Security Awareness Training Blog

Data Breach Blog

Technical reporting and analysis on high-profile data breaches, how they happened, and how hackers are using the information mined from breaches.

Symantec: Crypto Ransomware Phishing Up 700 Percent in 2014

Very interesting data from Symantec. This is fresh from the press and shows Phishing, Spam and Malware trends. There is a PDF with a whole bunch more data, but these are the most relevant ...
Continue Reading

New Ransomware Holds iPhones and iPads Hostage

Continue Reading

Scam Of The Week: eBay Password Reset Phishing Emails

Ok, unless you were on an Internet-free vacation (fat chance); you have heard that eBay managed to lose all its 145 million credentials. 
Continue Reading

Verizon's New 2014 Data Breach Report: Summary

In IT, we are subject to help desk tickets and putting out fires. The problem with this is that most of these are short-term fixes. It is usually about last week's downtime, today's ...
Continue Reading

Target Breach: Where The Weak Points Were

Dave Kearns posted March 18 that he's been fascinated by the information that keeps coming out of the Taget Stores data breach. He's got a great analysis, and he ends off with words that ...
Continue Reading

Do you recognize yourself in The Compliance Curve?

Have a look at the curve here. Do you recognize yourself? It's the process that many IT pros told us they go through on a regular basis, much like Groundhog Day.  
Continue Reading

Which HackBusters Logo Do You Like Best?

You miss important IT security news because you aren’t subscribed to the right sources, or the relevant security news is snowed under simply because of the incredible volume. So KnowBe4 ...
Continue Reading

The Gap Between PCI Compliance And IT Security

You may have seen this diagram before, and it's meant to be both entertaining and instructive. It is obvious to all of us that if your organization's focus is to "be compliant", the goal ...
Continue Reading

Major Hotel Franchise Announces Data Breach

White Lodging, a company that maintains hotel franchises under nationwide brands including Hilton, Marriott, Sheraton and Westin appears to have suffered a data breach that exposed credit ...
Continue Reading

WSJ: Did Hackers Got Into Target With Spear-phishing

Today (Jan 22, 2014) Wall Street Journal reporters Charles Levinson and Danny Yadron had a good summary of the current status of the Target Hack. 
Continue Reading

Target Databreach Now 110 Mil Cards - Neiman Marcus Hacked Too

It goes from bad to worse. The initial 40 million turns out to be really 110 million. Apparently the forensics team discovered another 70 million cards exfiltrated. And then the news ...
Continue Reading

Firm Bankrupted by Cyberheist Sues Bank

Continue Reading

Eastern European Hackers Hit Target Phish Out 40M Credit Cards

During the Black Friday shopping week, tens of millions of credit and debit card records were "phished" out of Target. The data breach was nationwide, and has extended for as far as ...
Continue Reading

LLoyds: Cyber Risk Rises from 12th to 3rd place In Three Years

You all know the world famous insurance company LLoyds. What you may not know is that they maintain a list of Top Risks. It's called their Risk Index and it's the result of a survey of ...
Continue Reading

Knowbe4 - CyberheistNews Vol 3, #14

 
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews