Security Awareness Training Blog

Spear Phishing Blog

Learn about current spear phishing attacks, specific examples, and techniques the bad guys are currently using so your users don't fall for these attacks.

Billion Dollar Carbanak Cyberheist

As promised, here is more data about the Carbanak cyberheist in addition to the original post  First of all, a map that shows the IP addresses of the institutions that were hit. Kaspersky ...
Continue Reading

World's Biggest Cyberheist Cybergang Phished $900 Million Out Of Banks

More than 100 financial institutions in 30 countries have been the victim of a cyberheist that lasted in some cases almost 2 years. This was not a smash-and-grab but a highly ...
Continue Reading

Spear Phishing Attack Makes $17.2 Million In Three Days

Corporate cybercrime on an international scale has hit one of Omaha’s biggest and oldest companies. CEO Chuck Elsea's email address was spoofed and this cost them millions because their ...
Continue Reading

Data Breach at Health Insurer Anthem 80 million records

Last updated Feb 7, 2015 - Both the Wall Street Journal and cyber security blogger Brian Krebs reported that Anthem Inc., the nation’s second largest health insurer disclosed that hackers ...
Continue Reading

NY Times: North Koreans hacked Sony with spear-phishing attacks.

The next revelation about the Sony Picture hack: The NSA was already inside the North Korean's networks and could have warned Sony about the pending attack.
Continue Reading

Nine Data Breaches That Cost Someone Their Job

Following last year’s big announcement of not just Target’s data breach but executive job loss, CSO lays out 9 data breaches resulting in job loss. They compare Target alongside other ...
Continue Reading

Phishing Attack on German Steel Factory System Caused Massive Damage

Hackers breached security of a German steel mill's network and caused considerable damage by manipulating the controls of a blast furnace. The attackers gained access to the network ...
Continue Reading

Malware Used To Wipe Sony's Drives Was Quick And Dirty

It's still not clear (and it may never be discovered) how the Democratic People's Republic of (North) Korea (DPRK) hackers came in, perhaps they used all available threat vectors since ...
Continue Reading

Hackers Spear-phish ICANN And Compromise DNS Zone System

It does not get any worse than this. Or better than this, if you are a criminal hacker. Domain-name management organization ICANN announced it has been hacked and its DNS zone ...
Continue Reading

Ransomware Beats APT In Terms Of Severe Impact

MalwareBytes Research showed that in the year 2014, 82% of companies were attacked online. Their research also showed that browser vulnerabilities will be the biggest challenge going ...
Continue Reading

Phishing Quiz: Can You Spot A Scam? Don't Be So Sure

Phishing Quiz: Can You Spot A Scam? Don't Be So Sure CBSNews wrote: "Phishing emails have gotten so convincing that even the experts can be taken in by a well-crafted fake. That's what ...
Continue Reading

How Was Sony Pictures Hacked?

Kevin Mandia, who was hired as the forensics expert wrote in a letter to Sony's CEO that the breach was unprecedented, well-planned and carried out by an "organized group". It's the most ...
Continue Reading

Savvy Hackers Use Spearphishing to steal Wall Street M&A info

What if you knew beforehand about mergers and acquisitions, and could trade with that inside information? Well that's been going on for more than a year. 
Continue Reading

STATE DEPT COMPUTERS HACKED, EMAIL SHUT DOWN

Associated Press just reported that the State Department has taken the unprecedented step of shutting down its entire unclassified email system as technicians repair possible damage from ...
Continue Reading

New Flavor of Ransomware Is More User Friendly

It's been more than a year since the first vicious ransomware stuck up its ugly head.
Continue Reading

Small business thinks workers are weak cybersecurity link

The poll was conducted by Spiceworks Voice of IT on behalf of CloudEntr in September. The study collected 438 surveys from IT professionals at companies with 20 to 499 employees in ...
Continue Reading

Home Depot Hackers Also Steal 53 Million Email Addresses

As if it wasn't bad enough to lose 56 million credit card accounts, now Home Depot has to admit it also lost 53 million email addresses. This gives the bad guys a fabulous opportunity to ...
Continue Reading

Symantec: Crypto Ransomware Phishing Up 700 Percent in 2014

Very interesting data from Symantec. This is fresh from the press and shows Phishing, Spam and Malware trends. There is a PDF with a whole bunch more data, but these are the most relevant ...
Continue Reading

Cyber Criminals Use AEA-256 Crypto To Obfuscate Phishing Sites

The Register said: "Well, at least someone listened to Snowden about privacy... Phishing fraudsters have begun using industry-standard AES-256 encryption to disguise the content of ...
Continue Reading

KnowBe4's Email Exposure Check Discovers Data Breach

You are probably aware of the free one-time Email Exposure Check (EEC) we can run for you. We find all the email addresses of your domain that are out there available on the Internet. If ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews