September 21, 2017 Report: Employees Outpace Fraudsters as Source of Cybersecurity Threats 3 min read - According to a recent survey, trusted employees, not cybercriminals, are responsible for the majority of cybersecurity threats affecting SMBs.
Endpoint September 20, 2017 Have We Been Wrong All Along About Good Password Practices? 3 min read - In its new guidelines on secure password practices, NIST recommended using long strings of random words instead of a combination of characters and symbols.
Healthcare September 15, 2017 Increased Awareness Is the Best Cure for Health Care Security Risks 2 min read - Many health care security risks stem from insufficient leadership and limited resources, which can often be attributed to a lack of security awareness.
Risk Management September 11, 2017 CTRL-ALT-DELETE Before You Leave Your Seat! Security Awareness and Training Through Positive Reinforcement 3 min read - Security leaders should infuse positive reinforcement into their security awareness and training programs to encourage users to adopt best practices.
CISO September 8, 2017 Money Talks: Speaking the Language of Money to Boost Security Awareness Among CEOs 2 min read - CEOs often lack security awareness because IT professionals fail to communicate risks in the context of the organization's bottom line.
Risk Management August 18, 2017 Across the Great Divide: Measuring Security Awareness Among US and UK Users 2 min read - A survey revealed that while security awareness differs among users in the U.S. and U.K. in a variety of areas, both populations have a long way to go.
CISO August 4, 2017 Hire a Team of Hackers to Identify Vulnerabilities 3 min read - Many companies have adopted the practice of recruiting a team of hackers to poke holes in their networks and assess their incident response capabilities.
Incident Response August 3, 2017 Why Red on Blue Is a Crucial Component of Cyber Skills and Incident Response Training 4 min read - Companies can use incident response training programs such as capture the flag and red on blue exercises to bridge the cybersecurity skills gap.
July 31, 2017 How to Shake the Hook After a Phishing Attack 2 min read - Is a phishing attack really so advanced? New research suggested that threat actors are lazy and reckless, giving users a chance to shake the hook.
CISO July 26, 2017 Psychological Security: Helping Your Team Think Like Cybercriminals 2 min read - Psychological security refers to the notion that to defend a network against threats, security professionals must be able to think like cybercriminals.