Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

What are “WannaMine” attacks, and how do I avoid them?

Feb 1, 2018 7:50:39 AM By Stu Sjouwerman
It's suddenly all over the news. In hindsight, it was a matter of "not if, but when". Sophos just warned against a new hybrid worm that combines the ETERNALBLUE exploit and cryptomining. ...
Continue Reading

"123456" Remains Most Common Password Found in Data Dumps in 2017

Dec 26, 2017 1:15:31 PM By Stu Sjouwerman
For the second year in a row, "123456" remained the top password among the millions of cleartext passwords exposed online thanks to data breach incidents at various providers. While ...
Continue Reading

77% of the FTSE 100 Have Compromised Credentials - What is your Stolen-password percentage?

Nov 29, 2017 11:06:44 AM By Stu Sjouwerman
IT security vendor Anomali, released a new report showing the volume of stolen credentials of FTSE 100 employees tripled In 2017, and a whopping 77% of the FTSE 100 were exposed with an ...
Continue Reading

Stolen Passwords Of FTSE 100 Employees Tripled In 2017

Nov 29, 2017 7:21:09 AM By Stu Sjouwerman
The Financial Times Stock Exchange 100 share index is an average of share prices in the 100 largest, most actively traded companies on the London Stock Exchange. IT security vendor ...
Continue Reading

Thirty Percent of CEO Email Passwords Compromised in Breaches: Study

Nov 5, 2017 8:00:38 AM By Stu Sjouwerman
SecurityWeek reported about an interesting F-Secure study showing thirty percent of CEOs from the world's largest organizations have had their company email address and password stolen ...
Continue Reading

On Average, How Many Passwords do Employees Manage?

Nov 3, 2017 10:59:16 AM By Stu Sjouwerman
According to the Last Pass Password Exposé report, an employee manages of about 200 passwords. Other industry reports often estimate the number of credentials used and put the figure ...
Continue Reading

Watch Out For This New Amazon Phishing/Phone Password Scam

Oct 15, 2017 10:25:46 AM By Stu Sjouwerman
So here’s a new one: a spoofed Amazon email claiming that Amazon has detected an unauthorized attempt to reset the password on the recipient’s account. A six digit code is provided along ...
Continue Reading

Enigma Hacked Before ICO Date -- CEO Had Not Changed A Compromised Password

Aug 23, 2017 1:32:16 PM By Stu Sjouwerman
Wherever there’s a lot of money to be made cyber thieves are not far behind. Think sharks surrounding a bait ball. Enigma is a financial data marketplace founded by a team from MIT which ...
Continue Reading

Survey of 2600 IT Pros: "Password Procedures Still Are A Cyber Security Fail"

Aug 15, 2017 8:30:00 AM By Stu Sjouwerman
After the NIST passwords bombshell, we surveyed 2,600 IT professionals to find out how they were managing passwords. The answers show that IT Pros are generally receptive to the proposed ...
Continue Reading

This password bombshell will make you scratch your head...

Aug 7, 2017 6:37:07 PM By Stu Sjouwerman
OK, this is a headscratcher. This is why we were surprised. I found it in a Wall Street Journal article today (paywall). Bill Burr, the author of “NIST Special Publication 800-63. ...
Continue Reading

NEW: Download The "Weak Password Test" Utility

May 8, 2017 10:00:00 AM By Stu Sjouwerman
How weak are your user’s passwords? Are they... P@ssw0rd? Verizon's recent Data Breach Report showed that 81% of hacking-related breaches used either stolen and/or weak passwords. ...
Continue Reading

Why does Kevin Mitnick recommend 20+ character passwords?

Jul 27, 2016 10:15:14 AM By Stu Sjouwerman
The background is based on current state-of-the-art password cracking technology. In short, hackers penetrate the network, get access to a domain controller and pull the file with all ...
Continue Reading

Scam Of The Week: LinkedIn Email Change Your Password

May 21, 2016 10:33:05 AM By Stu Sjouwerman
You probably remember the 2012 LinkedIn data breach. It was a big deal because something like 6.5 million user account passwords were posted online, but LinkedIn never confirmed the final ...
Continue Reading

Scam Of The Week: Massive LinkedIn Spam Steals Passwords

Jan 3, 2016 10:42:01 AM By Stu Sjouwerman
"I feel like a complete idiot. I just got taken by a LinkedIn spam that may have just stolen my banking password." These words dropped in my inbox, written a while ago by Dan Tynan, ...
Continue Reading

Scam Of The Week: eBay Password Reset Phishing Emails

May 23, 2014 1:10:00 PM By Stu Sjouwerman
Ok, unless you were on an Internet-free vacation (fat chance); you have heard that eBay managed to lose all its 145 million credentials.
Continue Reading

How To Create Strong, Complex Passwords to Protect Your Organization

Nov 19, 2013 2:20:00 PM By Stu Sjouwerman
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews