Who Says Holiday Romance is Dead? Catphishers, That’s Who

It’s that time of year again. A day of romance, crowded restaurants, overblown gestures of love, and… Well. You get the idea. For those of us in the security world there’s another, less enjoyable component to Valentine’s Day. Yes, even less enjoyable than trying to share a romantic meal while sitting less than a foot away from four other couples. Yes, I’m talking about holiday themed phishing scams. We’ve written about this precise topic many times before (including last Valentine’s Day) but so far we’ve never tackled the specific scams that surround this romance-centric annual event. So before you send those dutch-courage fueled love notes, just take a moment to consider…
Read more

The Targeted Approach to Anti-Phishing: Improving Core Skills

Wouldn’t it be great if every one of your users could be turned into an anti-phishing specialist? Like sleeper agents, they’d be ready at any moment to drop their day jobs and sniff out every last malicious email that makes it past your perimeter defenses. It’s an enticing fantasy. But is it reasonable to expect your users to become genuine anti-phishing experts? We think not.
Read more

#CyberAware: Crash Course in Phishing

It would be easy to feel defeated by the statistics continuously reported on cyber attacks. Even with an organization’s next-gen firewall, threat intelligence capabilities, and a host of sophisticated tech tools, threat actors still manage to access valuable data. How is this happening? Here’s a hint: we’ve all seen them…those sneaky, often carefully crafted emails that lure us into giving up our valuable information. Yes, you guessed it… 
Read more

Coming Soon – Healthcare Security Awareness Training, the 2017 Buyer’s Guide

Historically, security awareness training (SAT) in the healthcare industry… isn’t great. In fact, if you start talking about SAT to a healthcare CISO, you can see the frustration on their face almost immediately. Back in February we attended HIMSS, one of the biggest healthcare IT shows in the US. We wanted to find out exactly what healthcare providers needed from a SAT program, and show them that (done properly) SAT can have a tremendous positive effect on the operational security of healthcare organizations.
Read more

How to Use URL Pattern Analysis for Phishing Detection & Mitigation

When you’re attempting to mitigate the risk of phishing, threat intelligence plays a vital role. After all, what better way to predict and intercept future phishing attacks than by analyzing past attacks for patterns and indicators? This post is the second in a series breaking down lessons learned from our recent consumer-focused phishing webinar. In the first post we covered the value of phishing intelligence, and explained how to use source code analysis to link individual phishing sites back to the phishing kits and actors responsible.
Read more

7 Things the Healthcare Industry Needs from Security Awareness Training: HIMSS Feedback

Mention security awareness training in a healthcare setting and stress levels start to rise. But it doesn’t have to be that way. Last month we attended HIMSS, one of the largest healthcare specific IT conferences in the US. We wanted to show healthcare providers that security awareness training doesn’t have to be a huge burden, and that (done well) it can have a profound impact on a healthcare organization’s security profile. But to do that, we needed to have frank conversations with as many healthcare providers as possible. We needed to find out what healthcare security professionals require from their security awareness training in terms of structure, content, and results. And that’s exactly what we did.
Read more
Page 1 of 3123