Security Awareness Training Blog

IT Security Blog

Get the most current news about the IT Security industry, what the latest threats are and what that means to security professionals.

View Topics

Dutch Intelligence Agencies Warn About Chinese and Russian Cyber Espionage

Feb 12, 2021 1:39:00 PM By Stu Sjouwerman
Chinese and Russian state hackers threaten the Dutch economy. Three Dutch intelligence agencies jointly sound the alarm about digital espionage in financial newspaper Het Financieele ...
Continue Reading

[Heads-Up] A Hacker Is Selling Access To The Email Accounts Of Hundreds Of C-Level Executives

Nov 27, 2020 11:52:05 AM By Stu Sjouwerman
ZDNet's Zero Day column just reported one of the best reasons why you should step your users through new-school security awareness training yet:
Continue Reading

[On-Demand Webinar] Top 5 IT Security Myths Your CISO Believes Are True… BUSTED!

Nov 4, 2020 8:00:00 AM By Stu Sjouwerman
Facts are facts, but what happens when IT security pros take myths at face value?
Continue Reading

[CRITICAL] 250,000 Microsoft Exchange Servers are Unpatched and Vulnerable to Remote Code Execution Attacks!

Sep 30, 2020 3:37:08 PM By Stu Sjouwerman
With an estimated 61% of Exchange servers in the wild still operating unpatched, this security flaw allows attackers to take over a vulnerable server using any set of valid email ...
Continue Reading

[Heads Up] The First-Ever Russian BEC Gang, Cosmic Lynx, Was Uncovered. They Spear Phish Multinational & Fortune 500 Senior Executives

Jul 7, 2020 10:13:48 AM By Stu Sjouwerman
“This is a historic shift to the global email threat landscape and portends new and sophisticated social engineering attacks that CISOs around the world must brace for now,” according to ...
Continue Reading

The Top 5 Eyeopener Strategies To Improve Your IT Defenses And Keep Bad Guys Out Of Your Network

Jan 9, 2020 4:16:06 PM By Roger Grimes
Last year, in 2019 according to CVEdetails, there were 12,174 new, publicly announced vulnerabilities. If that sounds like a high number, it’s a lot less than the previous two years. We ...
Continue Reading

Half of M&A Cyber Audits Uncover Undisclosed Breaches That Derail Deals

Nov 15, 2019 7:30:00 AM By Stu Sjouwerman
Cybersecurity diligence performed prior to a merger or acquisition often uncovers weaknesses in an organization’s security stance, which can spell doom for the company being purchased and ...
Continue Reading

SIM Card Attack May Affect Over 1 Billion Mobile Phones Worldwide

Nov 15, 2019 7:00:00 AM By Stu Sjouwerman
Using SMS messaging, attackers can use phishing tactics to hijack mobile devices using a legacy piece of SIM code, called the S@T Browser, to execute commands as part of a more ...
Continue Reading

Lower Your Business Risk with Best Practice Data Privacy Impact Assessments (DPIA's)

Nov 11, 2019 7:30:00 AM By Stu Sjouwerman
Whether you're creating a new product, going through a merger & acquisitions, or significantly changing a process in your organization, new processing activities can present high risk to ...
Continue Reading

National Cybersecurity Awareness Month is Over... Now What?

Nov 1, 2019 7:30:00 AM By Erich Kron
As we wrap up the 2019 National Cyber Security Awareness Month (NCSAM), let’s all agree that our work is not done. As a matter of fact, it’s far from being done. If we are really honest ...
Continue Reading

What Reese’s Peanut Butter Cups Can Teach Us About Phishing

Oct 23, 2019 7:30:00 AM By Perry Carpenter
One of the greatest inventions in modern history is the Reese’s Peanut Butter Cup. I feel sorry for any human who existed before the “age of the cup” because they never got to know the ...
Continue Reading

A Former CIA Officer Shows You How to Make Your Organization a Hard Target

Oct 17, 2019 12:00:00 PM By Stu Sjouwerman
Having spent over a decade as part of the CIA’s Center for Cyber Intelligence and the Counterterrorism Mission Center, Rosa Smothers knows the ins and outs of leading cyber operations ...
Continue Reading

I Can Phish Anyone

Oct 15, 2019 7:30:00 AM By Roger Grimes
I’m a bit surprised by some aggressive corporate anti-phishing policies which say they will fire anyone for one accidental phishing offense. Send me the names and email addresses of the ...
Continue Reading

Brand-New: Multi-Factor Authentication Security Assessment Tool Helps Assess Your Organization's MFA Vulnerabilities

Oct 9, 2019 9:52:00 AM By Stu Sjouwerman
You already know that using multi-factor authentication (MFA) can decrease your cybersecurity risk, and certainly is a much stronger defense compared to using traditional passwords alone. ...
Continue Reading

Here Are Some Interesting Headlines I Found During Black Hat

Aug 10, 2019 10:45:01 AM By Stu Sjouwerman
Black Hat 2019 - The Craziest, Most Terrifying Things We Saw: I ran into Neil Rubenking when I went to the Qualys party which was in the Foundation Room all the way on top of the ...
Continue Reading

[On-demand Webinar] Top 5 IT Security Myths Your CISO Believes are True… BUSTED!

Mar 14, 2019 10:22:00 AM By Stu Sjouwerman
Facts are facts… but what happens when IT security pros take myths at face value? That got us thinking… what if we whip out our magnifying glasses, pull out the trench coats and use our ...
Continue Reading

Yes, Google's Security Key Is Hackable

Jul 26, 2018 2:22:03 PM By Roger Grimes
Here is an article by Roger Grimes, Data-Driven Defense Evangelist at KnowBe4 Ever since Google told the world that none of its 85,000 employees had been successfully hacked since they ...
Continue Reading

[On-Demand Webinar] What Most Computer Security Defenses Are Doing Wrong and How to Fix It

Mar 2, 2018 2:23:39 PM By Stu Sjouwerman
Most companies have huge gaps in their computer security defenses, and can be compromised at will by a determined hacker. The industry even has a term for it: “Assume Breach”. But it ...
Continue Reading

IT Security in the enterprise: Things are looking up!

Jan 28, 2018 9:33:22 AM By Stu Sjouwerman
Cybersecurity is quickly becoming the number one business priority, says identity and access management company Okta. Based on the results of an analysis of authentication and ...
Continue Reading

New Survey: IT Security Spending Is Up, But Security Is Not, Ransomware Is The Biggest Worry

Oct 7, 2017 11:11:00 AM By Stu Sjouwerman
The second-annual Cyren-Osterman Research U.S. security survey shows a significant disconnect between rising IT security spending and a low level of confidence in current protection, ...
Continue Reading
Subscribe

Search Our Blog


Ransomware Hostage Rescue Manual

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews