2009 and Social Engineering - Cyber Security Informer

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

Cybersecurity awareness and incident response Train employees to recognize phishing attempts and social engineering. Key findings from the advisory The advisory highlights the rapid and efficient attack lifecycle of Ghost ransomware, with some incidents seeing full encryption within a single day.

Ransomware

Ransomware IoT Encryption Social Engineering

Ethical Social Engineering: A Force for Good

Security Through Education

JULY 11, 2024

Here at Social-Engineer, LLC we define social engineering (SE) as “the act of influencing someone to take an action that may or may not be in their best interest.” If you Google search “social engineering” you will find a much more negative definition. This is because, as humans, we like to be right.

Social Engineering

Social Engineering Engineering Risk

Backdoor in XZ Utils That Almost Happened

Schneier on Security

APRIL 11, 2024

He has been in charge of XZ Utils since he wrote it in 2009. Many open-source libraries, like XZ Utils, are maintained by volunteers. In the case of XZ Utils, it’s one person, named Lasse Collin. And, at least in 2022, he’s had some “ longterm mental health issues. ” (To be clear, he is not to blame in this story. This is a systems problem.)

Software

Software Engineering Internet Internet

Artificial Intelligence meets real talk at IRISSCON 2024

BH Consulting

NOVEMBER 14, 2024

But a hallmark of the event since it was first held in 2009 is visiting speakers who aren’t afraid to challenge popular narratives. Phillip Larbey, associate director for EMEA at Verizon, said the vast majority of cyber incidents involve at least one of three elements – human error, social engineering and ransomware.

Artificial Intelligence

Artificial Intelligence Ransomware Social Engineering Cybersecurity

RockYou2024: The Largest Password Compilation (10 Billion) Ever Leaked

SecureWorld News

JULY 8, 2024

The name "RockYou2024" pays homage to the infamous RockYou data breach of 2009, which exposed 32 million passwords due to insecure storage practices. It's crucial to keep users educated and bring in AI-powered security solutions that can spot and block tricky social engineering attempts coming from multiple message channels.

Passwords

Passwords Password Management Education Accountability

Personal info of 90k hikers leaked by French tourism company La Malle Postale

Security Affairs

MAY 13, 2023

Founded in 2009, the company provides luggage and passenger transportation services on many popular hiking routes, including the famous Santiago de Compostela pilgrimage trail. Threat actors might also exploit La Malle Postale’s credibility among its clients in social engineering attacks.

Passwords

Passwords Identity Theft Scams Social Engineering

Magnificent Seven: Celebrating Great Women in Cybersecurity and Data Protection

BH Consulting

MARCH 8, 2024

She helped to set up Cyber Command in 2009 and she also worked at the National Security Agency. A social engineer by profession, she consults with organisations who, essentially, ask her to try and ‘break in’ to places that should be off limits – but often aren’t. During 20 years of service in the U.S.

Cybersecurity

Cybersecurity Social Engineering Healthcare Data privacy

In the Name of Psychology

Security Through Education

DECEMBER 8, 2020

When any of our social engineers go in with a pretext where we aren’t impersonating a real individual at the company, we always use simple, clear and traditional names, unless our circumstances call for the reverse. The 2009 study at?Shippensburg In other words, people like what is familiar to them. Shippensburg University ?found

Social Engineering

Social Engineering Engineering Internet Internet

The Link Between Ransomware and Cryptocurrency

eSecurity Planet

DECEMBER 21, 2021

E-gold use peaked in the mid-2000s before it was suspended in 2009 for legal reasons. They do this through taking advantage of cyber-hygiene practices, social engineering , all those things we talk about. They need a channel into that system.

Cryptocurrency

Cryptocurrency Ransomware Cybercrime Social Engineering

Encryption: How It Works, Types, and the Quantum Future

eSecurity Planet

MAY 25, 2022

Phishing and social engineering are common ways threat actors can obtain a symmetric key, but cryptanalysis and brute force attempts can also break symmetric key ciphers. However, it wasn’t until 2009 that a graduate student published research on fully homomorphic encryption (FHE) and set off an exploration period.

Encryption

Encryption Computers and Electronics Password Management Passwords

Episode 255: EDM, Meet CDM – Cyber Dance Music with Niels Provos

The Security Ledger

JANUARY 23, 2024

And yet, the awareness of cyber security risks – from phishing and social engineering attacks to software supply chain compromises – remains low. Software is now central to the operation of our economy – as digital transformation washes over every industry. Nobody knows that better than our guest this week.

Digital transformation

Digital transformation Social Engineering InfoSec Cybersecurity

IRISSCON 2022 roundup: a new hope

BH Consulting

NOVEMBER 15, 2022

Sharon Conheady’s entertaining talk explored the ethical side of social engineering. Using humour to deliver a serious message, she said social engineering tests done badly can foster a “toxic” security culture. It’s a message that organisers Irisscert have promoted since the very first IRISSCON back in 2009.

Social Engineering

Social Engineering Insurance CISO Ransomware

Gamers level up with rewards for better security

Malwarebytes

MAY 14, 2021

Did the attacker bypass text-based 2FA by social engineering the mobile provider? World of Warcraft developers Blizzard released their first authenticator way back in 2009. But the moment someone calls through with one single account compromise, the customer service rep has no idea what they’re walking into.

Accountability

Accountability Authentication Passwords Social Engineering

Meet the 2021 SC Awards judges

SC Magazine

MAY 1, 2021

His expertise is in social engineering, technology, security algorithms and business. Erin Jacobs started @UrbaneSec in 2009 to conquer information security and compliance with boutique attention to detail, delivery and talent that organizations desperately need in today’s technical landscape.

Computers and Electronics

Computers and Electronics Technology Information Security Education

Happy 10th anniversary & Kali's story.so far

Kali Linux

MARCH 28, 2023

In February 2009, at Shmoocon, BackTrack 4 “Beta” was released using Ubuntu. A graphical one happened in BackTrack 4 “Pre-Final” in June 2009. Ubuntu was making a lot of positive noise, was gaining a lot of traction as it was popular with end-users, and had good development tools.

InfoSec

InfoSec Penetration Testing Architecture Software

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Krebs wrote for The Washington Post between 1995 and 2009 before launching his current blog KrebsOnSecurity.com. Formerly on the FBI’s Most Wanted list, Kevin Mitnick is a crucial figure in the history of information security, including approaches to social engineering and penetration testing. Rachel Tobac | @RachelTobac.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Herjavec Group

AUGUST 26, 2021

1970-1995 — Kevin Mitnick — Beginning in 1970, Kevin Mitnick penetrates some of the most highly-guarded networks in the world, including Nokia and Motorola, using elaborate social engineering schemes, tricking insiders into handing over codes and passwords, and using the codes to access internal computer systems.

Cybercrime

Cybercrime Computers and Electronics Banking Hacking

Weathering Russian Winter: The Current State of Russian APTs

Security Boulevard

APRIL 8, 2022

Sandworm Team : Active since at least 2009, this APT is another group associated with Russia’s GRU, and has even collaborated directly with APT28. Social engineering training. Social engineering training helps employees recognize security breach attempts and report them so they don’t even gain a foothold within the network.

Social Engineering

Social Engineering Backups Malware Ransomware

MY TAKE: How state-backed cyber ops have placed the world in a constant-state ‘Cyber Pearl Harbor’

The Last Watchdog

JULY 25, 2019

This is all fueled by the gathering of intelligence and counterintelligence; by social engineering and propaganda; and by data theft and network disruptions. Navy War College and the Pentagon in 2006-2007 • Operation Aurora hacks of Adobe, Juniper Networks, Northrop Grumman, Dow Chemical and dozens of other marquee U.S. Talk more soon.

IoT

IoT Hacking Banking Government

Cyber Security Informer

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

Ethical Social Engineering: A Force for Good

Trending Sources

Backdoor in XZ Utils That Almost Happened

Artificial Intelligence meets real talk at IRISSCON 2024

RockYou2024: The Largest Password Compilation (10 Billion) Ever Leaked

Personal info of 90k hikers leaked by French tourism company La Malle Postale

Magnificent Seven: Celebrating Great Women in Cybersecurity and Data Protection

In the Name of Psychology

The Link Between Ransomware and Cryptocurrency

Encryption: How It Works, Types, and the Quantum Future

Episode 255: EDM, Meet CDM – Cyber Dance Music with Niels Provos

IRISSCON 2022 roundup: a new hope

Gamers level up with rewards for better security

Meet the 2021 SC Awards judges

Happy 10th anniversary & Kali's story.so far

Top Cybersecurity Accounts to Follow on Twitter

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Weathering Russian Winter: The Current State of Russian APTs

MY TAKE: How state-backed cyber ops have placed the world in a constant-state ‘Cyber Pearl Harbor’

Stay Connected