Half of M&A Cyber Audits Uncover Undisclosed Breaches That Derail Deals

Nov 15, 2019 7:30:00 AM By Stu Sjouwerman

Cybersecurity diligence performed prior to a merger or acquisition often uncovers weaknesses in an organization’s security stance, which can spell doom for the company being purchased and ...

SIM Card Attack May Affect Over 1 Billion Mobile Phones Worldwide

Nov 15, 2019 7:00:00 AM By Stu Sjouwerman

Using SMS messaging, attackers can use phishing tactics to hijack mobile devices using a legacy piece of SIM code, called the S@T Browser, to execute commands as part of a more ...

Lower Your Business Risk with Best Practice Data Privacy Impact Assessments (DPIA's)

Nov 11, 2019 7:30:00 AM By Stu Sjouwerman

Whether you're creating a new product, going through a merger & acquisitions, or significantly changing a process in your organization, new processing activities can present high risk to ...

National Cybersecurity Awareness Month is Over... Now What?

Nov 1, 2019 7:30:00 AM By Erich Kron

As we wrap up the 2019 National Cyber Security Awareness Month (NCSAM), let’s all agree that our work is not done. As a matter of fact, it’s far from being done. If we are really honest ...

What Reese’s Peanut Butter Cups Can Teach Us About Phishing

Oct 23, 2019 7:30:00 AM By Perry Carpenter

One of the greatest inventions in modern history is the Reese’s Peanut Butter Cup. I feel sorry for any human who existed before the “age of the cup” because they never got to know the ...

A Former CIA Officer Shows You How to Make Your Organization a Hard Target

Oct 17, 2019 12:00:00 PM By Stu Sjouwerman

Having spent over a decade as part of the CIA’s Center for Cyber Intelligence and the Counterterrorism Mission Center, Rosa Smothers knows the ins and outs of leading cyber operations ...

I Can Phish Anyone

Oct 15, 2019 7:30:00 AM By Roger Grimes

I’m a bit surprised by some aggressive corporate anti-phishing policies which say they will fire anyone for one accidental phishing offense. Send me the names and email addresses of the ...

Brand-New: Multi-Factor Authentication Security Assessment Tool Helps Assess Your Organization's MFA Vulnerabilities

Oct 9, 2019 9:52:00 AM By Stu Sjouwerman

You already know that using multi-factor authentication (MFA) can decrease your cybersecurity risk, and certainly is a much stronger defense compared to using traditional passwords alone. ...

Here Are Some Interesting Headlines I Found During Black Hat

Aug 10, 2019 10:45:01 AM By Stu Sjouwerman

Black Hat 2019 - The Craziest, Most Terrifying Things We Saw: I ran into Neil Rubenking when I went to the Qualys party which was in the Foundation Room all the way on top of the ...

[On-demand Webinar] Top 5 IT Security Myths Your CISO Believes are True… BUSTED!

Mar 14, 2019 10:22:00 AM By Stu Sjouwerman

Facts are facts… but what happens when IT security pros take myths at face value? That got us thinking… what if we whip out our magnifying glasses, pull out the trench coats and use our ...

Yes, Google's Security Key Is Hackable

Jul 26, 2018 2:22:03 PM By Roger Grimes

Here is an article by Roger Grimes, Data-Driven Defense Evangelist at KnowBe4 Ever since Google told the world that none of its 85,000 employees had been successfully hacked since they ...

[On-Demand Webinar] What Most Computer Security Defenses Are Doing Wrong and How to Fix It

Mar 2, 2018 2:23:39 PM By Stu Sjouwerman

Most companies have huge gaps in their computer security defenses, and can be compromised at will by a determined hacker. The industry even has a term for it: “Assume Breach”. But it ...

IT Security in the enterprise: Things are looking up!

Jan 28, 2018 9:33:22 AM By Stu Sjouwerman

Cybersecurity is quickly becoming the number one business priority, says identity and access management company Okta. Based on the results of an analysis of authentication and ...

New Survey: IT Security Spending Is Up, But Security Is Not, Ransomware Is The Biggest Worry

Oct 7, 2017 11:11:00 AM By Stu Sjouwerman

The second-annual Cyren-Osterman Research U.S. security survey shows a significant disconnect between rising IT security spending and a low level of confidence in current protection, ...

ITIC / CyberheistNews Top 10 IT Security Recommendations May 2017

Jun 7, 2017 11:06:37 AM By Stu Sjouwerman

By Laura DiDio There is no such thing as a 100% fully secure environment. And there never will be. Security is not static; it is an ongoing work in progress. Organizations must be ...

Who Is Learning How to Take Down the Internet?

Oct 24, 2016 10:00:00 AM By Stu Sjouwerman

It was all over the news. A sustained DDoS attack that caused outages for a large number of Web sites Friday was launched with the help of hacked “Internet of Things” (IoT) devices. Jeff ...

Researchers discover new malicious IoT worm

Oct 24, 2016 7:54:54 AM By Stu Sjouwerman

Researchers at RapidityNetworks discovered a new malicious worm using Telnet that infects IoT devices using their insecure default credentials and uses a peer-to-peer network to install ...

Is Security Making The Grade? What IT And Business Pros Really Think

Oct 2, 2016 10:04:12 AM By Stu Sjouwerman

Great joint survey by CSO, CIO and ComputerWorld by Amy Bennett which is excelllent ammo to add to a budget request that needs to be approved by a C-level exec. Here's why: "If you sense ...

IT Security Is A Protoscience, Think 19th Century Chemistry

Aug 28, 2016 2:39:14 PM By Stu Sjouwerman

So I get the Andreessen Horowitz newsletter. It has a topic called "Security is a protoscience (and more on 'so you want to work in security') - Michal Zalewski" I'm intrigued so I click ...

Why does Kevin Mitnick recommend 20+ character passwords?

Jul 27, 2016 10:15:14 AM By Stu Sjouwerman

The background is based on current state-of-the-art password cracking technology. In short, hackers penetrate the network, get access to a domain controller and pull the file with all ...

Security Awareness Training Blog

IT Security Blog

View Topics

Half of M&A Cyber Audits Uncover Undisclosed Breaches That Derail Deals

SIM Card Attack May Affect Over 1 Billion Mobile Phones Worldwide

Lower Your Business Risk with Best Practice Data Privacy Impact Assessments (DPIA's)

National Cybersecurity Awareness Month is Over... Now What?

What Reese’s Peanut Butter Cups Can Teach Us About Phishing

A Former CIA Officer Shows You How to Make Your Organization a Hard Target

I Can Phish Anyone

Brand-New: Multi-Factor Authentication Security Assessment Tool Helps Assess Your Organization's MFA Vulnerabilities

Here Are Some Interesting Headlines I Found During Black Hat

[On-demand Webinar] Top 5 IT Security Myths Your CISO Believes are True… BUSTED!

Yes, Google's Security Key Is Hackable

[On-Demand Webinar] What Most Computer Security Defenses Are Doing Wrong and How to Fix It

IT Security in the enterprise: Things are looking up!

New Survey: IT Security Spending Is Up, But Security Is Not, Ransomware Is The Biggest Worry

ITIC / CyberheistNews Top 10 IT Security Recommendations May 2017

Who Is Learning How to Take Down the Internet?

Researchers discover new malicious IoT worm

Is Security Making The Grade? What IT And Business Pros Really Think

IT Security Is A Protoscience, Think 19th Century Chemistry

Why does Kevin Mitnick recommend 20+ character passwords?

Search Our Blog

Subscribe To Our Blog

Posts By Topic

Get the latest about social engineering

Subscribe to CyberheistNews

Get the latest about social engineering

Subscribe to CyberheistNews

Products & Services

About Us

Free Tools

Contact Us

Contact Support

Search