Security News

Security awareness training doesn’t solve human risk
2021-05-12 03:00

Traditional employee risk mitigation efforts such as security awareness training and phishing simulations have a limited impact on improving employees' real-world cybersecurity practices, according to Elevate Security and Cyentia Institute. The report examined malware, phishing, email security and other real world attack data and found that while security training results in slightly lower phishing simulation click rates among users, it has no significant effect at the organizational level or in real-world attacks.

Take this culture quiz to see if your users trust your cybersecurity training and team
2021-04-21 13:41

Security company Infosec is taking a different approach by measuring a company's security culture. Jack Koziol, Infosec CEO and founder, said a company's cybersecurity culture offers unique insight into the effectiveness of security awareness training.

Five steps to get employees invested in security awareness training
2021-04-19 03:30

Making sure employees have a high level of knowledge around how to handle email securely at home or in the office is essential, but while the IT team may understand how important cybersecurity is, other employees may need to be convinced. Here's how to get employees invested in security awareness training in five simple steps, according to Mimecast.

Having a cybersecurity training program in place isn’t enough to ensure cyber safety
2021-04-09 05:00

While 59% of employees received cybersecurity training from their companies in response to the COVID-19 outbreak, the survey uncovered that these initiatives have been insufficient. Cybersecurity training and cyber safety 59% of employees were trained on cybersecurity as a response to the work-from-home shift caused by COVID-19.

How marketing principles can be used to enhance cybersecurity training
2021-04-05 17:39

Marketing psychology has influenced each of us; experts suggest it could help reduce the angst of cybersecurity training. There is a dilemma when it comes to cybersecurity training.

(ISC)² calls for collaboration amongst UK Cyber Security Council membership and training bodies
2021-03-31 08:26

called for more and continued industry collaboration amongst membership and training bodies linked with cybersecurity skills and professional development. Doing so will bolster the cross-industry work that has built the new UK Cyber Security Council, as well as further collective efforts to advocate for members and greater industry awareness of cybersecurity trends and threats.

Special pricing on CISSP and CCSP training bundle
2021-03-22 06:40

Whether you're motivated by career advancement, higher pay or inspiring a safe and secure cyber world, the² CISSP and CCSP certifications are professional game-changers. Now through April 30th, you can save 10% on Official² CISSP or CCSP Online Self-Paced Training when bundled with your exam.

Employers aren't training staff to use new tech tools. Employees are paying the price
2021-03-11 09:15

Organizations have invested millions in new technology over the past year, yet fewer than one in 10 businesses have trained staff in to use these tools. Despite soaring technology budgets, research suggests that workers still have not been trained to use new tools properly - and employees are finding themselves on the firing line.

How micro-drilling can enhance your cybersecurity training
2021-02-12 19:00

Read one psychologist's tips for cybersecurity professionals on how to adapt and stop the attackers. With a constant barrage of cyberattacks plaguing cybersecurity staffs, one expert has a new way to train teams in cognitive agility, which we discussed in a previous article, Cognitive agility can help solve some "Wicked" cybersecurity challenges.

Phishing awareness gone wrong: Facebook tries to seize websites set up for staff security training
2021-02-11 20:42

Security biz Proofpoint and its subsidiary Wombat Security Technologies have sued Facebook and its Instagram subsidiary to prevent the seizure of internet domain names used for security testing. It sets up domain names that incorporate trademarked terms, like Facebook and Instagram, or fragments of those terms that have similar looking domain names.