New UK Study: "3 out of 4 phishing scams get to your inbox untouched"

Aug 5, 2019 7:10:08 AM By Stu Sjouwerman

Chris Matyszczyk wrote: "Apple sends me so many invoices every week that I scarcely know what I've gone and bought. This appears to have also crossed the minds of researchers at the UK's ...

Why School Districts are Targets of Social Engineering

Aug 5, 2019 6:56:36 AM By Stu Sjouwerman

School districts are becoming increasingly popular targets for ransomware, with at least five of these attacks occurring in July, according to the New York Times.

Why Is Windows Defender The World's No. 1 Antivirus With More Than Half A Billion EndPoints?

Aug 3, 2019 11:16:31 AM By Stu Sjouwerman

Having been inside the AntiVirus software industry for quite a while, and building an AV tool from the ground up, when I saw Redmond start acquiring several small AV companies in 2008 and ...

Churches and Other Not-for-Profits as Targets of Scams

Aug 2, 2019 7:04:38 AM By Stu Sjouwerman

On this week’s episode of the CyberWire’s Hacking Humans podcast, Dave Bittner and Joe Carrigan discussed a story written by two lawyers for Church Law & Tax that warns of a type of ...

Freight Forwarding Email Scams are Business Killers

Aug 1, 2019 7:13:06 AM By Stu Sjouwerman

The Australian Cyber Security Centre (ACSC) has warned that multiple Australian IT suppliers have permanently closed their doors after falling victim to procurement scams, CRN reports. ...

Scam Of The Week: Equifax Settlement Phishing

Jul 31, 2019 3:55:21 PM By Stu Sjouwerman

Well, that did not take long! The Equifax Data Breach resulted in a settlement and those affected have a choice between free credit monitoring or a $125 payment.

Buyers of Facebook’s Libra Cryptocurrency are the Latest Target in Phishing Scams

Jul 31, 2019 3:25:57 PM By Stu Sjouwerman

Scammers are impersonating Facebook to trick potential buyers of Facebook’s new cryptocurrency into parting with their money.

Russian Phishing: Swiss-based Email Provider ProtonMail Hit By Cyber Attack

Jul 31, 2019 11:34:47 AM By Stu Sjouwerman

Reporters investigating Russian military intelligence have been targeted by highly sophisticated cyber attacks through their encrypted email accounts, with evidence suggesting Moscow was ...

CEO Fraud Phishing Scams Versus The U.K. Solicitors

Jul 31, 2019 10:56:48 AM By Stu Sjouwerman

The UK’s Solicitors Regulation Authority (SRA) has warned of another email scam that impersonated a real law firm in order to hijack a real estate transaction, according to Martin Parrin ...

15-year old MyDoom Remains a Common Phish Hook

Jul 30, 2019 6:35:23 AM By Stu Sjouwerman

The destructive email worm MyDoom is still very active more than fifteen years after it was first spotted, according to ZDNet. Researchers at Palo Alto Networks’ Unit 42 observed 663,000 ...

New Ransomware Strain Spreads Via SMS

Jul 30, 2019 6:11:55 AM By Stu Sjouwerman

A new Android ransomware strain was discovered by ESET researchers. It uses the victim's contact list to spread further using SMS messages that have malicious links.

Iranian Hacker Group APT34 Use New ‘Tonedeaf’ Malware over LinkedIn in Latest Phishing Campaign

Jul 29, 2019 2:49:46 PM By Stu Sjouwerman

Targeting several key industries, this new campaign likely seeks to aid the Iranian government with information that could be of use to further Iran’s economic and security goals.

[Heads-up] Nationwide Bomb Threat Extortion Phishing Attack Campaign With A Twist

Jul 29, 2019 12:17:40 PM By Stu Sjouwerman

IN OFFICES AND universities all across the country Thursday, the same threat appeared in email inboxes: Pay $20,000 worth of bitcoin, or a bomb will detonate in your building. Police ...

Reuters: "BlackRock in talks to take over Cofense after U.S. security concerns - sources"

Jul 29, 2019 7:04:11 AM By Stu Sjouwerman

(Reuters) July 28, 2019 — "BlackRock Inc (BLK.N), an investor in Cofense Inc, is in advanced talks to take over the U.S. cyber security firm, after a U.S. national security panel asked ...

Schools In Both The US And UK Victim Of Recent Phishing Attacks

Jul 29, 2019 6:42:38 AM By Stu Sjouwerman

A number of educational institutions have recently fallen victim to cyberattacks, highlighting the need for increased awareness training for students and faculty. SC Media UK has ...

Here Is Some Great InfoSec Budget Ammo From UBS

Jul 27, 2019 7:19:40 AM By Stu Sjouwerman

A KnowBe4 employee forwarded this PDF to me. There is a very interesting point in here: your cybersecurity practices affect the valuation of your company. That should get the attention of ...

OSINT – a Hacker’s First Asset in Targeted Attacks

Jul 25, 2019 5:19:19 PM By Stu Sjouwerman

Before a cybercriminal wants to engage in a targeted attack against a particular organization or individual, they’d like to know a few things first. That’s where OSINT comes into play.

New Study Finds Employees Pose the Greatest Cybersecurity Risk

Jul 25, 2019 5:15:59 PM By Stu Sjouwerman

While historically being seen as an organization’s greatest asset, the latest report from the analyst firm Ponemon cites humans as the weakest link.

Netflix's New "The Great Hack" Reminds Us -- If you Don't Pay For the Product You Are The Product

Jul 25, 2019 5:11:46 PM By Stu Sjouwerman

Last night, Netflix premiered “The Great Hack” which is based on the Cambridge Analytica scandal. They reminded us of the golden expression: “If you don't pay for the product you are the ...

BEC = “Because it’s Easy Cash” Scammers Trick Employees Into Giving Away Customer Info

Jul 25, 2019 10:51:29 AM By Stu Sjouwerman

Business Email Compromise—also known as CEO Fraud—scammers are now targeting a company's customers using a new indirect attack method designed to collect information on future scam ...

Security Awareness Training Blog