Do you have old pages on your website that you’ve forgotten about? Obsolete projects with old domain names? Old pages that are no longer active? If so, beware. Those subdomains you’ve forgotten about can be highly valuable to cyber attackers. Keeping your organization’s website up-to-date typically means updating content. But while you focus on the new, don’t neglect any old...

Cybersecurity training is crucial, yet traditional methods often fail to inspire engagement, leading to subpar knowledge retention and application of critical security practices. As security threats constantly evolve, you need training that not only informs but also captivates and motivates. Enter gamification. By weaving elements of game design into training programs, you...

Offices around the world have undergone a massive transformation in recent years. While a fully remote workforce remains offered by a minority of employers, the hybrid nature of workplaces is rapidly becoming the norm. A recent study by Cisco studied the cyber security challenges tied to a distributed workforce, and their cyber security readiness model created some troubling...

The reality is simple. Phishing attacks are more prevalent than ever before. An estimated 3.4 billion fraudulent emails are sent out daily as part of phishing schemes, resulting in the FBI's Internet Crime Complaint Center (IC3) receiving over 651,800 phishing-related complaints annually. Adjusted losses for affected organizations topped $2.4 billion, costing them losses of...

Over 3.4 billion phishing emails are sent out to unsuspecting recipients daily. At this rate, over 1 trillion email scams are deployed in one calendar year. The sheer enormity of these numbers makes it easier to understand how and why employees become victims of phishing email scams. Their typical email inbox is overflowing with emails from colleagues, partners, friends,...

One of the most frequent attack vectors for cyber attackers is also one of the most used workplace applications. And you guessed it... that application is email. Thankfully, a lot of sophisticated technology these days can help protect organizations from cyber threats. Even so, this attack vector still puts your end users on the front lines of the cyber security threats. ...

An urgent voicemail message from the tax department. A text message from Microsoft tech support warning you about a problem with your computer. A caller asking you to confirm your mailing address and credit card number so you can collect your free prize. A text message requesting your confirmation of an Amazon shipment. These are all examples of smishing and vishing cyber...

Users often just assume that the software tools they're using are in top working condition, and that's generally true. However, every change and every piece of new code introduces new potential for gaps, problems, and bugs. Sometimes cyber security is a race against time. What happens when a cyber attacker finds a hole before a security team does? What is a Zero-Day Attack? ...

Information systems are not equally safe or vulnerable to cyber attacks. Cyber criminals look for entry points that make it easier to break in, steal data, or do damage to systems. To illustrate, think of a burglary attempt. If an intruder has several houses to choose from, the one with an unlocked door and no security cameras is the easiest and most likely target. The process...

It’s a simple fact: electric vehicles (EVs) are rapidly becoming a prominent fixture of everyday life. Global warming and climate issues are accelerating the adoption of this transportation method running on renewable energy. EVs also feature many technological innovations that make them attractive to buyers. So popular, in fact, that Gartner estimates there will be 2 million...

Your employees are your first line of defense against cyber security attacks. The success or failure of your security awareness program depends on the knowledge of every employee in your organization. As part of your organizational goals and plans for 2023, you must prioritize building a cyber secure and aware culture. This requires an ongoing commitment not just among the...

Cyber security is a constant battle against evolving threats. While most of the themes are the same, it is crucial to remain informed and up to date on the latest forms of every cyber threat. After all, 31% of executives said in a recent survey their main cyber security challenge was improper identification of key risks. Most companies around the globe have a cyber security...

Let’s be honest: cyber security employee training has a reputation for being dull. Most employees dread it. They expect dry training talks, lackluster presentations, and examples they can’t relate to. In any training, people must come first. You should create a model that focuses on the people you’re trying to reach: your own employees.  A people-centric approach lets you...

A lot of ink over the years has gone into comparing the most common generations within the workplace—and for a good reason. Generations are a great way to compare and study variations in broad subjects like the importance of job security, working habits, and technology usage. These generalizations have been crucial data for many important workplace improvements, including...

There’s no way to measure your security awareness program’s success unless you identify the behaviors you want to address and develop a clear, actionable strategy. However, many cyber security leaders struggle to create a framework to quantify the success of their security awareness training. As a result, their organizations rely on intuition rather than clearly defined...

It’s upsetting when bad actors turn the good things in life against us. We use social media daily to celebrate, learn, keep in touch, fall in love, and buy things that satisfy our needs and wants. Unfortunately, hackers exploit that information to execute phishing attacks. Social media platforms did not only experience more attacks in 2022, but it’s also become the fastest...

Everyone wants to look good in front of their boss. Which is exactly why an urgent email from the CEO of your company is guaranteed to catch your attention. You’re more likely to act on the request immediately without questioning the details. But what if that email didn’t come from your boss? All it takes is one savvy email that encourages an employee to act on behalf of...

Phishing attacks work because people don’t know what phishing looks like. These examples of phishing emails emphasize how easy it is to be tricked.