Corporate Security

Protect Against On-site Social Engineering

Social engineering is a method of using human interaction to convince people to break their normal security processes. It can utilize technology, but that isn’t necessary in order to reach a goal. It’s been around since the beginning of time and although it has a modern name, it really is just a game for hackers. When people hear the term Social Engineering, it’s likely they think of email Phishing attacks. While remote social engineering attacks are extremely popular, what people often forget is that on-site social engineering attacks can be just as dangerous and in many cases, just as easy for a criminal to pull off. READ FULL STORY

Scams & Phishing

Do You Have A Ticket To Nowhere? Know The Latest AirlineRebooking Scams

Your Security

Because That’s Where The Money Is. Top Cybersecurity Threats To Financial Institutions

Mobile Security

NEW! 36 Malware Apps Taken Off Google Play Store And What You Need To Know

Corporate Security

BECs CRUSH Ransomware Attacks As Most Costly Cybercrime

November 22, 2022

Another cybercrime is grabbing the spotlight after years of taking a backseat to ransomware’s headline-grabbing attacks. Business email compromise, aka “BEC”, cybercrimes have been quietly racking-up victims by stealing their money via email fraud. Organizations should be aware that despite the lack of headlines, BECs are actually a bigger threat than ransomware. The FBI finds last year in the U.S., $2.4 billion was lost to BEC attacks, up 39% from 2020. READ FULL STORY

Corporate Security

Meet Escanor RAT. What The New, Spying, Thieving, Dirty Trickster Trojan Is Up To

Cybersecurity researchers discovered a new RAT (remote access trojan) having its way with many big-bank victims. The RAT named Escanor was found leveling its spyware on financial institutions, able to steal data making them ripe for the picking. International banks in 10 countries, including in the U.S., have been attacked by Escanor, with the trojan forging paths directly to their vaults, so to speak. This is a RAT we should all know about, especially since who and where Escanor will strike next is unknown. READ FULL STORY

Corporate Security

Office 365 Encryption Flaw Exposes Email Content, A Little-Known Big Security Risk

Microsoft’s Office 365 has a new bug you’ll want to squash to keep your sensitive information sent via email, secure. The bug in question belongs to Microsoft Office 365 Message Encryption (OME), that encrypts email messages and attachments so they can’t be read by those with bad intent. Secure messaging is the idea behind using OME, but with this flaw, it’s not the reality using OME. WithSecure took it upon themselves to issue an advisory warning to organizations about the flaw, when Microsoft didn't respond. READ FULL STORY

Scams & Phishing

'Tis The Season Of Fake Shopping Sites

As we’re all getting back into the holiday spirit after a somewhat glum 2020 season, it’s important to remember that the holiday shopping season doesn’t end on December 25. In fact, some retailers put their marketing effort into overdrive. There are after holidays sales, new year’s sales, and even “getting rid of all this stuff we didn’t sell at Christmas” sales advertised under some creative title. Retailers try to take advantage of the shopping spirit as far into the new year as they can and those who like to capitalize on this are also upping their game. READ FULL STORY

Identity Theft

Toyota’s Accidental Data Leak Exposes 300,000 Pieces of Customer PII On GitHub

November 18, 2022

If you drive or have owned a Toyota Motor Corporation vehicle over the past five years, you should know about this recent news. The company announced an accidental data leak was discovered, a leak that lasted nearly five years long. Toyota says nearly 300,000 pieces of their customer’s personally identifiable information (PII) were exposed after being found published on GitHub last month. According to the company, the data leaks began in December, 2017 and continued until being discovered in September of this year. READ FULL STORY

Mobile Security

Accounts Drained By Zelle Smishing Scam

From time to time, scammers come up with a new tactic using new technology, new events, or whatever they can to continue tricking us into giving up our personal or confidential information. Over the past few years and with the increasing use of texting and SMS messaging, a newer one in the bag of tricks has been coined as “smishing.” Because it’s text, it often catches people off guard and causes them to react quickly, which is exactly what you shouldn’t do. READ FULL STORY

Scams & Phishing

Dots and Dashes Aim To Steal Your Login Credentials

What do hackers do in their spare time? They create jigsaw and other types of puzzles to hide their various attacks. That’s according to recent Microsoft reports, anyway. The software giant’s Security Intelligence team has stated it saw that in a recent attack, an “HTML attachment is divided into several segments, including the JavaScript files used to steal passwords, which are then encoded using various mechanisms…” But wait! There's even more! READ FULL STORY

Scams & Phishing

Unforgiving Scammers Seek Your Credentials When Applying For Student Loan Debt Forgiveness

We can all use a little financial help from time to time; especially those saddled with student loan debt. So, there’s no surprise that after the Student Loan Debt Relief Plan was announced and neared reality, an immediate uptick in fraud schemes surrounding this program started to appear. The FBI states scammers are working over time looking to take advantage of those individuals seeking this student forgiveness. Even if you are not looking for loan forgiveness with this program, you still may see phishing email about the program. READ FULL STORY

Your Security

By Hook And By Crook. Top Scams Targeting Seniors, And How To Help Protect Against Them

Mobile Security

It's Silly! Scylla Infects 90+ Game Apps in Google And Apple Stores

Your Security

Car Thieves Get Taken For A Ride By International Law Enforcement Effort

Scams & Phishing

You've Won A Free Gas Card And Fraud, For A Small Fee

We are all kind of tired of the high gas prices right now, no matter where we live or what we drive. Most visits to the fuel pump can tick up more than $100 per tank. Then, a couple of weeks later for most of us, we have to fill up again and it’s likely to be even more. Coupled with high food prices and high pretty much everything else, we would all love some financial relief for the things we need to make it through the week. Scammers are counting on us all getting fed up with high fuel prices and are luring us into fraud with a new fuel gift card scam. READ FULL STORY

Scams & Phishing

Malware On A USB Stick Coming To A Mailbox Near You

The FBI issued a warning to be careful where you stick that USB stick. According to recent reports, the FBI is aware of a financially motivated group of cyber criminals who are sending out malware infected USB sticks in the mail or having them delivered by the United Parcel Service (UPS). Packages were sent to companies in the transportation and insurance areas at the end of 2021. Recently, the U.S. Defense industry was targeted. The particular sticks of concern contain “BadUSB” or “Bad Beetle USB.” READ FULL STORY

Your Security

Google And Windows Sunsetting-Update Now

Without great fanfare, Google has announced that in February 2023, users of Windows Versions 7, 8, and 8.1 will stop receiving support for their version of Google Chrome. The dwindling numbers of users and the rapidly aging code used in these versions of Windows have put the final nail in the coffin for users who have become accustomed to Google updates and other forms of support. Google will opt out of supporting these older Windows versions when it releases the stable and market-ready version of Chrome 110. READ FULL STORY

Scams & Phishing

Golden Chickens Hatch LinkedIn Fake Job Spear Phishing Attacks

Thanks to a massive cyberattack against LinkedIn earlier this year, 7 million user profiles were stolen. Of those, 2 million were posted for free by the hacker and 5 million more were posted for sale on underground forums. It’s the email addresses included in the stolen profiles that has LinkedIn and its users rightly concerned. A group is using the hijacked email addresses to target LinkedIn members with fake job openings via spear phishing. READ FULL STORY

Scams & Phishing

Online Shopping Season Brings Out The Holiday Fraud

As 2022 both flies by, believe it or not, the holiday online shopping season is upon us. This is your annual reminder to be on the lookout for all kinds of cyber creeps who are out there waiting to take advantage of all of us just wanting some cheer with our shopping excitement in an otherwise uncertain time. As that time slowly ticks away, or rushes by, depending on your point of view, the hackers continue to improve upon their various cyber scams. READ FULL STORY

We use cookies to give you a more relevant browsing experience and improve our website. Using this site means that you agree with our use of cookies policy.

Stickley on Security Inc. Privacy Policy

This Privacy Policy applies to and is provided on behalf of Stickley on Security. (collectively referred to as "We", "Us", or "Our") and describes Our information gathering practices and policies in connection with this Site. We value your ("User", "You", or "Your") privacy and recognize the sensitivity of Your personal information. We are committed to protecting Your personal information and using it only as appropriate to provide You with the best possible service, products, and opportunities. Use of this Site constitutes consent to Our collection and use of personal data as outlined herein.

COLLECTION AND USE OF PERSONAL INFORMATION FROM SITE USERS

We collect personally identifiable information from Users who provide it to us for billing purposes. For example, We collect Your name, street address, city, state, zip code, telephone number, email address, and financial information, such as a credit card number, if You use the Site to register or renew a license. We may use this information to contact You regarding the status of Your account and orders placed, and to alert You to new information, products and services, events and other opportunities. We recognize that You may wish to limit the ways in which You are contacted and provide You with opt-out options below. Information about Our experiences and transactions with you, such as your payment history, types of services and/or products you purchased are not shared with organizations outside of Stickley on Security.

We will not disclose to third parties (that is, people and companies that are not affiliated with Us) individually identifying information, such as names, postal and e-mail addresses, telephone numbers, and other personal information, except to the extent that it is necessary to process and provide You with Your order, license request or other request. Your contact information may also be provided to the extent necessary to comply with applicable laws or legal processes (e.g., subpoenas), or to meet contractual obligations outlined in this policy, or to protect Our rights or property. We will cooperate with all law enforcement authorities.

If Your order, license request or other request is processed by a third-party, or if You are provided with bulletin boards and chat rooms and/or email capabilities on this Site, please note that in the event that You voluntarily disclose personally identifiable information in those instances, that information, along with any substantive information disclosed in Your communication or post, can be collected, correlated and used by third parties. This may result in unsolicited messages from third parties. Such activities are beyond Our control, and We encourage You to check the applicable privacy policy of such party when providing personally identifiable information.

For each visitor to this Site, Our server can detect and collect certain information, including the User's domain name and e-mail address, and can identify the Web pages the User visited or accessed. We may use this information in order to measure interest in and use of the various areas of the site.

We do not knowingly solicit information from children and We do not knowingly market the Site or its services to children.

OPT-OUT

You may at any time opt out of having Your personal information used by Us to send You promotional correspondence by contacting Us via e-mail provided in the "Contact Us" section below.

PROMOTION CODES

"Promotion codes" are offered by third-party affiliates of the Stickley on Security Training Videos. If you choose to include a "Promotion Code" when placing your order, the affiliate who is associated with that promotional code will receive your organizations name. They will NOT however receive any other information related to your account. The sharing of the organization name only applies when a "Promotion Code" is included during the order process.

USE OF COOKIES

1. First-party cookies
User input cookies to keep track of the user's input when filling online forms, shopping carts, etc., for the duration of a session, or persistent cookies limited to the duration of an operation such as purchase or trial;
User identification persistent cookies, to identify the user visited the website for the first time;
Authentication cookies, to identify the user once he has logged in, for the duration of a session;
user interface customization cookies such as time zone and shopping cart status info, for the duration of a session (or slightly longer).

2. Third-party cookies
social plug in content sharing cookies, for logged in members of a social network;
Google Analytics cookies to generate statistical data on how the visitor uses the website.

How do we use them?
Where strictly necessary. These cookies and other technologies are essential in order to enable the Services to provide the feature you have requested, such as remembering you have logged in.

For functionality. These cookies and similar technologies remember choices you make such as time zone and shopping cart info. We use these cookies to provide you with an experience more appropriate with your selections and to make your use of the Services more tailored.

For performance and analytics. These cookies and similar technologies collect information on how users interact with the Services and enable us to improve how the Services operate. For example, we use Google Analytics cookies to help us understand how visitors arrive at and browse our products, services and website to identify areas for improvement such as navigation, user experience, and marketing campaigns.

Social media cookies. These cookies are used when you share information using a social media sharing button or .like. button on our websites or you link your account or engage with our content on or through a social media site. The social network will record that you have done this. This information may be linked to targeting/advertising activities.

How can you opt-out?
To opt-out of our use of cookies, you can instruct your browser, by changing its options, to stop accepting cookies or to prompt you before accepting a cookie from websites you visit. If you do not accept cookies, however, you may not be able to use our Services.

Updates to this Cookie Policy
This Cookie Policy may be updated from time to time. If we make any changes, we will notify you by revising the "effective starting" date at the top of this notice.

INFORMATION SECURITY AND CONFIDENTIALITY

We maintain physical, electronic and procedural safeguards to prevent the unauthorized release of or access to Your personal information. When We transfer and receive certain types of sensitive information such as financial information, We redirect visitors to a secure server. We do not store or reuse Your credit card information. We do not record or manager financial information about You (including credit card and other payment information). However, such precautions do not guarantee that this Site is invulnerable to all security breaks. We make no warranty, guarantee, or representation that the use of this Site is protected from viruses, security threats, or other vulnerabilities and that Your information will always be secure. We cannot guarantee the confidentiality of any communication or material transmitted to/from Us via the Site or e-mail. Use of the Internet is solely at Your own risk and is subject to all applicable local, state, federal, and international laws and regulations.

THIRD PARTY PROCESSING

Stickley on Security uses the vendor Authorize.net to process all payment transactions. When making a purchase on this site, You also accept the Terms and Conditions and Privacy Policy of Authorize.net.

CONTACT US

This Privacy Policy may be updated periodically and posted on this Site. It applies only to Our online practices and does not encompass other areas of the organization. We reserve the right to change this Policy at any time by posting revisions. By accessing or using the Site, You agree to be bound by all of the Terms of this Privacy Policy as posted at the time of Your access or use. We reserve the right to contact Users of the Site regarding changes to the Terms and Conditions generally, this Privacy Policy specifically, or any other policies or agreements relevant to the Site's Users. If You have any questions about this Policy, You may email to:

info@stickleyonsecurity.com

Email Address

Create a new Verification Phrase Enter any word or words you like.
The email newsletter will arrive from news@stickleyonsecurity.com Please wait...