Social Engineering

Social Engineering news, information, and how-to advice

Spam industry reinvented as messages containing malicious links surge

Malicious links now in one in six spam emails

nuclear bomb test bikini atoll and enewetak october 21 1952 dv1282017

piggy bank 164630734

Stolen data allegedly used by Irish credit unions to find debtors

Private investigators, said to be working on behalf of credit unions in Ireland, didn't need to be social engineering experts in order to convince staff at the Department of Social Protection (DSP) and other government agencies to...

Phishing key

Why it is time to intensify employee education on phishing

Companies should consider intensifying employee training to combat the increasing craftiness of phishers who are working harder to obtain personal details on targets in order to trap them in scams.


State-of-the-art spear phishing and defenses

Likelihood, severity support paying upfront for that ounce of prevention


Salted Hash: Live from DEF CON - Social Engineering

Social Engineering and DEF CON have always gone hand-in-hand, but after some of the things I've seen on the floor this weekend, it would seem that people have forgotten this – or the surge of new attendees have erased that barrier of...

Nigerian 419 scams and 'Silver Spaniel' targets Aussie businesses

Businesses need to be more aware of common malware campaigns such as ‘Silver Spaniel' and Nigerian 419 scams, which are targeting Australian organisations.

serverskulls header

A practical survival guide to Black Hat and DEF CON

Every year, thousands gather in Las Vegas to attend Hacker Summer Camp, or collectively the Black Hat, B-Sides Las Vegas, and DEF CON conferences. There's always a discussion surrounding personal and technical security before the...

10 new social media scams to watch out for

Scams on social networks are nothing new, but they're constantly changing to keep up with and take advantage of the latest apps, trends, and news. Here are some of the most recent scams that are making the rounds.

internet gavel keyboard

Duo sentenced to 14 years for Apple Phishing scheme

Two people have been sentenced to a total of 14 years in prison for conducting a Phishing campaign that targeted banking details. The criminals accused, Constanta Agrigoroaie, 23, and Radu Savoae, 28, used the stolen funds as a means...


Nigerian scammers move from gullible consumers to businesses

Nigerian scammers known for grammatically challenged emails promising riches in return for a small up-front payment are moving into the business of launching malware attacks against companies

serverskulls header

URL redirect flaw on NBC News website a spammer's dream

A URL redirection flaw on the NBC News website could be used by scammers to give links a false sense of added trust. This is in addition to ongoing abuse of MSNBC's publicly available Bitly API key, which is being used in an active...

stack of documents

Study examines the problems with metadata and file sharing

A study by Workshare, a company focused on secure file sharing applications, says that 68 percent of the 800 professionals surveyed failed to remove metadata before sharing documents. Due to this oversight, potentially sensitive...


Criminals target Flight 17 (MH17) discussions on Twitter

The tragedy that is Malaysia Airlines Flight 17 has sparked plenty of outrage, grief, and dismay on Twitter. Seeing an opportunity, criminals have targeted those discussions in order to spread malware.

binary hard drive

CryptoWall blamed for possible data breach at Benjamin F. Edwards & Co.

Warning of a potential data breach, Benjamin F. Edwards & Co. (BFE) says that CryptoWall, a variant of CryptoLocker, infected an employee's computer on May 27.

security awareness

No money, no problem: Building a security awareness program on a shoestring budget

Implementing a security awareness program seems rather straightforward, until you actually start to implement one - factoring in things like resources and the people (users) to be trained. At that point, it can seem complicated,...

security phishing

E-ZPass drivers warned about Phishing scam

E-ZPass Group, a toll collection program consisting of 25 agencies in 15 states, has issued a warning to customers concerning a Phishing scam that is posing as a collection notice.

security phishing

Campaign targeting user credentials discovered after five years

Researchers at Cyphort Labs have discovered a campaign that is actively targeting usernames and passwords, and has done so undetected since 2009.

Bitcoin and other currency

Phishing victim loses $60,000 in Bitcoin scam

A Phishing attack targeting people interested in bidding on the Silk Road Bitcoins has been successful, leading to a $60,000 loss for one firm.


Court summons scam makes a comeback

Researchers at AppRiver have been tracking an uptick in the number of emails containing the Zortob Trojan. The surge seems to be focused on an old scam, which warns the victim that they've been ordered to appear in court.

Load More