Blog

Archive for Securing the Human

"Public Wi-Fi Attacks – Starbucks"

One of the dangers when working while on the road is using public Wi-Fi access points, such as the ones you find in your hotel, airport or local cafe. Public Wi-Fi is incredibly convenient, but does come with its own unique risks. The two biggestthreats isbad buys either setting up rogue Wi-Fi access points, or … Continue reading Public Wi-Fi Attacks – Starbucks

Reposted from SANS. View original.

Posted in: Securing the Human

Leave a Comment (0) →

"HR – *Please* Stop Requiring Tech Backgrounds for Security Awareness Officers"

As we get ready to enter into 2018 one of the things I’m so excitedto see is more and more organizations investing in managing their human risk, to include hiring what many call Security Awareness Officer, Security Communications Officer ora position related to Security Training or Culture. To be honest, I’m far less concerned about … Continue reading HR – *Please* Stop Requiring Tech Backgrounds for Security Awareness Officers

Reposted from SANS. View original.

Posted in: Securing the Human

Leave a Comment (0) →

"2017 EU Security Awareness Summit – After Action Report"

  The SANS EU Security Awareness Summit is an annual event that brings together security awareness professionals and industry experts from around the world to share and learn from each other how to manage human risk. This year was the largest event ever in Europe, bringing together over 130 awareness professionals for a jammed pack … Continue reading 2017 EU Security Awareness Summit – After Action Report

Reposted from SANS. View original.

Posted in: Securing the Human

Leave a Comment (0) →

"How Can I Tell This is an Attack? – Amazon Support Phish"

Quite a few folks have been asking how can they tell this Amazon email is a Phish. Below are the indicators. I like this example as it demonstrates how the bad guys are constantly evolving and adapting in their attacks. Notice in thisemail how there is no malicious link or infected attachment to click on, … Continue reading How Can I Tell This is an Attack? – Amazon Support Phish

Reposted from SANS. View original.

Posted in: Securing the Human

Leave a Comment (0) →

"The Security Awareness Board Game – At the EU #SecAwareSummit"

Editor’s Note:Daria Catalui is the Cyber Awareness Coordinator for the European Commission.She is one of the speakers for the upcomingSecurity Awareness Summit 6/7 December in London. Below she gives an overview on her upcoming talk on gamifying awareness programs. As my former boss likes to say ‘Cyber security awareness month is everyday’ so indeed the … Continue reading The Security Awareness Board Game – At the EU #SecAwareSummit

Reposted from SANS. View original.

Posted in: Securing the Human

Leave a Comment (0) →

"Every Behavior Has a Cost"

To effectivelymanageyour organization’s human risk,you need to changeyour workforces behaviors. Behaviors such as how people use email, create passwords or share information. While at first this sounds fundamental andperhaps even simple, it is deceivingly hard. One of the most common reasons so many awareness programs fail is they focus onthe wrong behaviors, makesecure behaviors overly … Continue reading Every Behavior Has a Cost

Reposted from SANS. View original.

Posted in: Securing the Human

Leave a Comment (0) →

"Why a Phishing Click Rate of 0% is Bad"

Working with hundreds of organizations around the world, one of the most commonphishing questions I’m often asked is "What should our click rate be for our phishing assessments"? Or, "We got a 17% click rate on our phishing simulation, is that a good or bad number?" Well, it all depends. First, it really depends on … Continue reading Why a Phishing Click Rate of 0% is Bad

Reposted from SANS. View original.

Posted in: Securing the Human

Leave a Comment (0) →

"The Power of a Security Ambassador Program"

As security awareness programs mature I’m starting to hear more and more organizations ask "What’s Next?".Whatcomes afterrolling out interactive online training, Phishing assessments, infographics, lunch-n-learns and speaker events?How do you go beyond the Behavior stage of the Security Awareness Maturity Model anddevelop a secure culture? Hands down what I seeworking around the world is Security … Continue reading The Power of a Security Ambassador Program

Reposted from SANS. View original.

Posted in: Securing the Human

Leave a Comment (0) →

"Lessons in Building your own Awareness Community – At the EU #SecAwareSummit"

Editor’s Note: Martine van de Merwe and Chris Karelse arespeakers for the upcomingSecurity Awareness Summit 6/7 December in London. Below they give an overview of their talk on Building Your Own Awareness Community. We all have that experience where it was better if we connected more and earlier with other security awareness professionals. It is … Continue reading Lessons in Building your own Awareness Community – At the EU #SecAwareSummit

Reposted from SANS. View original.

Posted in: Securing the Human

Leave a Comment (0) →

"Three Commandments to Building a Mature Awareness Program"

I’m excited how more and more organizations understand that cyber security isno longer just about technology, but about people. To have an effective security program, you have to also effectively manage your human risk. And to manage your human risk, you need an effective awareness program. But it also amazes me how people over complicate … Continue reading Three Commandments to Building a Mature Awareness Program

Reposted from SANS. View original.

Posted in: Securing the Human

Leave a Comment (0) →
Page 1 of 33 12345...»