Return-Path: <1921889-460-1022@be2.maropost.com> Delivered-To: edward@transocean.com Received: from vps.transocean.com by vps.transocean.com (Dovecot) with LMTP id OSdmK8uukVkebgAAInt2oQ for ; Mon, 14 Aug 2017 07:08:11 -0700 Return-path: <1921889-460-1022@be2.maropost.com> Envelope-to: edward@transocean.com Delivery-date: Mon, 14 Aug 2017 07:08:11 -0700 Received: from mta7196.mp2200.com ([162.247.117.196]:13283) by vps.transocean.com with esmtp (Exim 4.89) (envelope-from <1921889-460-1022@be2.maropost.com>) id 1dhG28-0007LI-Jz for edward@transocean.com; Mon, 14 Aug 2017 07:08:11 -0700 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; s=default; d=knowbe4.com; t=1502719675; l=1; h=from:subject:date:to; bh=nR4OLZRZ0GUjrRPiikCTwjFrqv567Fsl8w66LhE1mcQ=; b=zdDIDGo7R13aV1hbF+dRAtqCXkwBfOUq7iWcGi6UnmZkjuzJWxb+gwDExWgdgMtDNC64gn 9E0739BzNYb0T2EuIGalistPVwuIZIRk78sn37URnh+xi5txUewe3vpSyZ5e1l/x0VtIMQ 6iOaHjHTK/3J8KCrZaK9D8pDuRciUzg= Received: from [<1921889-460-1022@be2.maropost.com>] ([<1921889-460-1022@be2.maropost.com>] helo=) by 649893-mailer3 (envelope-from 1921889-460-1022@be2.maropost.com) (Jetsend MTA 0.0.1 with ESMTP; Mon Aug 14 09:44:19 EDT 2017 Date: Mon, 14 Aug 2017 09:44:17 -0400 From: CyberheistNews Reply-To: feedback@knowbe4.com To: edward@transocean.com Message-ID: <973b9d60-6324-0135-225b-0cdcd4b634c4@knowbe4.com> Subject: [ALERT] A Big Locky Ransomware Phishing Attack Infects With the New Diablo6 Strain Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--==_mimepart_5991a93149c84_5c2f72b6f18306049128"; charset=UTF-8 Content-Transfer-Encoding: 7bit List-Unsubscribe: X-CampaignID: 460 X-Campaign-ID: 460 X-ContactID: 1921889 X-AccountID: 1022 X-Binding: 162.247.117.196 X-DkimDomain: knowbe4.com X-DkimSelector: default X-Feedback-ID: 460:Maropost X-Spam-Status: No, score=-1.2 X-Spam-Score: -11 X-Spam-Bar: - X-Ham-Report: Spam detection software, running on the system "vps.transocean.com", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: This email was sent to &lt;b&gt;edward@transocean.com&lt;/b&gt; by &lt;b&gt;feedback@knowbe4.com&lt;/b&gt; Manage Subscriptions http://newsletter.knowbe4.com/a/1022/unsubscribe/460/1921889/1171fedd5142f8871402e5a815d95ae0f2502430 33 N Garden Ave, Suite 1200 Clearwater, FL 33755 USA Report Spam http://newsletter.knowbe4.com/a/1022/report_spam/460/1921889/1171fedd5142f8871402e5a815d95ae0f2502430 [...] Content analysis details: (-1.2 points, 3.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: assetfinanceinternational.com] 0.0 T_SPF_HELO_TEMPERROR SPF: test of HELO record failed (temperror) -0.0 SPF_PASS SPF: sender matches SPF record 0.0 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail domains are different -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1% [score: 0.0000] 0.0 HTML_MESSAGE BODY: HTML included in message 0.8 MPART_ALT_DIFF BODY: HTML and text parts are different 0.0 T_KAM_HTML_FONT_INVALID BODY: Test for Invalidly Named or Formatted Colors in HTML -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 0.0 UNPARSEABLE_RELAY Informational: message has unparseable relay lines X-Spam-Flag: NO ----==_mimepart_5991a93149c84_5c2f72b6f18306049128 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit This email was sent to &lt;b&gt;edward@transocean.com&lt;/b&gt; by &lt;b&gt;feedback@knowbe4.com&lt;/b&gt; Manage Subscriptions http://newsletter.knowbe4.com/a/1022/unsubscribe/460/1921889/1171fedd5142f8871402e5a815d95ae0f2502430 33 N Garden Ave, Suite 1200 Clearwater, FL 33755 USA Report Spam http://newsletter.knowbe4.com/a/1022/report_spam/460/1921889/1171fedd5142f8871402e5a815d95ae0f2502430 ----==_mimepart_5991a93149c84_5c2f72b6f18306049128 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable [ALERT] A Big Locky Ransomware Phishing Attack Infects With = the New Diablo6 Strain
3D""
=
Email not displaying?
View = Knowbe4 Blog
CyberheistNews Vol 7 #32 =C2=A0 | =C2=A0 Au= g. 14th., 2017


Security researcher Racco42 discovered a new phishing campaign that is pu= shing a new Locky strain which appends the .diablo6 extension.

Larry at Bleepingcomputer wrote: "Locky is back and currently being heavi= ly distributed worldwide. While Locky was at one point considered the lar= gest distributed ransomware, over time it became much more common to see = other ransomware such as Cerber, Spora, and now even GlobeImposter.

While it is too soon to tell if this is just another brief surge or an at= tempt to become a large player again, what we do know is that this partic= ular campaign is strong with a wide distribution."

This phishing campaign arrives in your end-user's inbox with subject line= s like E 2017-08-09 (698).docx. The message body simply states "Files att= ached. Thanks". It is not possible to decrypt the Locky Ransomware Diablo= 6 strain. More technical details and screenshots at the KnowBe4 Blog:
= https://blog.knowbe4.com/locky-ransomware-returns-with-phishing-campaign-= pushing-the-diablo6-variant
I have been saying this here for the last = few years, and I am encouraged to see it now confirmed by a new survey fr= om our friends at Malwarebytes.

They released their =E2=80=9CSecond Annual State of Ransomware Report=E2=80= =9D, and the study surveyed 1,054 companies with less than 1,000 employee= s across North America, France, U.K., Germany, Australia, and Singapore.<= br>
The report, conducted by Osterman Research, explores ransomware attack fr= equency, impacts of attacks in SMB environments, costs of attacks, attitu= des towards ransom payments, preparedness and more.

22% of impacted businesses had to cease operations immediately
=
Survey results found that more than one-third of businesses have experien= ced a ransomware attack in the last year. Twenty-two percent of these imp= acted businesses had to cease operations immediately.

=E2=80=9CBusinesses of all sizes are increasingly at risk for ransomware = attacks,=E2=80=9D said Marcin Kleczynski, CEO, Malwarebytes. =E2=80=9CHow= ever, the stakes of a single attack for a small business are far differen= t from the stakes of a single attack for a large enterprise. Osterman=E2=80= =99s findings demonstrate that SMBs are suffering in the wake of attacks,= to the point where they must cease business operations.

To make matters worse, most of them lack the confidence in their ability = to stop an attack, despite significant investments in defensive technolog= ies. To be effective, the security community must thoroughly understand t= he battles that these companies are facing, so we can better protect them= .=E2=80=9D

=E2=80=9CSecond Annual State of Ransomware Report=E2=80=9D top findings i= nclude:
  • The impact of ransomware on SMBs c= an be devastating. For roughly one in six impacted organizations, a r= ansomware infection caused 25 or more hours of downtime, with some organi= zations reporting that it caused systems to be down for more than 100 hou= rs. Further, among SMBs that experienced a ransomware attack, 22 percent = reported that they had to cease business operations immediately, and 15 p= ercent lost revenue.

  • Most organizations make addressing= ransomware a high priority, but still lack confidence in their ability t= o deal with it. Seventy-five percent of organizations surveyed place = a high or very high priority on addressing the ransomware problem. Despit= e these investments, nearly one-half of the organizations surveyed expres= sed little to only moderate confidence in their ability to stop a ransomw= are attack.

  • For many, the source of ransomware= is unknown and infections spread quickly. For 27 percent of organiza= tions that suffered a ransomware infection, decision makers could not ide= ntify how the endpoint(s) became infected. Further, more than one-third o= f ransomware infections spread to other devices. For two percent of organ= izations surveyed, the ransomware infection impacted every device on the = network.

  • SMBs in the U.S. are being hit har= der than SMBs in Europe by malicious emails containing ransomware. Th= e most common source of ransomware infections in U.S.-based organizations= was related to email use. Thirty-seven percent of attacks on SMBs in the= U.S. were reported as coming from a malicious email attachment and 27 pe= rcent were from a malicious link in an email. However, in Europe, only 22= percent of attacks were reported as coming from a malicious email attach= ment. An equal number were reported as coming from malicious link in an e= mail.

  • Most SMBs do not believe in paying= ransomware demands. Seventy-two percent of respondents believe that = ransomware demands should never be paid. Most of the remaining organizati= ons believe that demands should only be paid if the encrypted data is of = value to the organization. Among organizations that chose not to pay cybe= rcriminals=E2=80=99 ransom demands, about one-third lost files as a resul= t.

  • The financial services industry is= most concerned about ransomware. Transportation entities are least conce= rned. Fifty-four percent of firms in the financial services industry = are concerned or extremely concerned about ransomware. Meanwhile, only 26= percent of transportation entities are this concerned about ransomware.<= /span>

  • Current investments in technology = might not be enough. Over one-third of SMBs claim to have been runnin= g anti-ransomware technologies, while about one-third of businesses surve= yed still experienced a ransomware attack.
=E2=80=9CIt=E2=80=99s clear from these fi= ndings that there is widespread awareness of the threat of ransomware amo= ng businesses, but many are not yet confident in their ability to deal wi= th it,=E2=80=9D said Adam Kujawa, Director of Malware Intelligence, Malwa= rebytes. =E2=80=9CCompanies of all sizes need to remain vigilant and cont= inue to place a higher priority on protecting themselves against ransomwa= re.=E2=80=9D

To view the full global =E2=80=9CSecond Annual State of Ransomware=E2=80=9D= report for more detailed findings and analysis, visit:
https://go.malwarebytes.com/OstermanRansomware2017_PRSocial.html

I strongly suggest you get a quote for new-school security awareness trai= ning for your organization and find out how affordable this is. You simpl= y have got to start training and phishing your users ASAP to prevent rans= omware infections because your filters never catch all of it. Get a quote= now and you will be pleasantly surprised:
https://info.knowbe4.com/kmsat_get_a_quote_now-chn
Cyber-attacks were up by a quarter in Q2 2= 017, with a surprising twist: global manufacturing is now the top target.= The report from NTT Security also shows that phishing is still the most = popular threat vector, two-thirds (67%) of attacks came in the form of ju= st such a threat.

NTT is a very large global managed security provider, and they came out w= ith: "Global Threat Intelligence Center (GTIC) Quarterly Threat Intellige= nce Report" showing there was a 24% increase in attacks on its worldwide = customer base in the period of April to June, with a third (34%) of all a= ttacks targeting manufacturers.

This data actually gets confirmed by Verizon, who claimed in their recent= Data Breach Investigations Report 2017 that phishing attacks were way up= from the previous reporting period. The tactic of embedding malicious VB= A macros into documents sent via phishing emails was particularly popular= .

Here are a few NTT highlights:
  • In terms of attack types, 'reconnaiss= ance' (33%) dominated the manufacturing threat landscape in the period, f= ollowed by brute-force attacks (22%) and regular malware (9%).
  • Public-facing Microsoft SQL (MSSQL) s= ervers were popular targets for brute-forcing.
  • Over a third (37%) of manufacturers c= laimed they don=E2=80=99t have an incident response plan in place. OUCH
=E2=80=9CThe motivations for these attack= s are often criminal in nature, including extortion via ransomware, indus= trial espionage, and theft of data such as account numbers,=E2=80=9D said= Jon Heimerl, manager of NTT Security=E2=80=99s Threat Intelligence Commu= nication Team.

=E2=80=9CWhat poses an even greater problem is that when these breaches a= re successful, yet go undetected, they allow hackers to establish foothol= ds in organizations=E2=80=99 networks where they have no restraints and w= reak havoc over extended periods.=E2=80=9D

=E2=80=9CThis is very concerning as manufacturers=E2=80=99 IT security li= abilities often impacted not just the manufacturing organizations, but su= ppliers, as well as related industries and consumers,=E2=80=9D said Heime= rl. Blog Post with links:
https://blog.knowbe4.com/cyber-attacks-soar-by-a-quarter-as-phishing-domi= nates


Are your user=E2=80=99s passwords=E2=80=A6= P@ssw0rd? Verizon's recent Data Breach Report showed that 81% of hacking-= related breaches used either stolen and/or weak passwords. Employees are = the weakest link in your network security.

KnowBe4's Weak Password Test checks your Active Directory for 10 differen= t types of weak password related threats and reports any fails so that yo= u can take action. Plus, you=E2=80=99ll be entered to win a Nintendo Swit= ch!

Also, EVERYONE in the US/Canada will receive a real Kevin Mitnick collect= ible stainless-steel lock-pick business card!

This will take you 5 minutes and may give you some insights you never exp= ected.
https://info.knowbe4.com/wpt-sweepstakes-082017
I had a freelance video PR crew follow me = one day at Black Hat, and here are two short clips that will give you an = idea of who the heck I am.

One is the show, the other one is an interview question. If you do not kn= ow me, I hope I am making a good first impression! :-D

https://www.knowbe4.com/hubfs/Rants/Stu%20-%20Short%20Vlog%20Final%20Cut.= mp4
https://www.knowbe4.com/hubfs/Rants/Rants%20Copy%2004.mp4

Let's stay safe out there.

Warm Regards,
Stu Sjouwerman
Founder and CEO
KnowBe4, Inc.

Quotes of the Week
"If you focus on the hurt, you will cont= inue to suffer. If you focus on the lesson, you will continue
to grow." - Buddha

"The best revenge is no revenge. Just forget they exist." - Buddha=
=C2=A0

Thanks for reading CyberheistNews
But if you want to unsubscribe, you can do that right here

You can read CyberheistNews online at our Blog
https://blog.knowbe4.com/cyberheistnews-vol-7-32-alert-a-big-locky-ransom= ware-phishing-attack-infects-with-the-new-diablo6-strain
Security News
APT28 Uses Spear Phishing and NSA EternalBlue Exploit to Attack H= otel Wi-Fi

Russian APT28 (aka the Fancy Bear hacking group) is harnessing EternalBlu= e; NSA's Windows SMB exploit which made the WannaCry ransomware and Petya= so effective =E2=80=94 and are using it to spread laterally in cyber att= acks against hotels in Europe. Wait for the same thing to happen in the U= .S. (By the way, did you apply the MS17-010 patch yet?)

Researchers at FireEye posted that they uncovered a malicious document se= nt in spear phishing emails to multiple companies in the hospitality indu= stry, including hotels in at least seven European countries and one Middl= e Eastern country in early July. Successful execution of the macro within= the malicious document results in the installation of APT28=E2=80=99s si= gnature GameFish malware.

As soon as GameFish is successfully installed, it takes advantage of Eter= nalBlue to worm its way into the network and compromises personal compute= rs used for controlling both guest and and internal Wi-Fi networks. Once = in control of these machines, the malware deploys an open source Responde= r tool, allowing it to steal any credentials sent over the wireless netwo= rk.

"This is the first time we have seen APT28 incorporate this exploit into = their intrusions, and as far as we believe, the variant used was based on= the public version," Cristiana Brafman Kittner, senior analyst at FireEy= e, told ZDNet. FireEye warns that publicly accessible Wi-Fi networks pres= ent a significant threat and "should be avoided when possible".

With the public release of the EternalBlue exploit, it's not surprising t= hat hacking groups are looking to harness that and other Vault7 leaks for= their own gain. It's an epic fail that the American intelligence communi= ty lost control of this toolkit and let the genie out of the box.

Recommendation

For C-level execs that need to do a lot of travel, I recommend an iPad Pr= o, with its own cell-phone number, and use VPN to connect to any remote s= ervers. I would tell them to avoid Wi-Fi on the road all together. Also, = never run any software updates while traveling. I have successfully used = this setup for a few years now.

Phish Your Users With Office Document Attachments That Have Macros=

It's a must these days to send all employees simulated phishing attacks w= ith Office attachments that have macros and see if they open that documen= t and click on "Enable Editing". If they do, that means a social engineer= ing failure and they need to get some remedial training immediately. Also= , give them access to the KnowBe4 complimentary Phish Alert Button so tha= t they can forward phishy emails to your Incident Response team.

Complimentary Phish Alert Button

When new spear phishing campaigns hit your organization, it is vital that= IT staff be alerted immediately. One of the easiest ways to convert your= employees from potential targets and victims into allies and partners in= the fight against cybercrime is to roll out KnowBe4's complimentary Phis= h Alert Button to your employees' desktops. Once installed, the Phish Ale= rt Button allows your users to sound the alarm as a last line of defense = when suspicious and potentially dangerous phishing emails slip past all t= he other layers of protection your organization relies on to keep the bad= guys at bay.

Get Your Phish Alert Button Here:
https://info.knowbe4.com/phish-alert-chn
Destructive, Disk-Encrypting Mamba Ransomware Springs Back to Lif= e

The Mamba family of ransomware has suddenly returned -- and it's encrypti= ng the entire hard drives of targeted organisations again.

A powerful form of ransomware, which encrypts whole hard drives instead o= f just files, has suddenly returned -- and there's no way for victims to = decrypt the data.

Similar tactics have been used in other ransomware attacks, most notably = Petya, which experts said was designed to outright destroy data rather th= an generate ransom money.

The return of Mamba ransomware has been flagged by Kaspersky Lab. Its ret= urn comes after researchers recently suggested that ransomware designed f= or destruction, rather than extorting a Bitcoin ransom for profit, is set= to become the new normal.

While Mamba isn't a particularly common form of ransomware, it claimed a = high-profile victim in the form of the San Francisco Municipal Transporta= tion Agency in November last year. The attack forced the SFMTA operators = to temporarily open the gates of ticket barriers and allow passengers to = travel on the trains for no charge in order to minimise disruption.

The effectiveness of the ransomware stems partially from its use of a leg= itimate open source software tool, DiskCryptor, to fully lock down the ha= rd drive of targeted organisations. Mamba first appeared in September 201= 6 and mainly targets corporates and other large organisations.

Unlike other forms of ransomware which usually have a set ransom, the att= ackers behind Mamba alter their demand depending on the number of systems= infected.

"For every victim this group is demanding different amounts of bitcoins. = This depends on how many endpoints and server were affected," Anton Ivano= v, Senior Malware Analyst at Kaspersky Lab told ZDNet:
http://www.zdnet.com/article/destructive-disk-encrypting-mamba-ransomware= -springs-back-to-life/
Social Engineering: The Basics

Excellent article if you submit budget for awareness training and need a = "Social Engineering 101" for the people holding the purse strings. The ar= ticle forgets to mention KnowBe4 but never mind. :-)

"That firewall won't mean much if your users are tricked into clicking on= a malicious link they think came from a Facebook friend or LinkedIn conn= ection. Here's what you need to know to protect your organization and you= r users.

Social engineering is essentially the art of gaining access to buildings,= systems or data by exploiting human psychology, rather than by breaking = in or using technical hacking techniques. For example, instead of trying = to find a software vulnerability, a social engineer might call an employe= e and pose as an IT support person, trying to trick the employee into div= ulging his password.

Even if you've got all the bells and whistles when it comes to securing y= our data center, your cloud deployments, your building's physical securit= y, and you've invested in defensive technologies, have the right security= policies and processes in place and measure their effectiveness and cont= inuously improve, still a crafty social engineer can weasel his way right= through (or around).

Here are answers to some frequently asked questions about social engineer= ing, including the common tactics social engineers use and tips for ensur= ing your staff is on guard."" Here goes:
http://www.itnews.com/article/2124681/social-engineering/security-awarene= ss-social-engineering-the-basics.html
In Illinois, Cybersecurity Training for State Employees Now Requi= red by Law

On Aug. 7, Gov. Bruce Rauner signed legislation, which he called a welcom= e display of "bipartisanship," aimed at educating end users and strengthe= ning the state's first line of defense against cyberattacks.

The state of Illinois, which has taken pioneering strides with various bl= ockchain projects in testing new Internet technology, is taking additiona= l steps to improve cybersecurity at its first line of defense: with end u= sers.

On Monday, Aug. 7, Gov. Bruce Rauner signed House Bill 2371, an amendment= to the state=E2=80=99s Data Security on State Computers Act requiring an= nual cybersecurity training from the Department of Innovation and Technol= ogy (DoIT) for state employees.

The amendment allows DoIT to adopt rules to implement the training and to= make the training an online course. It also requires that the education = cover how to detect phishing scams; prevent spyware infections and identi= ty theft; and how to prevent and respond to data breaches. It takes effec= t on Jan. 1, 2018. More:
http://www.govtech.com/policy/In-Illinois-Cybersecurity-Training-for-Stat= e-Employees-Now-Required-by-Law.html

OCR Tells Organizations to Step up Phishing Scam Awareness

And proof that this is needed comes from the OCR, which tells organizatio= ns to step up phishing scam awareness, because employees still falling fo= r email schemes, leading to more breaches.

"Employees are still falling for phishing scams that are leading to major= breaches, including those related to ransomware attacks such as WannaCry= , say federal regulators who are urging healthcare entities to step up th= eir workforce training and awareness of email schemes.

In its latest monthly cybersecurity email newsletter, the Department of H= ealth and Human Services notes that a 2017 study by consulting firm KPMG = found a 10 percent increase over the past two years in the number of heal= thcare providers and health plans that have had instances of security-rel= ated HIPAA violations or cyberattacks impacting protected health informat= ion."

Phishing, however, is a favorite vehicle of hackers launching attacks tha= t are increasingly resulting in breaches of PHI, OCR says.

"This increase in HIPAA violations includes breaches due to ransomware ev= ents, such as WannaCry, and other cyberattacks which could have been prev= ented by an informed workforce trained to detect and properly respond to = them," OCR adds. "Training on data security for workforce members is not = only essential for protecting an organization against cyberattacks, it is= also required by the HIPAA Security Rule." More:
http://www.inforisktoday.com/ocr-tells-organizations-to-step-up-phishing-= scam-awareness-a-10174?
Interesting News Items This Week

IRS Warns of Fake Tax Software Update Scheme:
http://www.bankinfosecurity.com/irs-warns-fake-tax-software-update-scheme= -a-10182

Malicious code written into DNA infects the computer that reads it:
https://techcrunch.com/2017/08/09/malicious-code-written-into-dna-infects= -the-computer-that-reads-it/

Botched Firmware Update Bricks Hundreds of Smart Door Locks:
https://www.bleepingcomputer.com/news/hardware/botched-firmware-update-br= icks-hundreds-of-smart-door-locks/

FireEye's Post Mortem: Analyst Didn't Change Passwords:
http://www.bankinfosecurity.com/fireeyes-post-mortem-analyst-didnt-change= -passwords-a-10175?

=E2=80=98Stunning=E2=80=99 growth in records exposed in data breaches: http://assetfinanceinternational.com/index.php/technology/technology-arch= ive/technology-articles/15718-stunning-growth-in-records-exposed-in-data-= breaches
Cyberheist 'Fave' Links=
This Week's= Links We Like, Tips, Hints and Fun Stuff
  • The revolving sail bridge that looks l= ike a dragonfly Transformer:
    http://newatlas.com/margot-krasojevic-revolving-sail-bridge/50782/

  • =E2=80=9C101 Fascinating Facts That Yo= u Didn't Know About Domain Names=E2=80=9D It has a timeline, demographics= and a variety of different facts about domain names:
    https://webmastersjury.com/101-facts-about-domain-names-that-you-must-kn= ow/

  • Watch closely as Will Tsai brings his = pet fish back to life on America's Got Talent 2017:
    http://www.flixxy.com/magician-will-tsai-makes-pet-fish-reappear-america= s-got-talent-2017.htm?utm_source=3D4

  • Canadian artist Serge Belo has created= the world's largest water mosaic, to raise awareness about the shortage = of clean water globally:
    http://www.flixxy.com/artist-creates-worlds-largest-water-mosaic-with-66= 000-cups.htm

  • Train Wreck: Experiments To Derail Tra= ins - Very interesting Archive Footage:
    https://www.youtube.com/watch?v=3DD-8gV4DJZUw

  • For the kids: bear cubs hitch a ride o= n mom's back as she swims across Lake Aleknagik in Alaska:
    http://www.flixxy.com/a-ride-across-the-lake-is-a-bear-necessity-for-the= se-two-cubs.htm?utm_source=3D4

  • These dogs are incredible! Here are th= e best of the best at the Crufts Agility Championship final:
    http://www.flixxy.com/fastest-runs-from-the-agility-championship-final-a= t-crufts-2017.htm?utm_source=3D4
Twitter | LinkedIn | Google | YouTube
Copyright =C2=A9 2014-2017 KnowBe4, Inc. All rights reserved.<= /div>
=C2=A0
=C2=A0
=C2=A0 This email was sent= to edward@transocean.com by feedback@knowbe4.com

33 N Garden Ave, Suite 1200 Clearwater, FL 33755 USA
=C2=A0 		=C2=A0
----==_mimepart_5991a93149c84_5c2f72b6f18306049128--