in 2018

Jul 23, 2019 10:27:12 AM By Stu Sjouwerman
Scott Ikeda at CPO Magazine posted insights about a new report on cyber attack trends which combines information from a number of high-level sources. It reveals a startling amount of ...
Continue Reading

Fake Accounts Go to College

Jul 23, 2019 10:12:48 AM By Stu Sjouwerman
The US Department of Education warned last week that 62 colleges were exposed to criminals who exploited an authentication vulnerability in a popular enterprise resource planning ...
Continue Reading

Is Equifax Paying Up To 700 Million... Or Is It 1.4 Billion?

Jul 23, 2019 7:26:05 AM By Stu Sjouwerman
In a settlement with the FTC, consumers affected by the breach are eligible for up to $20,000 in a cash settlement, depending on damages they can prove. But different news sources claim ...
Continue Reading

Hackers Exfiltrate 7.5TB From Russian FSB Contractor

Jul 22, 2019 10:52:50 AM By Stu Sjouwerman
'Biggest ever breach' exposes project to de-anonymize Tor traffic. IF YOU'RE A CONTRACTOR to a government intelligence service, then getting hacked is a really bad look. Especially if the ...
Continue Reading
Subscribe

Search Our Blog


New call-to-action

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews