Phishing Scams Weaponize Common Apps to Fool Users
From fake PDFs to AI voice scams, phishing attacks are evolving fast. Learn key tactics and defenses to protect against fraud, identity theft, and account loss ... Read More
Apply Human-Centric Cybersecurity to Solve the Unpatchable Threat
Technology can’t fix the biggest cybersecurity threat — people. Human risk management uses behavioral data, targeted interventions, and measurable outcomes to turn the workforce from weakest link to strongest defense ... Read More
Advancing Security Training With Human Risk Management
Cybersecurity education is evolving from simple knowledge transfer to measurable risk reduction as the human risk factor is recognized ... Read More
Gen Z’s Rising Susceptibility to Social Engineering Attacks
Gen Z, or individuals born between 1997 and 2012, have certain types of lifestyles, upbringings and character traits that make them ideal for social engineering exploitation ... Read More
Using the NIST Phish Scale Framework to Detect and Fight Phishing Attacks
The NIST Phish Scale framework offers a structured and effective approach to improving phishing awareness training in organizations ... Read More
Identity Phishing: Using Legitimate Cloud Services to Steal User Access
Identity phishing doesn’t just lead to data theft – it can also lead to financial fraud, targeted social engineering attacks and lateral movement across endpoints ... Read More
Five Tools That Can Help Organizations Combat AI-powered Deception
As digital exploitation, fraud and deception move deeper into society, it is incumbent on organizations to educate their employees on digital literacy skills, make them aware of the risks posed by phishing and social engineering threats ... Read More
The Human Adaptability Gap and How to Close It
The “adaptability gap”—the widening difference between the rapid pace of technological progress and the slower rate of human, or employee adaptation ... Read More
MFA is No Cure for Phishing
Last year my Twitter feed became full of stories and retweets about how Google “solved the phishing problem” using hardware multi-factor authentication (MFA) tokens. One such article covering this topic was “Google: Security Keys Neutralized Employee Phishing” by the venerable Brian Krebs. While I have a lot of respect for ... Read More
Security Assumptions – Don’t Make an ASS of U and ME
Have you ever stopped to ask yourself if the things you are defending against are really your biggest security problems? I am going to challenge you to think about things a little differently, as I have been myself recently. Prepare yourself, as this may challenge some of your core security ... Read More
