Extremely Embarrassing 250,000-record Data Breach At Hookers.nl

Oct 14, 2019 10:50:12 AM By Stu Sjouwerman

The data of 250,000 users of Hookers.nl, a forum where experiences with prostitutes and escorts are exchanged, have been stolen and offered for sale on the internet. It concerns e-mail ...

Why Hack When You Can Con?

Oct 14, 2019 9:42:25 AM By Stu Sjouwerman

Organizations Experiencing Attacks Rises by 35% as Most Consider Themselves Cyber-Novices

Oct 14, 2019 7:00:00 AM By Stu Sjouwerman

An increase in attacks should equate to a rise in organizational cyber-preparedness. But according to new research from U.K. cyber insurer Hiscox, organizations simply aren’t ready.

U.S. Organizations Involved with Nuclear Deterrence are the Target of North Korean Phishing Attacks

Oct 14, 2019 7:00:00 AM By Stu Sjouwerman

Using some very sophisticated methods, the Kimsuky group is believed to be behind a spear phishing campaign aimed at stealing U.S. secrets.

Virtual Hard Disk Images Containing Malware Are Ignored by Windows and Antivirus Engines

Oct 11, 2019 7:19:53 AM By Stu Sjouwerman

This disturbing find by a CERT researcher demonstrates how attackers can encode malicious files within a Virtual Hard Disk (VHD) image that acts in the same way as a ZIP archive.

Universities Worldwide are the Target of Phishing Attacks by a Hacking Group Aimed at Stealing Research and Intellectual Property

Oct 11, 2019 7:17:19 AM By Stu Sjouwerman

The Iranian hacker group dubbed Colbalt Dickens has hit over 60 universities around the globe attempting to steal credentials to provide access to sensitive data.

Many in Utilities Sector Expect Attacks on Critical Infrastructure: Survey

Oct 11, 2019 7:00:00 AM By Stu Sjouwerman

Ed Kovacs at SecurityWeek reported on something that is one of the few things that keep me "awake at night":

Ransomware Still Plagues Organizations Despite Feeling Prepared for an Attack

Oct 10, 2019 7:00:00 AM By Stu Sjouwerman

New data from security vendor AlienVault shines a light on the real state of ransomware, and how concerned IT organizations are with preparing for and dealing with an attack.

Cybercriminals Leverage the U.K.’s Strong Customer Authentication Requirement in a New String of Phishing Attacks

Oct 10, 2019 7:00:00 AM By Stu Sjouwerman

Attackers are taking advantage of the requirement to secure online shopping and banking transactions processed within the U.K. to gather personal details of consumers and users alike.

Chinese State-Sponsored Phishing

Oct 9, 2019 7:15:59 AM By Stu Sjouwerman

A sophisticated threat group is going after a variety of industries using spearphishing and an arsenal of malware, according to Nalani Fraser and Fred Plan from FireEye. Fraser and Plan ...

Is Cyberinsurance a Reason for the Rise in Ransomware Attacks?

Oct 9, 2019 7:00:36 AM By Stu Sjouwerman

Are cybercriminals counting on the victim’s simple cost-to-benefit decision to have their cyber-insurer pay the ransom? And, if so, are they targeting companies with cyberinsurance?

Now here is something new! What The Heck Is War Shipping?

Oct 9, 2019 7:00:00 AM By Stu Sjouwerman

Our friends at Malwarebytes have a great article about this written by Pieter Arntz. This is a cross-post with grateful acknowledgement! :-D

Casbaneiro is the Hook in Alt-Coin Phishing

Oct 9, 2019 7:00:00 AM By Stu Sjouwerman

The Casbaneiro banking Trojan is going after Latin American victims’ cryptocurrency, Verdict reports. It’s being distributed via phishing emails which trick victims into downloading a ...

Fall LinkedIn Job Postings Are a Prime Vehicle for Job Scams, Cyber Attacks

Oct 9, 2019 6:56:31 AM By Stu Sjouwerman

LinkedIn says the Fall hiring season is very hot right now. With more than 20 million jobs posted, LinkedIn is the perfect way for scammers to trick users into becoming victims.

Ransomware is Having Its Best Year Ever

Oct 8, 2019 7:00:00 AM By Stu Sjouwerman

The recent rash of successful ransomware attacks against municipalities, state and local government, and school districts is bad for organizations and great for cybercriminals.

The Cost of a Data Breach is Expected to Rise by Two-Thirds Over the Next Five Years

Oct 8, 2019 7:00:00 AM By Stu Sjouwerman

The increase in attack effectiveness and remediation costs, along with new compliance fines are causing the cost of a data breach to rise significantly.

77% Of UK Workers Admit That They Have Never Received Any Form Of Cyber Security Training

Oct 7, 2019 9:53:15 AM By Stu Sjouwerman

77 per cent of UK workers admit that they have never received any form of training cyber skills training from their employer, according to a new study from Centrify, a leading provider of ...

So What Happens When Kevin Mitnick Meets Joe Perry?

Oct 7, 2019 7:40:24 AM By Stu Sjouwerman

So, Kevin Mitnick Meets Joe Perry from Aerosmith in Australia and someone asks him:

Phishing Awareness: Considerations for Schools

Oct 7, 2019 7:14:14 AM By Stu Sjouwerman

Educating students and staff about phishing attacks is essential to protecting schools, according to Matt Britland, Director of IT and digital strategy at Alleyn’s School in London. In an ...

Amazon, Paypal, and Gmail Users are the Latest Target in a Sophisticated Multistage Phishing Attack

Oct 7, 2019 7:08:20 AM By Stu Sjouwerman

The latest attack, dubbed “Heatstroke” uses new target-specific phishing kits that may be sold as a “phishing-as-a-service” using new techniques to avoid leaving a trail.

Security Awareness Training Blog