Phishing Emails Will Always Get Through

Apr 24, 2019 2:12:51 PM By Stu Sjouwerman

Attackers have proven their ability to adapt to improved security measures, and organizations should never assume they’re safe from phishing emails, says Paul Gillin at SiliconANGLE.

Executives are Out and Employees are In as Cybercriminals Change Their Primary Targets for Cyberattack

Apr 24, 2019 7:18:42 AM By Stu Sjouwerman

Phishing and Social Engineering scammers are shifting tactics, focusing efforts on low-level employees using a variety of methods as a means to cast a wider net within a targeted ...

Phishing Attacks See Massive Increases and Improvements in Execution with Social Engineering at the Helm

Apr 24, 2019 7:15:22 AM By Stu Sjouwerman

With 98% of malicious emails that hit inboxes containing no malware, the evolution and future of the phish lies squarely in the hands of effective social engineering.

Why Ransomware Continues to Be an Immensely Profitable Business for Bad Actors

Apr 23, 2019 7:25:48 AM By Stu Sjouwerman

Ransomware, arguably the most efficient malware used by cybercrooks in recent years, continues to wreak havoc on a global scale, affecting everyone and everything, from regular Internet ...

Social Engineers Earn a First

Apr 23, 2019 7:09:17 AM By Stu Sjouwerman

A study by nonprofit research company Jisc and the UK’s Higher Education Policy Institute (HEPI) found that 100 percent of spear phishing tests against universities were able to gain ...

Florida Spearphishing: Meddle Globally, Phish Locally

Apr 22, 2019 6:58:17 AM By Stu Sjouwerman

Russian intelligence services sent spearphishing emails to more than 120 email accounts used by Florida election officials in November 2016, according to Special Counsel Robert Mueller’s ...

Ohio Becomes the Third U.S. State to Adopt the NAIC’s Insurance Data Security Model Law

Apr 22, 2019 6:34:13 AM By Stu Sjouwerman

Ohio joins South Carolina and Michigan to create cybersecurity legislation modeled after the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law.

Here are few Game of Thrones phishing scams you should know about and how to avoid them

Apr 18, 2019 5:23:17 PM By Stu Sjouwerman

With the Game of Thrones (GoT) Season 8 finally airing, bad guys are using a variety of social engineering tactics to trick your end-users.

[Heads-up] A GA County School System Only Just Escaped A 2 Million Dollar Cyber Attack

Apr 18, 2019 7:31:47 AM By Stu Sjouwerman

Armor, a leading global cloud security solutions provider, read the news about a recent cyberattack, where hackers targeted the payroll department of the city of Tallahassee, FL and ...

Scammers Impersonate Big UK Law

Apr 18, 2019 7:02:45 AM By Stu Sjouwerman

The UK’s Solicitors Regulation Authority (SRA) warned that scammers are impersonating a London law firm, Linklaters LLP, using phony job offers. The documents purport to come from the ...

Smishing Down Under

Apr 17, 2019 11:18:02 AM By Stu Sjouwerman

Banking malware is being installed on Android devices via malicious links in SMS messages, CRN reports. Cisco Talos discovered the malware being advertised on an exploit forum, and found ...

[SCAM OF THE WEEK]: Notre Dame Disaster Causes FireStorm Of Social Engineering And Misinformation

Apr 16, 2019 7:17:33 AM By Stu Sjouwerman

The Notre Dame Cathedral in Paris caught fire and was barely saved from total destruction. Millions of people visit every year and hundreds of millions feel a powerful, and personal, ...

Island Hopping Grows in Popularity as Attackers use One Victim to Create the Next

Apr 16, 2019 6:45:43 AM By Stu Sjouwerman

Cybercriminals no longer see your organization as just their next target; they see the organization as a valuable source of intel and the launch point for their next attack. In business ...

Insurers Discuss What to Expect from a Ransomware Attack, and How to Defend Yourself Against One

Apr 16, 2019 6:41:35 AM By Stu Sjouwerman

Ransomware tops the list of attacks for insurers of the food and beverage industry. Outdated software and lax user concern for security controls provide attacker with a way in.

Staff and Students Put School Districts at the Greatest Risk of Cyber Attack

Apr 16, 2019 6:35:25 AM By Stu Sjouwerman

Inadvertent sharing, phishing attacks, and ransomware top the list of attack vectors, with teachers, students, and vendors all contributing to the risk of breach.

Ottawa City Treasurer sends $128,000 to fraudsters in email phishing scam

Apr 10, 2019 7:05:29 AM By Stu Sjouwerman

The treasurer of the city of Ottawa, Marian Simulik, fell for a business email compromise (BEC) scam and sent $100,000 to a scammer, the city’s auditor general revealed this week. Simulik ...

[Heads-up] Survey Finds 82% Of You Are Impacted By Payment Fraud

Apr 10, 2019 6:53:10 AM By Stu Sjouwerman

Payment fraud continues to soar, as a record 82 percent of organizations reported incidents in 2018, according to the 2019 AFP Payments Fraud & Control Survey, underwritten by J.P. ...

A Powerful Malware That Tried To Blow Up A Saudi Plant Strikes Again

Apr 10, 2019 6:39:02 AM By Stu Sjouwerman

A highly capable malware reportedly used in a failed plot to blow up a Saudi petrochemical plant has now been linked to a second compromised facility.

Organizations Face a 63% Likelihood of Being the Victim of Successful Cyberattack in Next 12 Months

Apr 10, 2019 6:27:56 AM By Stu Sjouwerman

The latest data from 1,200 IT organizations shows organizations seeing attacks as inevitable and, for some industries, successful compromise as even more a given.

Pro Tip: Social Security Numbers Can’t be “Suspended”

Apr 9, 2019 6:38:06 AM By Stu Sjouwerman

A popular robocall scam is telling people that their Social Security numbers have been “suspended,” and then asking them to call back to speak a government agent about the issue, ...

Security Awareness Training Blog