Security Awareness Training Blog

Spear Phishing Blog

Learn about current spear phishing attacks, specific examples, and techniques the bad guys are currently using so your users don't fall for these attacks.

Phishing: 4.5 million Community Health patients records stolen

n">(Reuters) - Community Health Systems Inc, one of the biggest U.S. hospital groups, said it was the victim of a cyber attack that originated in China, resulting in the theft of personal ...
Continue Reading

Tenn. Firm Sues Bank Over $327K Cyberheist

Continue Reading

Scam Of The Week: See Robin Williams Last Words On Video

Last night, news broke that Robin Williams was found dead in his home in Marin County, CA. It is suspected that it was either a suicide or an overdose. This is a celebrity death that the ...
Continue Reading

Phishing Scam Of The Week: Free World Cup Trip To Brazil

The 2014 FIFA World Cup football (soccer) has kicked off this week, and so have phishing campaigns trying to trick you into scams for free tickets, realtime news and online streaming of ...
Continue Reading

CryptoLocker Clone Serves Up Energy Bill Spam Campaign

And here's another ransomware wannabe that has ripped off the CryptoLocker brand but is something totally different. A recent spam campaign sending out emails masquerading as an ...
Continue Reading

CryptoLocker Goes SpearPhishing

You may be familiar with a site called Spiceworks. They have free system admin and network management software, and their business model is advertising to the hundreds of thousands that ...
Continue Reading

Microsoft to XP You Are Dead To Us

Microsoft to XP: "You Are Dead To Us". This week, Redmond reminded all of us still running XP that we would not receive security updates on Patch Tuesday or any future patches of any ...
Continue Reading

Phishing Attacks Work Best On Wednesday, Coming From IT

I had a look at the recent Mandiant M-Trends report. Interesting stuff. They observed that employees seem to fall for hacking tricks mostly on Wednesdays, and are most likely to click on ...
Continue Reading

ALERT - CryptoLocker Has A Competitor That Is Worse: CryptoDefense

As we said before, there is furious competition between cybergangs. Late February 2014 a copycat ransomware competitor to Cryptolocker was released which outdoes CryptoLocker. The malware ...
Continue Reading

Attacks Give Lift to Cyber Insurance

Today in the Wall Street Journal, reporter Leslie Scism quoted Bloomberg News that "Target's data breach 'was the equivalent of 10 free Super Bowl ads."
Continue Reading

Hackers hit Monster Jobs users with Gameover Zeus malware

Companies that are recruiting new employees are being targeted through Monster Jobs. The bad guys are using malware called Gameover Zeus, security firm F-secure reported in a blog post ...
Continue Reading

Target Breach: Where The Weak Points Were

Dave Kearns posted March 18 that he's been fascinated by the information that keeps coming out of the Taget Stores data breach. He's got a great analysis, and he ends off with words that ...
Continue Reading

Phishing FaceBook: Malaysia Plane MH370 Has Been Spotted

Hackers jump on every opportunity they can to trick people. This time they hijacked to story about the missing Malaysian Airlines plane.
Continue Reading

New Phishing Scam Promises Bitcoins

Lily Newman at the Future Tense blog wrote this post for the slate site, after Slate's news editor Chad Lorenz received a new phishing email purportedly from coinbase, who happily ...
Continue Reading

Scam Of The Week: "You may have cancer" phishing email

Amy Stevens of the PR group Davies Murphy became part of the story when Eduard Kovacs at SoftPedia picked up on her tweet about a phishing email she just received.  If you recently had a ...
Continue Reading

When A Stranger Calls

Dr. Neal Krawetz posted something very useful over at the hackerfactor. Apart from that it's also very entertaining. He is legally recording various cold-calls he gets. Some of them are ...
Continue Reading

Inevitable: Phishing That Pretends To Be Salesforce.com

Just a heads-up, screen shot above. The lifehacker site in Australia warned about a phishing scam using a "salesforce" email as bait. The bad guys will use anything to get you to click, ...
Continue Reading

How to Test the Phishing Savvy of Your Staff

Continue Reading

41 Percent Of Infected Pay The Cryptolocker Ransom

I have warned about the Cryptolocker ransomware before, but now we have some hard numbers about the percentage of people that are forced to pay up when a workstation or server has been ...
Continue Reading

Hackers Used Spear Phishing Attack To Hack CNN Blogs

Security analysts at Intelligence firm InterCrawler published the details of the investigation on recent attack against CNN Blogs and social media accounts. Recently a few social media ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews