Information Security and SMiShing :
Getting to know the new lure sophistication classifications, and how they can help your next campaign.
In 2017, Symantec reported that phishing rates had increased across most industries and organisation sizes. News sites consistently report on the biggest and scariest malware attacks and data breaches, and then ultimately attribute the increased susceptibility to one of many new phishing trends. But what in fact constitutes a highly-sophisticated phishing message? And how can this knowledge help you strategically plan and execute your next test campaigns.
A company’s staff is the greatest untapped resource in the fight against cybercrime. Although research has shown that in 90% of successful cyber-attacks or more, there is an element of human fallibility involved, what those studies fail to mention is that a trained and vigilant staff could become the greatest barrier of defence against attack types: such as trojans, viruses, ransomware, and other electronic security threats.
Cyber-security education and awareness programs are an indispensable part of a balanced corporate security strategy. These programs equip staff with the tools that they need to be part of an overall security solution.
As the latest data shows, billions are being lost to cyber-crime each year. The story behind the data is that human error is responsible for 95% of cyber-crime events. By proactively training your staff on IT security strategies, you can take a great step forward in protecting your organisation and safeguarding your data. In this latest post, we’ll highlight the value of creating this human firewall within your organization.
Implementing a security awareness training program may seem like a big challenge, particularly in an organisation which has never utilised such training before. There are many potential topics to cover and numerous ways to cover the topics.
A security awareness training program is only as good as the level of knowledge retention it creates. You need to run cyber knowledge assessments to test your workforce's knowledge both before and after training, to gauge how successful your training efforts have been.
Phishing attacks are quite possibly the most common form of commercial cyber-attack and one which can entirely bypass all the electronic defences you have set up. In 2016, it is estimated that nearly 100,000 phishing attacks targeting companies happened each month, and further, it's an attack type which can be launched at any company regardless of size or prominence.
Cyber Risk Aware wants to ensure every business in the EU is focusing on the most important element of cyber-security while complying with the upcoming GDPR - the human element.
There's a new type of cyber-crime on the rise, one which is not getting nearly as much public exposure as methods such as ransom ware: Business eMail Compromise and CEO Fraud. According to FBI statistics, Business eMail Compromise has seen an increase of over a thousand percent since 2015, and it is quickly growing to be one of the single most costly forms of attack a company can undergo. Worse, this is a style of attack which is based mostly in classic social engineering techniques.