Cyber Risk Aware Blog

Introducing Smishing the latest addition to the CRA Platform

[fa icon="calendar'] Apr 30, 2018 12:30:00 PM / by Julie Lhanang posted in Phishing Simulation, security awareness training, phishing email

Information Security and SMiShing :

Read More [fa icon="long-arrow-right"]

Phishing Template Upgrade - Introducing New Sophistication Rankings

[fa icon="calendar'] Apr 19, 2018 8:44:21 AM / by Julie Lhanang posted in Phishing, Phishing Simulation, phishing email

Getting to know the new lure sophistication classifications, and how they can help your next campaign.

 

In 2017, Symantec reported that phishing rates had increased across most industries and organisation sizes. News sites consistently report on the biggest and scariest malware attacks and data breaches, and then ultimately attribute the increased susceptibility to one of many new phishing trends. But what in fact constitutes a highly-sophisticated phishing message? And how can this knowledge help you strategically plan and execute your next test campaigns.

Read More [fa icon="long-arrow-right"]

The Importance of Benchmarking your Security Awareness Training Programme for Risk & Compliance Reasons.

[fa icon="calendar'] Mar 13, 2018 12:37:00 PM / by Julie Lhanang posted in Staff Awareness, GDPR, Phishing Simulation, security awareness training

A company’s staff is the greatest untapped resource in the fight against cybercrime. Although research has shown that in 90% of successful cyber-attacks or more, there is an element of human fallibility involved, what those studies fail to mention is that a trained and vigilant staff could become the greatest barrier of defence against attack types: such as trojans, viruses, ransomware, and other electronic security threats.

Read More [fa icon="long-arrow-right"]

Top 10 Most Common Cyber Security Awareness Training Programme Mistakes (and how to fix them)

[fa icon="calendar'] Feb 6, 2018 11:00:00 AM / by Stephen Burke posted in Phishing Simulation, security awareness training

Cyber-security education and awareness programs are an indispensable part of a balanced corporate security strategy. These programs equip staff with the tools that they need to be part of an overall security solution.

Read More [fa icon="long-arrow-right"]

The Benefits of Security Training in Your Organisation. Why you should build a Human Firewall.

[fa icon="calendar'] Jan 12, 2018 3:23:22 PM / by Stephen Burke

As the latest data shows, billions are being lost to cyber-crime each year. The story behind the data is that human error is responsible for 95% of cyber-crime events. By proactively training your staff on IT security strategies, you can take a great step forward in protecting your organisation and safeguarding your data. In this latest post, we’ll highlight the value of creating this human firewall within your organization.

Read More [fa icon="long-arrow-right"]

5 Best Practices for Your Security Awareness Training

[fa icon="calendar'] Jan 4, 2018 8:00:00 AM / by Stephen Burke

Implementing a security awareness training program may seem like a big challenge, particularly in an organisation which has never utilised such training before. There are many potential topics to cover and numerous ways to cover the topics.

Read More [fa icon="long-arrow-right"]

6 Critical Factors for Evaluating Your Employee’s Knowledge of Cyber-Threats

[fa icon="calendar'] Jan 2, 2018 6:00:00 PM / by Stephen Burke

A security awareness training program is only as good as the level of knowledge retention it creates. You need to run cyber knowledge assessments to test your workforce's knowledge both before and after training, to gauge how successful your training efforts have been.

Read More [fa icon="long-arrow-right"]

Phishing Simulations – Prepare with Realistic Attacks

[fa icon="calendar'] Dec 20, 2017 6:00:00 PM / by Stephen Burke

Phishing Simulations – Cyber Risk Aware

Phishing attacks are quite possibly the most common form of commercial cyber-attack and one which can entirely bypass all the electronic defences you have set up. In 2016, it is estimated that nearly 100,000 phishing attacks targeting companies happened each month, and further, it's an attack type which can be launched at any company regardless of size or prominence.

Read More [fa icon="long-arrow-right"]

EU Businesses: Will Your Human Security Be GDPR-Ready In 2018?

[fa icon="calendar'] Dec 18, 2017 2:01:00 PM / by Stephen Burke

GDPR + EU BusinessesCyber Risk Aware wants to ensure every business in the EU is focusing on the most important element of cyber-security while complying with the upcoming GDPR - the human element.

Read More [fa icon="long-arrow-right"]

Your Boss Just Asked For Protected Data... But Is It Actually Your Boss? Beware of Business eMail Compromise & CEO Fraud!

[fa icon="calendar'] Nov 9, 2017 6:00:00 AM / by Stephen Burke

There's a new type of cyber-crime on the rise, one which is not getting nearly as much public exposure as methods such as ransom ware: Business eMail Compromise and CEO Fraud. According to FBI statistics, Business eMail Compromise has seen an increase of over a thousand percent since 2015, and it is quickly growing to be one of the single most costly forms of attack a company can undergo. Worse, this is a style of attack which is based mostly in classic social engineering techniques.

Read More [fa icon="long-arrow-right"]