Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


End of an Era – Microsoft is Ending Support for Windows 7 and Windows Server 2008 R2

Original release date: October 17, 2019

Personal note:  Windows 7 has been, and may always be, my favorite operating system of all time.  I have come to respect Windows 10, and of course I use it every day, but I have ...

Continue Reading →
0

Top Phishing Emails

Phishing continues to be the number one method that over 90% of cybersecurity incidents and breaches happen.  Cybersecurity Awareness Training and Phishing Simulation company KnowBe4 recently posted an article on their blog about the Top-Clicked Phishing Email Subjects.  Sharing this information with your staff is one way to limit the impact of these email exploits.

Here are the top subject lines used in emails by actual cyber-attackers.

Most Common ...

Continue Reading →
0

Corporate Execs Fear the Phish

A recent report says that 75% of corporate executives believe what 100% of cybersecurity professionals know:  phishing emails represent the greatest cyber-threat to business computer systems and networks.  Humans are still the weakest link in the cybersecurity chain.  Cybersecurity awareness training and simulated phishing testing is seen as the most effective way to improve detection and avoidance in employees.  To be truly effective training frequency should happen quarterly, but often is ...

Continue Reading →
0

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


FBI Releases Article on Think Before You Post Campaign

Original release date: September 5, 2019

The Federal Bureau of Investigation (FBI) has released an article on their Think Before You Post campaign, designed to educate students on the use of social media and how to avoid making poor choices when posting, texting, or emailing thoughts or grievances that ...

Continue Reading →
0

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


U.S. Cyber Command Shares 11 New Malware Samples

Original release date: September 8, 2019

U.S. Cyber Command has released 11 malware samples to the malware aggregation tool and repository, VirusTotal. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review U.S. Cyber Command’s VirusTotal page to view the samples. CISA also ...

Continue Reading →
0

Beware of Scammers Exploiting Recent Events

It seems that every new event brings out a crop of scammers ready to exploit the gullible.  Several recent scams are using the Equifax breach settlement, and the recent mass shootings in El Paso and Dayton to extract money from or deliver malware to their victims.

First, from KnowBe4, we have the details of several scams taking advantage of people attempting to get the $125 settlement payment they may be owed as a result of the Equifax ...

Continue Reading →
0

Lateral Phishing – A New Threat to Business Email

Phishing is getting better and harder to detect.  One new trend is using hijacked business email accounts to pivot further into a business, by using the built in trust of the company’s email domain to send phishing emails that appear to come from coworkers.  These phishing emails from trusted sources are used to hijack other email accounts in the same company.  This techniques ...

Continue Reading →
0

Don’t Get Emotional!

Social engineers have many tricks up their sleeves, and we have covered many of them in previous articles.  The biggest trick is phishing emails, of course, coupled with replica landing pages on hijacked websites.  Other methods include phone calls, such as fake tech support calls.  There are texting hoaxes, called smishing.  There are fake, cloned, or hijacked Facebook, LinkedIn, Twitter, and Instagram account ...

Continue Reading →
0
Page 1 of 11 12345...»