[Heads-up] The U.S. Launched A Cyber Attack On Iran, And We're Expecting Spear Phishing Strike Backs

Jun 23, 2019 11:30:59 AM By Stu Sjouwerman

The tension in the Middle-East apparently prompted a game-changing move by the U.S. President. Washington Post sources say exactly 10 years after Stuxnet, the President approved a ...

UK Forensic Crime Labs Shut Down Due To Ransomware Attack

Jun 22, 2019 10:48:19 AM By Stu Sjouwerman

Every police force across England and Wales has been forced to prioritize evidence for forensic testing following a criminal cyber attack affecting one of the primary forensic service ...

FBI Alert: Last Week Conflict With Iran Can Cause Spear Phishing Retaliation

Jun 22, 2019 10:34:21 AM By Stu Sjouwerman

This blog post has been superseded by a more recent one. You can find this new post here.

The Fake French Minister In A Silicone Mask Who Stole Millions

Jun 20, 2019 11:04:04 AM By Stu Sjouwerman

Identity theft is said to be the world's fastest-growing crime, but in sheer chutzpah there can be few cons to match the story of the fake French minister and his silicone mask.

How Hackers Emptied Church Coffers with a Phishing Attack and Social Engineering Phone Call

Jun 20, 2019 7:09:18 AM By Stu Sjouwerman

Cyber thieves aren't bound by a code of ethics. They look for weak targets and high rewards, which is exactly what Saint Ambrose Catholic offered.

Hit by Ransomware Attack, Florida City Agrees to Pay Hackers $600,000

Jun 20, 2019 6:36:50 AM By Stu Sjouwerman

It was all over the press, and even made it in the New York Times: "The leaders of Riviera Beach, Fla., looking weary, met quietly this week for an extraordinary vote to pay nearly ...

Subdomain Scam Hits Australian Government Seeking Money to “Register” Bogus Domain Names

Jun 20, 2019 6:21:09 AM By Stu Sjouwerman

Employees of agencies within the Australian government have been receiving targeted emails offering to register what amounts to a subdomain of a legitimate look-alike domain.

[Heads-up] Alarming Tool Creates Deep Fakes That Can Now Be Edited With A Text Editor

Jun 14, 2019 6:56:27 AM By Stu Sjouwerman

Social Engineering is at the Root of Nearly all Fraud Attacks

Jun 14, 2019 6:13:03 AM By Stu Sjouwerman

According to the latest fraud report from RSA, all four of the documented fraud attack methods use some form of social engineering to trick victims into giving up their money.

Biometrics Can’t Replace Passwords: A Cybercriminal's Dream

Jun 4, 2019 1:11:44 PM By Stu Sjouwerman

In the quest to create a more secure environment, new ways to authenticate that replace the password are being sought. But it’s looking like passwords are here to stay.

Red Flags Warn of Social Engineering

May 29, 2019 7:54:53 AM By Stu Sjouwerman

The easiest way to avoid falling for scams and other social engineering attacks is to have an understanding of the tactics employed by attackers, according to Roger A. Grimes, writing in ...

Account Takeover Attacks Increase as Cybercriminals Fine-Tune Their Brand Impersonation, Social Engineering, and Phishing Skills

May 17, 2019 6:35:31 AM By Stu Sjouwerman

The latest Spear Phishing Report from Barracuda highlights how cybercriminals are systematically improving their game… and are becoming more successful for it. The capturing of user ...

[Heads-Up] If This Is True It's A Disaster. Three Major US Antivirus Companies Breached? ***UPDATED

May 12, 2019 10:09:57 AM By Stu Sjouwerman

ARSTECHNICA is getting me worried here. We were all at KB4-CON in Orlando the last few days, and during the conference word got to me that security researchers found out that high-profile ...

[Spoiler!] That Free Avengers: Endgame Download You Found Online? It’s a Scam!

May 12, 2019 8:11:09 AM By Stu Sjouwerman

The lure of watching the latest Avengers movie is enough motivation for some to fall for this scam aimed at collecting your credit card data.

IT and Executives are (Mostly) in Alignment and Both Fear the Phish

May 6, 2019 8:00:00 AM By Stu Sjouwerman

According to the latest from AT&T Cybersecurity, enterprise IT and boardrooms largely see eye-to-eye… and those eyes are watching some very common, yet pervasive, threats.

Brunswick Church Falls For Phishing Scam Of Almost $2 Million

Apr 30, 2019 10:32:59 AM By Stu Sjouwerman

Staff at St. Ambrose Roman Catholic Church in Brunswick say the church was scammed out of nearly $2 million. The church said a phishing email led it to believe that a construction firm ...

PSA: How To Recognize Disinformation

Apr 30, 2019 6:49:28 AM By Stu Sjouwerman

One of the skills everyone needs to prevent social engineering attacks is to recognize disinformation. False information that is intended to mislead people has become an epidemic on the ...

Evil TeamViewer Attacks Under the Guise of the U.S. State Department

Apr 23, 2019 11:43:25 AM By Stu Sjouwerman

A targeted, email-borne attack against embassy officials and government finance authorities globally is making use of a malicious attachment disguised as a top-secret U.S. document. It ...

Spearphishing Boils Down to Basic Social Engineering

Apr 23, 2019 7:13:50 AM By Stu Sjouwerman

While spearphishing attacks may employ various tactics and tools, they all rely on the same underlying human weaknesses to achieve their goals, according to Asaf Cidon from Barracuda ...

Social Engineers Earn a First

Apr 23, 2019 7:09:17 AM By Stu Sjouwerman

A study by nonprofit research company Jisc and the UK’s Higher Education Policy Institute (HEPI) found that 100 percent of spear phishing tests against universities were able to gain ...

Security Awareness Training Blog

Social Engineering Blog

View Topics