Return-Path: <1921889-438-1022@be3.maropost.com> Delivered-To: edward@transocean.com Received: from vps.transocean.com by vps.transocean.com (Dovecot) with LMTP id ueboMZ4WblntMQAAInt2oQ for ; Tue, 18 Jul 2017 07:09:34 -0700 Return-path: <1921889-438-1022@be3.maropost.com> Envelope-to: edward@transocean.com Delivery-date: Tue, 18 Jul 2017 07:09:34 -0700 Received: from mta7155.mp2200.com ([162.247.117.155]:37771) by vps.transocean.com with esmtp (Exim 4.89) (envelope-from <1921889-438-1022@be3.maropost.com>) id 1dXTBZ-0003cS-Oe for edward@transocean.com; Tue, 18 Jul 2017 07:09:34 -0700 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; s=default; d=knowbe4.com; t=1500386952; l=1; h=from:subject:date:to; bh=nR4OLZRZ0GUjrRPiikCTwjFrqv567Fsl8w66LhE1mcQ=; b=fiEnfGtQP5XBSfNApM2ablmk905RtR7m4Gw7lK5IFFsnH8c7wb6YJk62VlxFs6kfaEMC0Q gn81VDFmQdMSjpUJ8GODOHeP6uD5z6CcUm+FTt/DZnNrDrC5vMOzcT76Yz85JCUGg3lkJk 5TUpVD4y4lUbjXzMtl5aAOPzVXjI0bI= Received: from [<1921889-438-1022@be3.maropost.com>] ([<1921889-438-1022@be3.maropost.com>] helo=) by 649892-mailer2 (envelope-from 1921889-438-1022@be3.maropost.com) (Jetsend MTA 0.0.1 with ESMTP; Tue Jul 18 10:07:15 EDT 2017 Date: Tue, 18 Jul 2017 10:07:04 -0400 From: CyberheistNews Reply-To: feedback@knowbe4.com To: edward@transocean.com Message-ID: <4cc98360-4df0-0135-48fd-1402ec83b870@knowbe4.com> Subject: New. Your Complimentary Customized Automated Security Awareness Program: ASAP! Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_596e160825220_5cdb49ac140281008e5"; charset=UTF-8 Content-Transfer-Encoding: 7bit List-Unsubscribe: X-CampaignID: 438 X-Campaign-ID: 438 X-ContactID: 1921889 X-AccountID: 1022 X-Binding: 162.247.117.155 X-DkimDomain: knowbe4.com X-DkimSelector: default X-Feedback-ID: 438:Maropost X-Spam-Status: No, score=0.7 X-Spam-Score: 7 X-Spam-Bar: / X-Ham-Report: Spam detection software, running on the system "vps.transocean.com", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: If you are having trouble viewing this email, click here. http://newsletter.knowbe4.com/a/1022/preview/438/1921889/896dd0e87e8d0bb83c8161d3ba5ae01ce38ccb04 This email was sent to &lt;b&gt;edward@transocean.com&lt;/b&gt; by &lt;b&gt;feedback@knowbe4.com&lt;/b&gt; Manage Subscriptions http://newsletter.knowbe4.com/a/1022/unsubscribe/438/1921889/896dd0e87e8d0bb83c8161d3ba5ae01ce38ccb04 33 N Garden Ave, Suite 1200 Clearwater, FL 33755 USA Report Spam http://newsletter.knowbe4.com/a/1022/report_spam/438/1921889/896dd0e87e8d0bb83c8161d3ba5ae01ce38ccb04 [...] Content analysis details: (0.7 points, 3.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: knowbe4.com] 0.0 T_SPF_HELO_TEMPERROR SPF: test of HELO record failed (temperror) 0.0 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail domains are different -0.0 SPF_PASS SPF: sender matches SPF record 0.0 HTML_MESSAGE BODY: HTML included in message 0.8 BAYES_50 BODY: Bayes spam probability is 40 to 60% [score: 0.4068] 0.0 T_KAM_HTML_FONT_INVALID BODY: Test for Invalidly Named or Formatted Colors in HTML 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 0.0 LOTS_OF_MONEY Huge... sums of money 0.0 UNPARSEABLE_RELAY Informational: message has unparseable relay lines X-Spam-Flag: NO ----==_mimepart_596e160825220_5cdb49ac140281008e5 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit If you are having trouble viewing this email, click here. http://newsletter.knowbe4.com/a/1022/preview/438/1921889/896dd0e87e8d0bb83c8161d3ba5ae01ce38ccb04 This email was sent to &lt;b&gt;edward@transocean.com&lt;/b&gt; by &lt;b&gt;feedback@knowbe4.com&lt;/b&gt; Manage Subscriptions http://newsletter.knowbe4.com/a/1022/unsubscribe/438/1921889/896dd0e87e8d0bb83c8161d3ba5ae01ce38ccb04 33 N Garden Ave, Suite 1200 Clearwater, FL 33755 USA Report Spam http://newsletter.knowbe4.com/a/1022/report_spam/438/1921889/896dd0e87e8d0bb83c8161d3ba5ae01ce38ccb04 ----==_mimepart_596e160825220_5cdb49ac140281008e5 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable New. Your Complimentary Customized Automated Security Awaren= ess Program: ASAP!
3D""
If you are having trouble viewing this email, click here.
=
Email not displaying?
View = Knowbe4 Blog
CyberheistNews Vol 7 #28 =C2=A0 | =C2=A0 Ju= ly 18th., 2017

Many IT pros don=E2=80=99t exactly know where to start when it comes to c= reating a security awareness program that will work for their organizatio= n. We=E2=80=99ve taken away all the guesswork with our new, no-charge Aut= omated Security Awareness Program (ASAP).

ASAP is a revolutionary tool for IT professionals, which allows you to cr= eate a customized security awareness program for your organization that w= ill help you to implement all the steps needed to create a fully mature t= raining program in just a few minutes!

The program is complete with actionable tasks, helpful tips, courseware s= uggestions and a management calendar. Your custom program can then be ful= ly managed from within the KnowBe4 console. You also have the ability to = export the full program as a detailed or executive summary version in PDF= format, use it for compliance requirements, and reporting to management.=

The process of creating the program is simple enough, answer between 15-2= 5 questions about your goals and organization, and a program will be sche= duled for you automatically. The program tasks will be based on best-prac= tices how to achieve your security awareness goals. You have an easy cale= ndar view to plan and deploy your security awareness program.

Here's how it works:
  • 15-25 questions depending upon answer= s
  • Suggested training materials based on= answers
  • Choose and change your program start = date and tasks
  • Calendar and list view of tasks
  • Dashboard with program status, % comp= lete, tasks overdue, etc.
  • Detailed and summary exportable PDF v= ersions of your program
  • Fully mature awareness program ready = in 10 minutes
Find out what YOUR program will look like= . There is no cost... Start ASAP!
https://info.knowbe4.com/asap-chn

PS: If you=E2=80=99re a current KnowBe4 customer, just login to your cons= ole, click on ASAP at the top right and get started.
KnowBe4 customers run millions of phishing= tests per year, and we report quarterly on the latest top-clicked phishi= ng email subjects so our customers know what the highest-risk phishing te= mplates are. That way they can keep up with current threats and inoculate= their last line of defense, their users, against the most prevalent soci= al engineering attacks.

This InfoGraphic shows the most frequently clicked phishing emails from Q= 2 2017 in 3 separate categories: subjects related to social media, genera= l emails and 'In The Wild' attacks that we received from our customers by= employees clicking the Phish Alert Button on real phishing emails and se= nding the email to us for analysis.

While the results show that users click most frequently on business-relat= ed subject lines (=E2=80=9CSecurity Alert=E2=80=9D is the highest ranked = at 21 percent), they still click with alarming frequency on subject lines= completely unrelated to work topics. Blog post with InfoGraphic here: https://blog.knowbe4.com/second-quarter-2017-top-clicked-phishing-tests-i= nfographic

Fortune Magazine wrote: "Beware of These Top 10 Phishing Emails. Would= You Fall for Them?"

Robert Hackett at Fortune Magazine looked at KnowBe4's numbers and wrote:= "One hazard of being a cybersecurity reporter is that attackers send phi= shing emails to my inbox on a daily basis. If you don't believe me, ask t= he security team at Time Inc., Fortune's parent company."

"Truth is, anyone online can be a target for hackers, spies, and cybercri= minals. You might not think you're that interesting, but the funny thing = about networks is that even if you are boring (surely, you mustn't be, gi= ven that you're a Fortune reader), hackers may still aim to A) profit fro= m your misfortune, and B) use you as stepping stone to get at someone els= e."

Excellent article with a video at the top. Send this to your C-Level team= that holds the budget purse strings. KnowBe4's Q2 Phishing report is fea= tured:
http://fortune.com/2017/07/13/email-security-phishing/
Get your Complimentary Book Signed by Kevi= n Mitnick at KnowBe4=E2=80=99s Booth #1848

Stop by KnowBe4=E2=80=99s Booth #1848 for Kevin Mitnick=E2=80=99s Book Si= gning! Meet the =E2=80=98World=E2=80=99s Most Famous Hacker=E2=80=99 and = get a signed copy of his new book: Wednesday, July 26, 5-7pm while they l= ast!

We will also have cool swag at the show. See us to get your light-up "Axe= To Grind With Ransomware!" and watch a demo of the innovative KnowBe4 Se= curity Awareness Training Platform to train and phish your users. Plus, b= e entered to win a 500-dollar cash prize.

Drop by KnowBe4=E2=80=99s Black Hat Booth #1848
Recent surveys by Farsight and Anomali fin= d that 57% of InfoSec pros work weekends, and nearly a third of survey re= spondents noted they work on average 10-hour days, but also, one in three= state they lack effective intelligence to detect and action cyber threat= s.

The Farsight survey queried 360 IT cyber security professionals, and foun= d 97% indicated they still find their jobs rewarding and that 85% plan to= remain working in security, however 24 percent believe they are at least= one year behind the average threat actor, with half of this sample admit= ting they are trailing by two to five years.

Among other findings are that 17 percent of respondents haven't invested = in any threat detection tools such as SIEM, paid or open threat feeds, or= User and Entity Behavior Analytics (UEBA). Two-thirds of respondents mai= ntain fewer than 200 days of log data online for analysis and forensics, = despite hackers often lurking undetected for this length of time.

The study shows that 80 percent of security professionals don't consult h= istorical logs on a daily basis to investigate past exposure to threats. = Plus only 13 percent compare historical logs with threat feeds or indicat= ors of compromise daily.

The conclusion is clear, there is a massive information security overload= : too much noise, not enough signal.

Since a significant amount of this noise is created by end-users, it's a = good idea to get these employees stepped through new-school security awar= eness training so they are not causing malware infections on their workst= ation.

Let's stay safe out there.

Warm Regards,
Stu Sjouwerman
Founder and CEO
KnowBe4, Inc.

Quotes of the Week
"If you light a lamp for someone else it= will also brighten your path." - Buddha

"There are two ways of spreading light: to be the candle or the mirror= that reflects it." - Edith Wharton
=C2=A0

Thanks for reading CyberheistNews
But if you want to unsubscribe, you can do that right here

You can read CyberheistNews online at our Blog
https://blog.knowbe4.com/cyberheistnews-vol-7-28-new.-your-complimentary-= customized-automated-security-awareness-program-asap
Security News
America Isn=E2=80=99t Ready for a =E2=80=98Cyber 9/11=E2=80=99

The Wall Street Journal is calling for a Department of Cybersecurity, and= explain the risks and need for increased budget and organization to prev= ent a Cyber 9/11. I suggest you send this link to your C-level execs as p= art of your budget discussions.

They said: "Cyberattacks have become capable of much more than stealing c= onsumer information or embarrassing business executives and politicians. = Whether conducted by lone wolves or nation-states, they can compromise th= e safety of medical, food and water systems, disrupt transportation, or e= ven destabilize nuclear plants. Such attacks can undermine democratic ins= titutions or encourage violence by spreading false information. The cyber= threat has become existential." Link: (paywall)
https://www.wsj.com/article_email/america-isnt-ready-for-a-cyber-9-11-149= 9811450-lMyQjAxMTE3NDExMjcxNTI5Wj/
Business Braces for More Ransomware Assaults

Baseline Mag has a great slide show with the results of an ISACA survey (= Information Systems Audit and Control Association), a nonprofit group for= IT and information systems professionals.

More than four out of five survey respondents expect an upsurge in attack= s, and most of them said they are at least somewhat prepared. Still, abou= t one-fourth admit that they aren't ready, and fully half have not traine= d their employees to deal with ransomware. That's risky, warns ISACA CEO = Matt Loeb, who says, "WannaCry, Petya, Cryptolocker =E2=80=A6 ransomware = will continue to be news and become the norm. What's needed is protection= before an attack=E2=80=94not just a swift recovery afterwards."

Besides educating employees, enterprises should be more aggressive in app= lying software patches, which Loeb sees as critical to protecting an orga= nization from the crippling consequences of an attack. The majority of or= ganizations in the study have not yet experienced a ransomware attack, an= d only a very small minority of respondents said their organization would= pay the ransom if it were hit.

Still, complacency is dangerous. "Don't assume your enterprise 'might' be= a victim of ransomware," Loeb stresses. "Assume it will. Every organizat= ion needs to focus on being prepared for the next ransomware attack, thro= ugh training, frequent software updates or hiring highly skilled staff." = The survey included 448 respondents. About half the participating organiz= ations have fewer than 1,500 employees, 23 percent have 1,500 to 9,999, a= nd 28 percent have 10,000 or more workers.

They represent a wide range of industries, with financial/banking firms a= nd technology services/consulting firms leading the way. The survey group= covers the globe. Here is the slide show. Good budget ammo:
http://www.baselinemag.com/security/slideshows/business-braces-for-more-r= ansomware-assaults.html
The Hackers Smell Blood Now, Not Silicon

Steve Morgan wrote an excellent post with the Top 5 cybersecurity facts, = figures and statistics for 2017. These predictions and observations provi= de a 30,000-foot view of the cybersecurity industry. The comment about ha= ckers smelling blood caught my eye...

"These top level numbers summarize the cybersecurity industry over the pa= st year and indicate what's in store for the next five years.

1. Cyber crime damage costs to hit 6 trillion dollars annually by 2021= . It all begins and ends with cyber crime. Without it, there's nothin= g to cyber-defend. The cybersecurity community and major media have large= ly concurred on the prediction that cyber crime damages will cost the wor= ld 6 trillion dollars annually by 2021, up from 3 trillion dollars just a= year ago. "Cyber theft is the fastest growing crime in the United States= by far," according to U.S. President Donald Trump.

2. Cybersecurity spending to exceed 1 trillion dollars from 2017 to 20= 21. The rising tide of cyber crime has pushed cybersecurity spending = on products and services to more than 80 billion dollars in 2016, accordi= ng to Gartner. It's not clear if that includes an accounting of IoT devic= e protection and total consumer spending on security. Global spending on = cybersecurity products and services are predicted to exceed 1 trillion do= llars over the next five years, from 2017 to 2021.

3. Cyber crime will more than triple the number of unfilled cybersecur= ity jobs, which is predicted to reach 3.5 million by 2021. Every IT p= osition is also a cybersecurity position now. Every IT worker, every tech= nology worker, needs to be involved with protecting and defending apps, d= ata, devices, infrastructure and people. The cybersecurity workforce shor= tage is even worse than what the jobs numbers suggest. As a result, the c= ybersecurity unemployment rate has dropped to zero percent.

4. Human attack surface to reach 4 billion people by 2020. As the = world goes digital, humans have moved ahead of machines as the top target= for cyber criminals. Microsoft estimates that by 2020 4 billion people w= ill be online =E2=80=94 twice the number that are online now. The hackers= smell blood now, not silicon.

5. Global ransomware damage costs are predicted to exceed 5 billion do= llars in 2017. That's up from 325 million dollars in 2015=E2=80=94a 1= 5X increase in two years, and expected to worsen. Ransomware attacks on h= ealthcare organizations=E2=80=94the No. 1 cyber-attacked industry=E2=80=94= will quadruple by 2020.

What does it all mean? Last year, Ginni Rometty, IBM's chairman, presiden= t and CEO, said, "Cyber crime is the greatest threat to every company in = the world." And she was right. During the next five years, cyber crime mi= ght become the greatest threat to every person, place and thing in the wo= rld.

Here is a link to the post, which is riddled with links to all the source= s, this is a great resource!
http://www.csoonline.com/article/3153707/security/top-5-cybersecurity-fac= ts-figures-and-statistics-for-2017.html
BT and KPMG Warn Businesses Against Cyber Security Traps
The UK has completely woken up to the threat of cyber security. This arti= cle shows BT and KPMG warning about the risks and provide practical advic= e. Here is one point that they stressed:

"Furthermore, everyone in the organisation, from the board down, must tak= e responsibility for maintaining high standards of cyber hygiene, while b= usinesses must invest in training and raise awareness amongst staff. This= can help turn employees from the weakest point in any security chain int= o every company=E2=80=99s greatest asset in the fight to protect data."
We could not agree more. Here is the whole article:
http://www.mondovisione.com/media-and-resources/news/bt-and-kpmg-warn-bus= inesses-against-cyber-security-traps-investing-in-it-secur/
=
Can You Be Spoofed? Find out for a Chance to Win.

Did you know that one of the first things hackers try is to see if they c= an spoof the email address of someone in your own domain? Now they can la= unch a "CEO fraud" spear phishing attack on your organization.

KnowBe4 can help you find out if this is the case with our complimentary = Domain Spoof Test and enter you to win an awesome Stormtrooper Helmet Pro= p Replica at the same time.

Also, EVERYONE in the US/Canada will receive a real Kevin Mitnick collect= ible stainless steel lock-pick business card!

To enter just go here fill out the form, it's quick, easy and often a sho= cking discovery. Yep, it=E2=80=99s that easy.
https://info.knowbe4.com/dst-sweepstakes-062017
Interesting News Items This Week

LeakerLocker ransomware threatens to dox Android users as extortion:
https://www.grahamcluley.com/leakerlocker-ransomware-threatens-to-dox-and= roid-users-as-extortion/

Almost 12,000 Records Compromised in Two New Ransomware Attacks:
http://www.hipaajournal.com/almost-12000-records-compromised-ransomware-a= ttacks-8878/

Data Breach hits California Association of Realtors:
https://www.scmagazine.com/data-breach-hits-california-association-of-rea= ltors/article/673795/

New Ransomware Threatens to Send Your Internet History & Private Pics= to All Your Friends:
http://thehackernews.com/2017/07/leakerlocker-android-ransomware.html
=
Magala trojan hijacks Internet Explorer, then commits click fraud:
https://www.scmagazine.com/magala-trojan-hijacks-internet-explorer-then-c= ommits-click-fraud/article/674602/

Verizon Data of at Least Six Million Users (but probably 14) Leaked Onlin= e:
https://www.infosecurity-magazine.com/news/verizon-data-six-million-users= /

Enterprises face 3,680 potential phishing emails each week:
https://www.helpnetsecurity.com/2017/07/13/potential-phishing-emails/
=
How Vulnerable Are We to Phishing? Our Sysadmin Wanted to Find Out:
http://www.coastdigital.co.uk/2017/07/12/vulnerable-phishing-sysadmin-wan= ted-find/
Cyberheist 'Fave' Links=
This Week's= Links We Like, Tips, Hints and Fun Stuff
  • This week's People are Awesome Best of= the Week compilation has some amazing people doing incredible things: http://www.flixxy.com/people-are-awesome-best-of-the-week-episode-30.htm= ?utm_source=3D4

  • All living organisms are made up of ce= lls, tiny but sophisticated systems that keep life going: The Operating S= ystem of Life:
    http://www.flixxy.com/the-operating-system-of-life.htm?utm_source=3D4

  • British stunt driver Terry Grant has s= et a Guinness World Record doing a barrel roll in a Jaguar E-Pace during = its world premiere in London:
    http://www.flixxy.com/jaguar-e-pace-guinness-world-record-barrel-roll.ht= m

  • 'Mailo' the African Gray Parrot solves= multiple puzzles to get get his treat, which his owner placed behind a s= eries of 5 locks:
    http://www.flixxy.com/smart-parrot-solves-five-puzzles-to-get-his-treat.= htm?utm_source=3D4

  • Mont Blanc From A Flying Eagle Point O= f View. Wow. Max your screen:
    http://www.flixxy.com/mont-blanc-from-a-flying-eagle-point-of-view.htm?u= tm_source=3D4

  • 22,000 people accidentally signed up t= o clean toilets because people don't read Wi-Fi terms Surprisingly, only = one person during the two-week-long prank spotted the terms:
    http://mashable.com/2017/07/13/wifi-terms-conditions-toilets/#k7is0qmYPi= qM

  • Dream-like and fun, Argentine film-mak= er Fernando Livschitz transforms footage of everyday scenes into a cute f= antasy. Cool graphics!
    http://www.flixxy.com/a-different-perspective-on-the-world.htm?utm_sourc= e=3D4

  • Latest 4K Apple Park drone video shows= visitor center, historic barn reassembled:
    https://flipboard.com/@flipboard/-latest-4k-apple-park-drone-video-shows= -/f-8cb9fe44a6%2F9to5mac.com

  • From the archives: A very funny video = produced by Rockwell for a sales meeting:
    http://www.flixxy.com/rockwell-automation-systems.htm?utm_source=3D4
Twitter | LinkedIn | Google | YouTube
Copyright =C2=A9 2014-2017 KnowBe4, Inc. All rights reserved.<= /div>
=C2=A0
=C2=A0
=C2=A0 This email was sent= to edward@transocean.com by feedback@knowbe4.com

33 N Garden Ave, Suite 1200 Clearwater, FL 33755 USA
=C2=A0 		=C2=A0
----==_mimepart_596e160825220_5cdb49ac140281008e5--