Security Awareness Training Blog

Cybercrime Blog

We report on the latest trends in cybercrime to help you stay informed and aware of what the current threat landscape looks like.

[Heads-up] The U.S. Launched A Cyber Attack On Iran, And We're Expecting Spear Phishing Strike Backs

The tension in the Middle-East apparently prompted a game-changing move by the U.S. President.  Washington Post sources say exactly 10 years after Stuxnet, the President approved a ...
Continue Reading

FBI Alert: Last Week Conflict With Iran Can Cause Spear Phishing Retaliation

This blog post has been superseded by a more recent one.  You can find this new post here.
Continue Reading

Why Do Organizations Still Under-report Cybercrime?

It’s estimated that organizations aren’t engaging with Law Enforcement when becoming a victim of a cybercrime in large numbers. We cover 5 reasons why organizations don’t.
Continue Reading

Massive Cyberheist Bankrupts Medical Debt Collector

AMCA, a medical billing collections agency that was hacked last year in an incident believed to impact millions of medical patients is now seeking a federal bankruptcy court’s protection ...
Continue Reading

Europol Reminder on Ticket Fraud

Offers that sound too good to be true probably are. It’s an old saw, but one that’s worth revisiting. The too-good-to-be-true offers are most likely fraudulent, according to an alert ...
Continue Reading

'BlueKeep' Microsoft Windows Flaw Warning from NSA, Video for How To Patch

Microsoft recently released a fix for for a critical Remote Code Execution vulnerability, CVE-2019-0708, in Remote Desktop Services - that affects older versions of Microsoft ...
Continue Reading

Global GozNym Takedown Shows The Anatomy Of A Modern Cybercrime Supply Chain

By Javvad Malik, our new Security Awareness Advocate for EMEA. A multi-national collaborative law enforcement effort has arrested individuals allegedly behind Nymaim and Gozi, also known ...
Continue Reading

Executives are Out and Employees are In as Cybercriminals Change Their Primary Targets for Cyberattack

Phishing and Social Engineering scammers are shifting tactics, focusing efforts on low-level employees using a variety of methods as a means to cast a wider net within a targeted ...
Continue Reading

A Mystery Agent Is Doxing Iran's Hackers And Dumping Their Code

Alyssa Foote at WIRED wrote: "NEARLY THREE YEARS after the mysterious group called the Shadow Brokers began disemboweling the NSA's hackers and leaking their hacking tools onto the open ...
Continue Reading

Phishing Attack Spoofs Email Security Firm

Ray Shultz at MediaPost's EmailINSIDER wrote about a nasty new way that the bad guys are trying to establish trust: spoofing the return path and received email headers of Barracuda in an ...
Continue Reading

Organizations Face a 63% Likelihood of Being the Victim of Successful Cyberattack in Next 12 Months

The latest data from 1,200 IT organizations shows organizations seeing attacks as inevitable and, for some industries, successful compromise as even more a given.
Continue Reading

Tallahassee Loses Half a Million From Cyberattack

Hackers stole approximately $498,000 from the city of Tallahassee, Florida, by diverting city employees’ paychecks, according to USA Today. The attackers hacked a third-party vendor that ...
Continue Reading

Cybercrime market selling full digital fingerprints of over 60,000 users

  ZDNet reported something surprising. A new dark web market called Genesis is selling users' personal data, complete with digital fingerprints, such as account credentials, cookies, ...
Continue Reading

The Total Risk Value of Cybercrime Has Risen to $5.2 Trillion Over the Next Five Years

According to new data from Accenture, the average company sees 145 security breaches annually, with the cost of experiencing any kind of cyberattack rising.
Continue Reading

Researchers Unearth 74 Facebook Cybercrime Groups With 385,000 Members

A monthslong study by Cisco Talos has identified 74 Facebook cybercrime groups with a total of 385,000 members. While some groups resembled market places for illicit goods such as ...
Continue Reading

New York Launches a Cybercrime Brigade

The WSJ in their Opinion section reported about a NY citywide initiative that aims to coordinate all digital law-enforcement efforts. The op ed was written by Cy Vance, Manhattan district ...
Continue Reading

Which Employees are the Cyber Criminals After?

Lower-level employees are the workers most likely to face highly-targeted attacks, according to the online marketing firm Reboot. Citing information from Proofpoint’s most recent ...
Continue Reading

Cyber Attacks on Financial Institutions are the Modern-Day Bank Robbery

The financial sector has long been a target of cyber thieves. But despite their robust security postures, they continue to be the focus of some of the most innovative attack campaigns.
Continue Reading

CISOs: Users and Collaborative Security Efforts are the Key to Protecting the Organization from Attack

Cisco’s CISO Benchmark Report 2019 focuses on the need for security collaboration between internal teams and the inclusion of users as part of an effective cybersecurity program.
Continue Reading

Triton is the world’s most murderous malware, and it’s spreading

In the summer of 2017, a petrochemical plant in Saudi Arabia experienced a worrisome security incident that cybersecurity experts consider to be the first-ever cyber attack carried out ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews