Category: awareness
Too much information?
An interesting piece in the Harvard Business Review highlights the one of the challenges information security professionals face when dealing with security awareness; we actively…
We’re number 1!
Something for those of us who have to continue to remind our executives how important it is to continually increase our cybersecurity budgets… Global insurer…
Aging reports – new ammo for attackers
Another reminder that attackers are getting more sophisticated and taking the time to learn about their victims and their business processes before launching their phishing…
Security awareness materials you can use – “Why we fall for cons”
One of my favorite parts of my job as a CSO is building security awareness amongst my colleagues. I really believe that the time put…
Is Business Email Compromise a “cyber attack?”
Just what constitutes a cyber attack? That’s the question facing a court in a case brought against insurer AIG. One of the firm’s clients was…
typos can lead you to malware
Be careful when typing those URLs! TypoSquatters register domains which are very similar to those of popular sites and use them to serve up malware…
People are still your best defense
OK, I already tweeted this story with a snarky comment about spelling, but there is an interesting lesson to be learned from this incident. It…
video: how to pick a proper password
When your co workers or family members ask what to do about passwords, have them watch this brief, easy to understand and information packed video…
OpenAuth/OpenID flaw – ok, now what?
It seems like the latest big security story is a newly discovered flaw in the OAuth and OpenID protocols which allow users to authenticate to third…
Keep your users informed with SANS’ OUCH! newsletter
SANS recently published the latest edition of their “OUCH!” security newsletter for end users – this month’s topic is Yes – You Actually ARE…