Security Awareness Training Blog

Security Awareness Training Blog

Read the latest news about security awareness training, best practices, why you need it, and what happens when you don't have it in place.

6 Signs You’ve Successfully Created a Security Culture

Security culture is much more than just IT policies and processes; it requires buy-in and participation from every user. Learn 6 ways to tell if you’re on the right path to building a ...
Continue Reading

What's Wrong With The New Bill That Proposes Cyber Security Training for U.S. House Members?

A bill introduced last week requires all members, officers and employees of the U.S. House of Representatives to undergo cybersecurity training.
Continue Reading

InfraGard Recommends User Education

Education is crucial in defending against evolving social engineering attacks, according to Jack Plaxe, president of the Kentucky InfraGard Alliance. During a presentation last week, ...
Continue Reading

[Heads-Up] If This Is True It's A Disaster. Three Major US Antivirus Companies Breached? ***UPDATED

ARSTECHNICA is getting me worried here. We were all at KB4-CON in Orlando the last few days, and during the conference word got to me that security researchers found out that high-profile ...
Continue Reading

Half of all 2020 Presidential Candidates are Susceptible to Impersonation Attacks

Recent analysis of the websites of 16 current presidential candidates indicate insufficient security to stop attackers from sending emails out impersonating the campaign.
Continue Reading

Russian cyberspies are using one hell of a clever Microsoft Exchange backdoor

A Russian cyber-espionage group has developed and has been using one of the most complex backdoors ever spotted on an email server, according to new research published by cyber-security ...
Continue Reading

Deepfake Videos – An Increasing Cyber Threat For Corporate Clients

Insurance Business Mag had an interesting take on your users being the victim of social engineering by deepfakes. Your cyber insurance policy is not likely to pay out in cases like this. ...
Continue Reading

KnowBe4 Fresh Content & Features Updates - April 2019

Check out the content and feature updates in the KnowBe4 platform for the month of April! NEW FEATURED CONTENT - STANDUPS 4 SECURITY We’re excited to highlight the release of the new ...
Continue Reading

IT and Executives are (Mostly) in Alignment and Both Fear the Phish

According to the latest from AT&T Cybersecurity, enterprise IT and boardrooms largely see eye-to-eye… and those eyes are watching some very common, yet pervasive, threats.
Continue Reading

U.K. Court Finds Employee Actions Constitute “Vicarious Liability”, despite meeting GDPR Requirements

The latest developments in the lawsuit against UK supermarket chain Morrisons may dictate the future of employers being held responsible for employee actions.
Continue Reading

[Heads-up] Scary New MegaCortex Ransomware Strain Discovered That Targets Your Business Network

Sophos has discovered a scary new strain of very sophisticated ransomware called MegaCortex. It was purpose-built to target corporate networks, and once penetrated, the attackers infect ...
Continue Reading

New Phishing Campaign From 'FBI Director Wray' is Hysterical

Our friend Larry Abrams who runs the bleepingcomputer site had something highly entertaining: "We regularly write about phishing emails at BleepingComputer.com in order to warn our ...
Continue Reading

[InfoGraphic] AUGH! Your Users Are Clicking On 50% Of The LinkedIn Phishing Tests

KnowBe4 Q1 2019 top-clicked phishing subject lines reveals LinkedIn messages to be most popular. Today, we revealed that simulated phishing tests that include “LinkedIn” in the subject ...
Continue Reading

President Signs Executive Order to Boost Federal Cyber Workforce

The White House launched its latest effort to bolster the government’s cybersecurity workforce.
Continue Reading

4 Ways CISOs Can Improve Their Organization’s Security Position

Understanding where your biggest risks are, and how cybercriminals take advantage of those risks help CISOs to build a better strategy to defend against, detect, and address threats.
Continue Reading

Ransomware Attacks Jump 500% as Businesses Continue to Be the Prime Target

Malwarebyte’s latest Cybercrime Tactics and Techniques report exposes some trends indicating that 2019 is looking to be the year of the cyberthreat for businesses.
Continue Reading

Why Marketing Departments Are Cyber Security Targets

Because of what they do, marketing departments are potential cybersecurity risks themselves, and digital bad actors are well aware of it. "Since marketers are more closely connected to ...
Continue Reading

Vendors are Responsible for Almost Half of All Data Breaches

The latest data from a survey of 600 SpiceWorks IT and Security professionals shows that vendor users aren’t doing their part to keep your organization’s data safe.
Continue Reading

U.K. Study Finds only 15% of People Sufficiently Know How to Protect Themselves Online

With 80% of people saying cybersecurity is a priority, the disparity between what they believe is important and their ability to protect themselves puts organizations at risk.
Continue Reading

PDFs Return as Phishbait

The use of malware-laden PDF email attachments has spiked in recent months, internet security company SonicWall has found. Over the course of 2018, SonicWall detected 47,000 new attack ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews