Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Social Engineering Blog

Latest social engineering news, analysis, tactics the bad guys are using and what you can do to defend your organization.

View Topics

Phishing Attack: Your Twitter friend may not really be your friend

Jul 15, 2013 2:03:00 PM By Stu Sjouwerman
There is a new phishing campaign doing the rounds trying to get your Twitter login credentials. The scam arrives as a direct messages to prospective victims from one of their contacts. ...
Continue Reading

7 reasons for security awareness failure

Jul 11, 2013 12:04:00 PM By Stu Sjouwerman
Ira Winkler and Samantha Manke just wrote a great article at the CSO site about why security awareness programs fail. They started out with: "There is a great dichotomy in Security ...
Continue Reading

CTO of media company faked-out employees with "phishing" emails

Jul 8, 2013 10:54:00 AM By Stu Sjouwerman
There is a fascinating article in SC Magazine dated July 3, 2013 which tells the story of Atlantic Media Chief Technology Officer Tom Cochran, who blasted out a simulated phishing email ...
Continue Reading

Five Ways Your Employees Can Kill Your Company

Jul 6, 2013 1:17:00 PM By Stu Sjouwerman
One - Insider Threat: Stealing valuable information for either profit or idealistic motives. Examples: Software developers taking home code for their next job, sales people downloading ...
Continue Reading

The Inevitability Of "The Click"

Jul 3, 2013 4:17:00 PM By Stu Sjouwerman
From the 2013 Verizon Data Breach Investigations Report. Note that i t only takes 20 emails to get one successful click on a phishing attack. Read the story above!
Continue Reading

FBI Warns of Spear-Phishing Attacks

Jul 2, 2013 1:17:00 PM By Stu Sjouwerman
Spear-phishing attacks are up, and they are targeting individuals across all industries, according to a new warning issued by the U.S. Federal Bureau of Investigation .
Continue Reading

How Zombie Phones Could Create a Gigantic, Mobile Botnet

Jun 27, 2013 3:44:00 PM By Stu Sjouwerman
Seen "World War Z" recently? Your mobile phone might soon be infected and become a zombie.
Continue Reading

Why Business Is Losing The War Against Cybercrime

Jun 27, 2013 9:42:00 AM By Stu Sjouwerman
Price Waterhouse (PwC) and CSO Magazine just released their 2013 State of Cybercrime Survey. It shows that lack of risk awareness means companies are poorly defended. This is their 11th ...
Continue Reading

Great Video Illustrates Need For Security Awareness Training

Jun 25, 2013 10:38:00 AM By Stu Sjouwerman
Continue Reading

Snowden Exfiltrated NSA Files On Thumb Drive

Jun 18, 2013 4:47:00 PM By Stu Sjouwerman
It appears that Edward Snowden used a thumb drive to exfiltrate the Top Secret files documents from NSA's network. The US DoD banned the use of flash drives in 2008 after Defense systems ...
Continue Reading

Scam Of The Week: CIA Prism Watchlist

Jun 18, 2013 9:01:00 AM By Stu Sjouwerman
Scam Of The Week: CIA Prism Watchlist Just this morning, a researcher discovered an email uploaded to Virustotal called CIA's_prism_Watchlist_.eml. The content refers to Snowden, and the ...
Continue Reading

SlideShare Puts Us On Front Page!

Jun 17, 2013 3:02:00 PM By Stu Sjouwerman
The super popular SlideShare site has featured our Seven Social Engineering Vices slide deck on their front page for a short time. Here is what they sent me!
Continue Reading

The Three Types Of Cyberattacks

Jun 17, 2013 9:54:00 AM By Stu Sjouwerman
Eugene Kaspersky recently gave one of his very rare interviews. He was in Israel for a staff recruitment tour, and was quoted saying:"
Continue Reading

New on SlideShare: The Seven Deadly Social Engineering Vices

Jun 13, 2013 10:11:00 AM By Stu Sjouwerman
The Seven Deadly Social Engineering Vices blog post has been viewed well over 11,000 times and has gone viral. That's why we created a (much prettier) SlideShare version for you which you ...
Continue Reading

Data Breach Costs: 10 Ways You're Making It Worse

Jun 10, 2013 11:14:00 AM By Stu Sjouwerman
Inadequate response plans and poorly executed procedures caused data breach costs to rise significantly at some businesses, according to the Ponemon Institute. Mistakes, negligence and ...
Continue Reading

Citadel 'Shutdown' Just A Microsoft PR Move

Jun 9, 2013 10:11:00 AM By Stu Sjouwerman
It was all over the news. The Citadel botnet responsible for stealing more than 500 million dollars out of bank accounts from both individuals and organizations worldwide has been largely ...
Continue Reading

Did China Leak Prism Deliberately?

Jun 8, 2013 10:54:00 AM By Stu Sjouwerman
UPDATED June 9: 16:51p - In an interview with TechCrunch, Eugene H. Spafford, a computer science professor at Purdue and a noted expert in computer security observed something ...
Continue Reading

How the Syrian Electronic Army Hacked The Onion

Jun 3, 2013 5:48:00 PM By Stu Sjouwerman
This is a write-up of how the Syrian Electronic Army hacked The Onion using spear-phising. In summary, they phished Onion employees’ Google Apps accounts via 3 separate methods. From ...
Continue Reading

Cybercrime Targets: C-Level execs, HR managers and System Admins

Jun 3, 2013 3:10:00 PM By Stu Sjouwerman
According to a recent research of Group-IB on cybercrime, senior management is considered among most popular targets.
Continue Reading

The Seven Deadly Social Engineering Vices

May 27, 2013 10:55:00 AM By Stu Sjouwerman
(updated June 17, 2015) You may not be aware that there is a scale of seven deadly vices connected to social engineering. The deadliest social engineering attacks are the ones that have ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews