Security Awareness Training Blog

Data Breach Blog

Technical reporting and analysis on high-profile data breaches, how they happened, and how hackers are using the information mined from breaches.

View Topics

Home Depot, Target Breaches Exploited Old WinXP Flaw

Sep 20, 2014 2:12:00 PM By Stu Sjouwerman
The massive security breaches and theft of credit card information at The Home Depot and Target have something in common. They were both allowed by a vulnerability in XP embedded that was ...
Continue Reading

Home Depot Hit By Same Russian Hackers As Target

Sep 13, 2014 3:29:00 PM By Stu Sjouwerman
Right after the Target Hack, C-level execs at Home Depot Inc. put together a task force to prevent being the victim of a similar attack. The task force recommended to fully ...
Continue Reading

Symantec: Crypto Ransomware Phishing Up 700 Percent in 2014

Sep 12, 2014 5:06:00 PM By Stu Sjouwerman
Very interesting data from Symantec. This is fresh from the press and shows Phishing, Spam and Malware trends. There is a PDF with a whole bunch more data, but these are the most relevant ...
Continue Reading

New Ransomware Holds iPhones and iPads Hostage

May 31, 2014 4:29:00 PM By Stu Sjouwerman
Continue Reading

Scam Of The Week: eBay Password Reset Phishing Emails

May 23, 2014 1:10:00 PM By Stu Sjouwerman
Ok, unless you were on an Internet-free vacation (fat chance); you have heard that eBay managed to lose all its 145 million credentials. 
Continue Reading

Verizon's New 2014 Data Breach Report: Summary

Apr 27, 2014 11:35:00 AM By Stu Sjouwerman
In IT, we are subject to help desk tickets and putting out fires. The problem with this is that most of these are short-term fixes. It is usually about last week's downtime, today's ...
Continue Reading

Target Breach: Where The Weak Points Were

Mar 18, 2014 4:47:00 PM By Stu Sjouwerman
Dave Kearns posted March 18 that he's been fascinated by the information that keeps coming out of the Taget Stores data breach. He's got a great analysis, and he ends off with words that ...
Continue Reading

Do you recognize yourself in The Compliance Curve?

Mar 7, 2014 3:57:00 PM By Stu Sjouwerman
Have a look at the curve here. Do you recognize yourself? It's the process that many IT pros told us they go through on a regular basis, much like Groundhog Day.  
Continue Reading

BREAKING NEWS Target Data Breach Started With Phishing Attack

Feb 12, 2014 4:12:00 PM By Stu Sjouwerman
Continue Reading

Which HackBusters Logo Do You Like Best?

Feb 10, 2014 4:09:00 PM By Stu Sjouwerman
You miss important IT security news because you aren’t subscribed to the right sources, or the relevant security news is snowed under simply because of the incredible volume. So KnowBe4 ...
Continue Reading

The Gap Between PCI Compliance And IT Security

Feb 3, 2014 1:32:00 PM By Stu Sjouwerman
You may have seen this diagram before, and it's meant to be both entertaining and instructive. It is obvious to all of us that if your organization's focus is to "be compliant", the goal ...
Continue Reading

Major Hotel Franchise Announces Data Breach

Feb 1, 2014 6:59:00 AM By Stu Sjouwerman
White Lodging, a company that maintains hotel franchises under nationwide brands including Hilton, Marriott, Sheraton and Westin appears to have suffered a data breach that exposed credit ...
Continue Reading

WSJ: Did Hackers Got Into Target With Spear-phishing

Jan 22, 2014 9:03:00 AM By Stu Sjouwerman
Today (Jan 22, 2014) Wall Street Journal reporters Charles Levinson and Danny Yadron had a good summary of the current status of the Target Hack. 
Continue Reading

Target Databreach Now 110 Mil Cards - Neiman Marcus Hacked Too

Jan 12, 2014 10:23:00 AM By Stu Sjouwerman
It goes from bad to worse. The initial 40 million turns out to be really 110 million. Apparently the forensics team discovered another 70 million cards exfiltrated. And then the news ...
Continue Reading

Firm Bankrupted by Cyberheist Sues Bank

Jan 8, 2014 11:53:00 AM By Stu Sjouwerman
Continue Reading

Eastern European Hackers Hit Target Phish Out 40M Credit Cards

Dec 19, 2013 8:16:00 AM By Stu Sjouwerman
During the Black Friday shopping week, tens of millions of credit and debit card records were "phished" out of Target. The data breach was nationwide, and has extended for as far as ...
Continue Reading

Data Security Laws And Penalties: Pay IT Now Or Pay Out Later

Dec 6, 2013 5:18:00 PM By Stu Sjouwerman
Continue Reading

LLoyds: Cyber Risk Rises from 12th to 3rd place In Three Years

Jul 19, 2013 4:13:00 PM By Stu Sjouwerman
You all know the world famous insurance company LLoyds. What you may not know is that they maintain a list of Top Risks. It's called their Risk Index and it's the result of a survey of ...
Continue Reading

Knowbe4 - CyberheistNews Vol 3, #14

Apr 3, 2013 3:48:00 PM By Stu Sjouwerman
 
Continue Reading
Subscribe

Search Our Blog


Domain Spoof Test Contest

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews