Security awareness is tough, once trained a user must be ever vigilant. This is true even for me and I do this for a living. First of all the bad guys are persistent, they never give up. Sooner or later the end user may make a mistake. Second, attackers are always adapting and changing their methods, including adopting the latest technology. Even for the best of us it is hard to keep up. I should know, I recently got phished. When I look back it was so obvious, but at the time the attack was the perfect storm. Take a look a the image to your left (click on it for a bigger size). A good friend of mine and very well respected SANS instructor Ed Skoudis tweeted about the new Macbook Air that was just released. If there is a passion that both Ed and I share it is Mac laptops. So when I saw Ed's tweet on the new Macbook Air specs I was intrigued and clicked to learn more. I then saw that several of his friends had replied to his tweet. The first was Ed's friend Johannes Ulrich, another trusted member of the SANS community. Then I saw Ed's friend Ryan. Now I had no idea who Ryan was, but figured he must be a friend of Ed's also since he was following him. Ryan also posted about a $100 giftcard for the new Macbook Air, and since I was about to buy one and since this was Ed's friend I clicked on it. *sigh*, sinking feeling. As soon as I clicked on it I knew I messed up. This was not Ed's friend, but a cyber criminal posting this scam in reply to any Macbook Air related tweet. Since I'm relatively new to Twitter I let myself believe there was a trust relationship when there was none. As a result, I got suckered. Fortunately the URL had already been identified as evil and was blocked by tiny.cc. This was a wonderful reminder of how you always have to be alert and suspicious, it is a dangerous place out there. It also demonstrates how security awareness is just like patching a computer, it is something you have to be constantly doing to keep the human OS protected against threats.