Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Social Engineering Blog

Latest social engineering news, analysis, tactics the bad guys are using and what you can do to defend your organization.

View Topics

Fake Amex ID Verification

May 21, 2012 6:11:47 AM By Stu Sjouwerman
[caption id="" align="alignleft" width="260" caption="Fake Amex ID Verification"][/caption] OK, here is another one to warn everyone about, especially the employees that have a ...
Continue Reading

Russia's most effective cybercriminals

May 16, 2012 10:53:39 AM By Stu Sjouwerman
Rod Rasmussen over at SecurityWeek has a really interesting article about a Russian cyber gang driving a massive wave of fraud: "Tucked away in a small town outside Moscow, Russia one of ...
Continue Reading

Gartner considers security awareness training an essential tool for all companies

May 12, 2012 8:34:07 AM By Stu Sjouwerman
Linda Musthaler, at NetworkWorld just wrote an excellent article about training workers to be cyber safe. One paragraph was especially noteworthy: “In 2012 we’re already seeing a sharp ...
Continue Reading

I am a malware coder and botnet operator

May 11, 2012 3:20:23 AM By Stu Sjouwerman
This is a discussion on Reddit, where a (presumably Polish) malware coder and botnet operator very candidly answers questions from people. This is a fascinating but rather technical read, ...
Continue Reading

News - FBI warns against malware installed via hotel networks

May 9, 2012 3:59:59 AM By Stu Sjouwerman
The Internet Crime Complaint Center had this 'Intelligence Note': "Recent analysis from the FBI and other government agencies demonstrates that malicious actors are targeting travelers ...
Continue Reading

The Average Cyberespionage Attack Goes On For 416 Days

May 6, 2012 3:03:48 AM By Stu Sjouwerman
WIRED Mag has a great article by Kim Zetter. It boils down to the fact that high-level hackers are able to get and stay in your network. And even if you are able to kick them out, they ...
Continue Reading

Symantec Report Says User Behavior is Root of Most Breaches

May 4, 2012 8:51:55 AM By Stu Sjouwerman
Tracy Kitten over at BankInfoSecurity spotted something interesting in Symantec's recent Internet Security Threat Report. This is the upshot: "Which Internet security threats pose the ...
Continue Reading

$1,000 Walmart Gift Card Scam Inflates Your Phone Bill

May 4, 2012 3:04:56 AM By Stu Sjouwerman
We have seen crooked Walmart gift card offers before, but now and then I run across one that's craftier than earlier versions. And as usual, you do not get the gift card, but a high dose ...
Continue Reading

Proof: Antivirus Only Defends Against Low-skilled Attackers

May 3, 2012 4:40:59 AM By Stu Sjouwerman
The SANS Computer Forensics and Incident Response team built a real-life network for their students so they could learn how to hack into the network. They put McAfee enterprise endpoint ...
Continue Reading

Bogus PayPal payment alert causes malware infection

May 2, 2012 3:12:03 AM By Stu Sjouwerman
Gary Warner just reported: "A new malicious spam campaign has just launched this morning targeting Paypal users. This malware campaign attempts to "social engineer" users into clicking a ...
Continue Reading

Cybercrime uses hidden file extensions to trick users

May 2, 2012 3:00:26 AM By Stu Sjouwerman
Symantec contributor Fred Gutierrez shows clearly in this blog post why it can be deadly to click on a .JPG file: "Cybercriminals have continuously evolved their methods throughout the ...
Continue Reading

Omaha cast net that caught cyberthieves

Apr 29, 2012 8:24:21 AM By Stu Sjouwerman
Matthew Hansen, World-Herald Staff Writer just wrote a great article that illustrates what I have been warning about these last years. It starts out like this: "Imagine for a moment that ...
Continue Reading

How to Start an IT Security Awareness Program

Apr 27, 2012 2:44:36 AM By Stu Sjouwerman
Mike Chapple is an IT professional and assistant professor of computer applications at the University of Notre Dame. He wrote at biztechmagazine:"Are your users aware of their ...
Continue Reading

Check Out This NY Traffic Ticket Phish!

Apr 26, 2012 4:29:04 AM By Stu Sjouwerman
Kevin Mitnick sent this phish over. It's a classic attempt to get you to avaid a problem, but the moment you click this link, life will become a lot more painful. So... Stop. Look. Think ...
Continue Reading

Antivirus 10-Second Flash Survey: Is this bonus attractive?

Apr 25, 2012 4:26:16 AM By Stu Sjouwerman
You're in the market to replace your existing Antivirus. One of the vendors on your shortlist has a Special Bonus they are offering. They are going to give you a free high-quality ...
Continue Reading

Bogus Olympics 2012 Email Warning Blindside Users With Malware

Apr 23, 2012 4:26:22 AM By Stu Sjouwerman
The upcoming London Olympics is undoubtedly one of the most highly-anticipated sports event of the year. It is also a favorite social engineering ploy among cybercriminals. Just recently, ...
Continue Reading

Scam Of The Week: 'The Evil Unsub'

Apr 20, 2012 3:56:05 AM By Stu Sjouwerman
An ordinary piece of spam slips through the filters, and you see a gorgeous sandy beach with palm trees. It's an enticing ad for a vacation to a tropical island, basically a big picture ...
Continue Reading

Six Steps To Successful Security Awareness Training

Apr 19, 2012 3:48:25 AM By Stu Sjouwerman
Continue Reading

SMS-controlled Malware Hijacks Android Phones

Apr 11, 2012 4:25:32 AM By Stu Sjouwerman
Researchers at NQ Mobile, working alongside researchers at North Carolina State University, have discovered new Android malware that is controlled via SMS that can do a number of things ...
Continue Reading

Finally Defined: 'Advanced Persistent Threat'

Apr 2, 2012 4:30:40 AM By Stu Sjouwerman
[caption id="" align="alignleft" width="650" caption="Advanced Persistent Threat"][/caption]
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews