Sophos can published a good information for learning more about malwares today.
For example, the document on Exposing the Money Behind the Malware: How cybercrime works and what to do about it (direct link to pdf)
- It introduces concepts like Pay-per-click fraud, Fake security software, Ransomware.
Also, it is worth to look also the related videos on their Anatomy of an Attack page (see videos column), and on other their pages:
- Related to Fake security software,
- “Fake antivirus” demoe video (5 min, in youtube)
- iFrame drive-by attack demo (5 min, youtube)
- The new breed of cybercriminals (5 min, in youtube)
- Server-side polymorphism demo (3 min, in youtube)
- ie. challenge for antivirus tools to detect malware
- (every time/visit a different malware code is produced by server)
- Related to Ransomware,
How to utilize this in a training program? What is needed in general for a training program? Well, Sophos also have general training material at their IT Security Training Tools page, which is also worth to look at.