The Unusual Activity Would be the Warning Itself

Aug 15, 2019 7:01:40 AM By Stu Sjouwerman

BleepingComputer has come across a phishing campaign that’s spoofing “Unusual sign-in” warnings from Microsoft to steal users’ credentials. The emails look nearly identical to Microsoft’s ...

Even when your users don't click...

Aug 14, 2019 10:40:34 AM By Stu Sjouwerman

...they can still be helping the bad guys compromise your organization. Sad but true.

Still Dodging that Sextortion Bullet

Aug 13, 2019 5:27:18 PM By Stu Sjouwerman

It has long been true that sextortionists really had nothing on their intended victims. No video, no screen captures, nothing at all beyond shame and an uneasy conscience. Unfortunately ...

Security warning for software developers: You are now prime targets for phishing attacks

Aug 13, 2019 11:25:00 AM By Stu Sjouwerman

Danny Palmer at ZDNet wrote: "Software developers are the people most targeted by hackers conducting cyberattacks against the technology industry, with the hackers taking advantage of the ...

Scam Of The Week: See Jeffrey Epstein Last Words On Video

Aug 12, 2019 8:47:51 AM By Stu Sjouwerman

This weekend, news broke that Jeffrey Epstein was found dead in his cell, apparently a suicide. This is a celebrity death that the bad guys are going to be exploiting in a variety of ways ...

Three Lessons from a Recent MegaCortex Ransomware Phishing Attack

Aug 12, 2019 6:55:16 AM By Stu Sjouwerman

The MegaCortex strain of ransomware has been used in criminal campaigns targeting businesses as opposed to private individuals. The QuickBooks cloud-hosting firm iNSYNQ, has sustained ...

Varieties of Extortion Experience

Aug 10, 2019 11:26:07 AM By Stu Sjouwerman

We are all familiar with ransomware and its increasingly dangerous cousin, wiper malware. The first encrypts your files and demands ransom payments in exchange for the decryption key. The ...

Business Email Compromise Doubles in Incidents and Triples in Cost

Aug 9, 2019 5:54:07 PM By Stu Sjouwerman

The latest data from the U.S. government’s Financial Crimes Enforcement Network (FinCEN) shows fraud via business email is changing tactics and becoming more effective.

Email Attacks are Having A Major Impact on Business with Employees Seen as a Major Weak Link

Aug 9, 2019 5:38:08 PM By Stu Sjouwerman

With 82% of organizations facing an attempted email-based security threat in the past year, the impacts of these attacks are material and potentially harmful to the organization.

CEO Fraud hits B.C. lawyers for $2 million

Aug 9, 2019 3:12:16 PM By Stu Sjouwerman

Two B.C. law firms were targets of so-called social engineering frauds causing almost $2 million in real estate and investment funds to be wired to people other than clients the firms ...

Confirm Your Unsubscribe Request? Not So Fast

Aug 8, 2019 9:40:33 AM By Stu Sjouwerman

An email phishing campaign that BleepingComputer describes as “long-running” has shown a distinct uptick recently. The phishbait in the subject line will read something like this: ...

Bad Guys Exploit CapitalOne Breach to Push Backdoor Trojan

Aug 7, 2019 3:56:29 PM By Stu Sjouwerman

The bad guys are now exploiting news of the CapitalOne breach to push a malicious backdoor trojan via a phishing email purporting to offer a Windows Security Update. See the attached ...

Why Is Windows Defender The World's No. 1 Antivirus With More Than Half A Billion EndPoints?

Aug 3, 2019 11:16:31 AM By Stu Sjouwerman

Having been inside the AntiVirus software industry for quite a while, and building an AV tool from the ground up, when I saw Redmond start acquiring several small AV companies in 2008 and ...

Engineering Licensing as Phishbait

Aug 2, 2019 5:43:28 PM By Stu Sjouwerman

Researchers at Proofpoint have observed a state-sponsored spearphishing campaign targeting three US utilities companies. The emails convincingly posed as exam results from the National ...

Freight Forwarding Email Scams are Business Killers

Aug 1, 2019 7:13:06 AM By Stu Sjouwerman

The Australian Cyber Security Centre (ACSC) has warned that multiple Australian IT suppliers have permanently closed their doors after falling victim to procurement scams, CRN reports. ...

Scam Of The Week: Equifax Settlement Phishing

Jul 31, 2019 3:55:21 PM By Stu Sjouwerman

Well, that did not take long! The Equifax Data Breach resulted in a settlement and those affected have a choice between free credit monitoring or a $125 payment.

Buyers of Facebook’s Libra Cryptocurrency are the Latest Target in Phishing Scams

Jul 31, 2019 3:25:57 PM By Stu Sjouwerman

Scammers are impersonating Facebook to trick potential buyers of Facebook’s new cryptocurrency into parting with their money.

Russian Phishing: Swiss-based Email Provider ProtonMail Hit By Cyber Attack

Jul 31, 2019 11:34:47 AM By Stu Sjouwerman

Reporters investigating Russian military intelligence have been targeted by highly sophisticated cyber attacks through their encrypted email accounts, with evidence suggesting Moscow was ...

CEO Fraud Phishing Scams Versus The U.K. Solicitors

Jul 31, 2019 10:56:48 AM By Stu Sjouwerman

The UK’s Solicitors Regulation Authority (SRA) has warned of another email scam that impersonated a real law firm in order to hijack a real estate transaction, according to Martin Parrin ...

15-year old MyDoom Remains a Common Phish Hook

Jul 30, 2019 6:35:23 AM By Stu Sjouwerman

The destructive email worm MyDoom is still very active more than fifteen years after it was first spotted, according to ZDNet. Researchers at Palo Alto Networks’ Unit 42 observed 663,000 ...

Security Awareness Training Blog

Phishing Blog

View Topics