Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Social Engineering Blog

Latest social engineering news, analysis, tactics the bad guys are using and what you can do to defend your organization.

View Topics

The Three Types Of Cyberattacks

Jun 17, 2013 9:54:00 AM By Stu Sjouwerman
Eugene Kaspersky recently gave one of his very rare interviews. He was in Israel for a staff recruitment tour, and was quoted saying:"
Continue Reading

New on SlideShare: The Seven Deadly Social Engineering Vices

Jun 13, 2013 10:11:00 AM By Stu Sjouwerman
The Seven Deadly Social Engineering Vices blog post has been viewed well over 11,000 times and has gone viral. That's why we created a (much prettier) SlideShare version for you which you ...
Continue Reading

Data Breach Costs: 10 Ways You're Making It Worse

Jun 10, 2013 11:14:00 AM By Stu Sjouwerman
Inadequate response plans and poorly executed procedures caused data breach costs to rise significantly at some businesses, according to the Ponemon Institute. Mistakes, negligence and ...
Continue Reading

Citadel 'Shutdown' Just A Microsoft PR Move

Jun 9, 2013 10:11:00 AM By Stu Sjouwerman
It was all over the news. The Citadel botnet responsible for stealing more than 500 million dollars out of bank accounts from both individuals and organizations worldwide has been largely ...
Continue Reading

Did China Leak Prism Deliberately?

Jun 8, 2013 10:54:00 AM By Stu Sjouwerman
UPDATED June 9: 16:51p - In an interview with TechCrunch, Eugene H. Spafford, a computer science professor at Purdue and a noted expert in computer security observed something ...
Continue Reading

How the Syrian Electronic Army Hacked The Onion

Jun 3, 2013 5:48:00 PM By Stu Sjouwerman
This is a write-up of how the Syrian Electronic Army hacked The Onion using spear-phising. In summary, they phished Onion employees’ Google Apps accounts via 3 separate methods. From ...
Continue Reading

Cybercrime Targets: C-Level execs, HR managers and System Admins

Jun 3, 2013 3:10:00 PM By Stu Sjouwerman
According to a recent research of Group-IB on cybercrime, senior management is considered among most popular targets.
Continue Reading

The Seven Deadly Social Engineering Vices

May 27, 2013 10:55:00 AM By Stu Sjouwerman
(updated June 17, 2015) You may not be aware that there is a scale of seven deadly vices connected to social engineering. The deadliest social engineering attacks are the ones that have ...
Continue Reading

Webroot Spots NATO Job Apps Lead To Malware

May 26, 2013 10:35:00 AM By Stu Sjouwerman
This one qualifies as a Scam Of The Week and it's a good one to forward to your employees.
Continue Reading

0-Day Threats and Security Awareness

May 23, 2013 10:34:00 AM By Stu Sjouwerman
OK, we all know that there is a lively trade in 0-day threats. Often this is an unknown vulnerability in a popular browser that is not fixed yet. Microsoft recently announced they fixed ...
Continue Reading

Phishing Scam Of The Week: Walmart.com

May 17, 2013 9:50:00 AM By Stu Sjouwerman
Wal-Mart took special effort this week and warned customers of an unusually 'high quality' phishing email that tries to get personal and credit information. They stated on their corporate ...
Continue Reading

Facebook 'Fraud-as-a-Service' Promoted Via Google

May 14, 2013 10:13:00 AM By Stu Sjouwerman
You may have read CyberheistNews Vol 3, #19, which had 'Fraud-as-a-service Goes Mainstream' as its headline. Here is a follow up on that. You can now download apps that hack Facebook, and ...
Continue Reading

Twitter Warning: "We Believe That These Attacks Will Continue"

May 1, 2013 5:14:00 PM By Stu Sjouwerman
Continue Reading

Consumer Reports: 9.2 Million Phishing Victims Last Year

May 1, 2013 4:58:00 PM By Stu Sjouwerman
Consumer Reports today came out with some numbers that should give you pause. 9.2 Million Americans fell victim to a phishing attack last year, and a whopping 58.2 Million had a malware ...
Continue Reading

Why We Need Security Awareness Training Programs

Apr 30, 2013 11:09:00 AM By Stu Sjouwerman
Continue Reading

$1Million Cyberheist From Leavenworth Hospital

Apr 27, 2013 3:13:00 PM By Stu Sjouwerman
Kevin Mitnick sent me an article that illustrates why it is needed to train all employees not to fall for hacker tricks: "Friday, April 26, 2013 - WENATCHEE — Hackers stole more than $1 ...
Continue Reading

10 Tips To Secure Funding For A Security Program

Apr 21, 2013 3:54:00 PM By Stu Sjouwerman
Over at the CSO site, Dominic Nessi, CIO for Los Angeles World Airports, outlines ten essential tips for getting your financial team on board with your security funding requests.
Continue Reading

Phishing Confusion Example

Apr 7, 2013 12:42:00 PM By Stu Sjouwerman
So, yesterday I received this email from my Identity Theft Provider. Been with them since 2008 so I know how their emails look. Normally I get the "all clear" signal once a month, but ...
Continue Reading

Knowbe4 - CyberheistNews Vol 3, #14

Apr 3, 2013 3:48:00 PM By Stu Sjouwerman
Continue Reading

Automated Twitter DM Spear Phishing

Mar 21, 2013 7:42:00 AM By Stu Sjouwerman
Automated Twitter DM Spear Phishing. It was to be expected. Cyber criminals now are able to scrape your followers from Twitter, and send you a Direct Message (DM) supposedly coming from ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews