Topics created by stus

Thanks a lot I'll read that soon.

So, my interpretation: linkedin.com(or is it linkedin227.onmicrosoft.com) should be banned from all email systems in the world. Sounds great to me!

Happy Sunday......

@stus said in [Heads-up] New Ransomware Strain Encrypts Cloud Email Real-time VIDEO:

@tim_g We do ! Now 15,000 customers. 🙂

I meant "your" figuratively 🙂

@jaredbusch said in 86% of security pros worry about a phishing future where criminals are using Artificial Intelligence:

As always, porn leads the way with early adoption technology.

Lol yeah I read through the article just to learn the premise of the pic...

Notta

@marcinozga said in New Ransomware Strain Evades Machine Learning Security Software:

@stus said

What do you do when all filters have failed?

What do you do? You don't allow scanning to email, period. Email inboxes are not file stores. Most of these machines allow you to scan to SMB share. Users need to learn to use file shares for storing files, not their email clients.

I have only setup scanning to SMB shares, so I am hoping that I don't have to deal with this. But users always surprise you in new and horrible ways.

Poland.

@emad-r said in SyncCrypt Uses Graphic File to Cloak Ransomware in ZIP Phishing Payload:

@stus

I always wondered how this step would execute:

Sync.exe is extracted from the attachment

If I put the world nasty virus in .7z file, it is contained and cant get it out. It needs somebody else to take it out.

Same thing for virus in JPG, wont that execute in Windows Photo Viewer, how would that run the virus ?

Something just is missing in my head, I understand users can be dumb but still if your player, file handler does not have security vulnerabilities the virus wont start.

Sadly, many of them do.

Youtube Video

@bigbear said in CEO Fraud Attacks Were Far More Lucrative than Ransomware over the Past 3 Years:

You get an email, it says "hey some guy you know is sharing a google doc or whatever, you need to sign in"

Then you pick on the website whethere you use Office 365, Google Apps, etc

Next thing you know the doc says cannot be found, so you forget about it. Meanwhile all your information has been compromised and it starts sending out emails to your contacts list.

With 2FA there is no way to use your login information because the attacker cant get that second stage of info when logging in. From what I have seen those phishing attempts dont even attempt to collect it.

Of course, thats hardly the only type of socially engineered attack.

Good attacks definitely do get and pass that info through.

So I am clicking through and I see the "Chief Hacking Officer" of this company is Kevin Mitnick?

And I'm thinking....

0_1499700354018_shot3.jpg

@stus Thanks. Was just reading about it here.