Is There Still Hope for Privacy?

Jan 28, 2020 8:15:00 AM By Perry Carpenter

January 28 is Data Privacy Day. In honor of that, I’d like to share some random thoughts on privacy that I put together for a recent webcast with StaySafeOnline.org. And when I say, ...

New Malware Upgrade Steals Browser and Email Client Credentials

Jan 27, 2020 12:28:36 PM By Stu Sjouwerman

Nothing is safe anymore. While tricking users into giving up their credentials still seems pretty impressive, new updates to the FTCode ransomware target the IDs and passwords on your ...

Cyber-Insurance Premiums Jump as High as 25% and May Now Require Co-Insurance

Jan 27, 2020 12:12:18 PM By Stu Sjouwerman

With enough claims under the belts of insurance companies covering data ransoms, data theft, and other types of cyberattack, the risk appears to be shifting somewhat back to the ...

Contributing to the Delinquency of a Major

Jan 27, 2020 8:33:40 AM By Stu Sjouwerman

A Swedish man used a multitude of forged credentials and a fake school diploma to join the Swedish military, where he maintained the ruse for eighteen years and eventually attained the ...

Scam Of The Week: "Kobe Bryant Dead, Dies in Helicopter Crash"

Jan 26, 2020 4:29:02 PM By Stu Sjouwerman

Today, news broke that Kobe Bryant died in a helicopter crash. His daughter Gigi was also on board and died in the crash. This is a celebrity death that the bad guys are going to be ...

[Heads-up] Will Proposed New Laws Ban Making Ransomware Payments?

Jan 25, 2020 10:21:52 AM By Stu Sjouwerman

The ransomware scourge has become much worse the last 12 months. Highly organized cybercrime gangs have iterated their attacks into a massive extortion racket.

Ransomware Costs Double as Attacks Increase in Downtime and Sophistication

Jan 24, 2020 3:23:15 PM By Stu Sjouwerman

With payouts as much as $780,000, new data shows ransomware threat actors are going after every sized organization doing more damage and asking for more money.

New EFS Ransomware Attack Uses Windows Encrypting File System Against Itself

Jan 24, 2020 3:20:04 PM By Stu Sjouwerman

The newly-spotted form of ransomware takes advantage of encryption capabilities built into Windows making it difficult for AV vendors to stop it.

Domain-Impersonation Increases by 400% as part of Conversational Hijacking Attacks

Jan 23, 2020 4:13:29 PM By Stu Sjouwerman

The latest data from security vendor Barracuda suggests that attackers heavily rely on lookalike domains as part of BEC scams that can result in CEO fraud, malware infection, or ransom.

FDIC Warns U.S. Financial Institutions of Elevated Risk of Cyberattack

Jan 23, 2020 4:05:27 PM By Stu Sjouwerman

Citing “increased geopolitical tension”, banks are warned to immediately reevaluate to shore up cybersecurity controls and technology safeguards against ransomware and malware attacks.

New Phishing Attack Emerges Targeting ADP Users Wanting Their W2

Jan 23, 2020 9:33:17 AM By Stu Sjouwerman

For those looking to get their taxes done early, watch out for emails impersonating ADP offering a link to retrieve your W2 early!

Scam Of The Week: Exit Windows 7, Enter Scams

Jan 23, 2020 8:00:39 AM By Stu Sjouwerman

Microsoft ended support for the Windows 7 operating system on January 14th, and scammers are taking advantage of the long-anticipated news to launch tech support scams, according to the ...

Conversation-Hijacking Attacks Make It Almost Impossible to Avoid Becoming a Victim

Jan 23, 2020 7:45:20 AM By Stu Sjouwerman

Attackers target organizations to insert themselves into group email conversations as a way of ensuring the likelihood that one or more recipients are happy to unwittingly infect ...

The Great Crimeware Awakening

Jan 22, 2020 4:13:03 PM By Stu Sjouwerman

The bad guys are taking advantage of their new digital bounty. Ransomware is just the beginning to show us how bad it is soon going to be. We really had no idea how bad it was going to ...

Confront Apprehensive Compliance Before Disaster Strikes

Jan 22, 2020 8:36:35 AM By Joanna Huisman

This blog is co-written by Aimee Laycock and Joanna Huisman When it comes to fostering a more secure environment it’s not a question of wanting to…it’s more like YOU HAVE TO. ...

Amazon Phishbait Chums British Waters

Jan 22, 2020 8:22:27 AM By Stu Sjouwerman

Action Fraud, the UK's fraud reporting center, has warned of a widespread phone scam targeting Amazon customers. The phone calls are automated and inform recipients that their Amazon ...

Temporary Social Security Number? No Such Thing

Jan 22, 2020 8:16:07 AM By Stu Sjouwerman

Researchers at Kaspersky have come across an interesting phishing site that’s posing as a data leak protection service set up by the US government. The site purports to be compensating ...

Emotet Trojan Intelligently Targets Organizations, Impersonates Victims to Improve Attack Success

Jan 21, 2020 1:35:56 PM By Stu Sjouwerman

According to new insights from Cisco Talos, this banking malware is getting nastier as it moves into the island hopping space via email attacks using social engineering.

Phishing Attacks Are the Number One Data Breach Attack Vector in the U.K.

Jan 21, 2020 1:29:08 PM By Stu Sjouwerman

The latest cyber attack trend data in the U.K. shows the majority of data breaches in 2019 began with a phishing attack. Security consulting firm CybSafe analyzed three years of the ...

U.K. Report: "We’re Doomed-Passwords Aren’t Strong or Secure"

Jan 20, 2020 12:12:34 PM By Stu Sjouwerman

A recent survey of over 2,000 U.K. broadband users shows that individuals don’t use good password hygiene or secure storage to protect themselves against future cyberattacks.

Security Awareness Training Blog