Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Social Engineering Blog

Latest social engineering news, analysis, tactics the bad guys are using and what you can do to defend your organization.

View Topics

We started trusting bad code from Day One

Aug 11, 2013 2:08:00 PM By Stu Sjouwerman
Vint Cerf – Photo by Charles Haynes
Continue Reading

Scam Of The Week: "Held For Ransom"

Aug 10, 2013 9:16:00 AM By Stu Sjouwerman
You should alert your users that a particularly effective scam is growing by leaps and bounds recently. It's not new, but it's bursting into mainline cybercrime these last few weeks. The ...
Continue Reading

Watching Porn on a Mobile …Risky?

Aug 8, 2013 11:26:00 AM By Stu Sjouwerman
The Internet has its own Red Light District, and it is one of the most unsafe areas you can browse. Online porn is a profitable sideline for the adult industry, but a mainline business ...
Continue Reading

Scam Of The Week: Christian Singles

Jul 28, 2013 1:21:00 PM By Stu Sjouwerman
Continue Reading

Employees the Weakest Link of Cyber Security, Report Finds

Jul 22, 2013 10:31:00 AM By Stu Sjouwerman
Antivirus company Bitdefender reported something important. Here is their blog post of July 17, 2003.
Continue Reading

Congressional Aides Targeted By Spear-phishing Attacks

Jul 19, 2013 10:05:00 AM By Stu Sjouwerman
Reuters just reported that Congressional aides in the Senate and House of Representatives said on Thursday that they were notified of a potential security risk involving email and other ...
Continue Reading

My New Pebble Smartwatch: A Social Engineering Problem

Jul 19, 2013 9:44:00 AM By Stu Sjouwerman
Continue Reading

Why help desk employees are a social engineer's favorite target

Jul 18, 2013 9:37:00 AM By Stu Sjouwerman
Steve Rangan over at the The CSO site wrote:
Continue Reading

Phishing Attack: Your Twitter friend may not really be your friend

Jul 15, 2013 2:03:00 PM By Stu Sjouwerman
There is a new phishing campaign doing the rounds trying to get your Twitter login credentials. The scam arrives as a direct messages to prospective victims from one of their contacts. ...
Continue Reading

7 reasons for security awareness failure

Jul 11, 2013 12:04:00 PM By Stu Sjouwerman
Ira Winkler and Samantha Manke just wrote a great article at the CSO site about why security awareness programs fail. They started out with: "There is a great dichotomy in Security ...
Continue Reading

CTO of media company faked-out employees with "phishing" emails

Jul 8, 2013 10:54:00 AM By Stu Sjouwerman
There is a fascinating article in SC Magazine dated July 3, 2013 which tells the story of Atlantic Media Chief Technology Officer Tom Cochran, who blasted out a simulated phishing email ...
Continue Reading

Five Ways Your Employees Can Kill Your Company

Jul 6, 2013 1:17:00 PM By Stu Sjouwerman
One - Insider Threat: Stealing valuable information for either profit or idealistic motives. Examples: Software developers taking home code for their next job, sales people downloading ...
Continue Reading

The Inevitability Of "The Click"

Jul 3, 2013 4:17:00 PM By Stu Sjouwerman
From the 2013 Verizon Data Breach Investigations Report. Note that i t only takes 20 emails to get one successful click on a phishing attack. Read the story above!
Continue Reading

FBI Warns of Spear-Phishing Attacks

Jul 2, 2013 1:17:00 PM By Stu Sjouwerman
Spear-phishing attacks are up, and they are targeting individuals across all industries, according to a new warning issued by the U.S. Federal Bureau of Investigation .
Continue Reading

How Zombie Phones Could Create a Gigantic, Mobile Botnet

Jun 27, 2013 3:44:00 PM By Stu Sjouwerman
Seen "World War Z" recently? Your mobile phone might soon be infected and become a zombie.
Continue Reading

Why Business Is Losing The War Against Cybercrime

Jun 27, 2013 9:42:00 AM By Stu Sjouwerman
Price Waterhouse (PwC) and CSO Magazine just released their 2013 State of Cybercrime Survey. It shows that lack of risk awareness means companies are poorly defended. This is their 11th ...
Continue Reading

Great Video Illustrates Need For Security Awareness Training

Jun 25, 2013 10:38:00 AM By Stu Sjouwerman
Continue Reading

Snowden Exfiltrated NSA Files On Thumb Drive

Jun 18, 2013 4:47:00 PM By Stu Sjouwerman
It appears that Edward Snowden used a thumb drive to exfiltrate the Top Secret files documents from NSA's network. The US DoD banned the use of flash drives in 2008 after Defense systems ...
Continue Reading

Scam Of The Week: CIA Prism Watchlist

Jun 18, 2013 9:01:00 AM By Stu Sjouwerman
Scam Of The Week: CIA Prism Watchlist Just this morning, a researcher discovered an email uploaded to Virustotal called CIA's_prism_Watchlist_.eml. The content refers to Snowden, and the ...
Continue Reading

SlideShare Puts Us On Front Page!

Jun 17, 2013 3:02:00 PM By Stu Sjouwerman
The super popular SlideShare site has featured our Seven Social Engineering Vices slide deck on their front page for a short time. Here is what they sent me!
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews