Tag: Human Factor
Phishing — what do cybercriminals know about us?
Our fear, stress and uncertainty lower cyber defences. When you clicked to read this article, you may have assumed we would be exploring the information available on the dark web. Or perhaps we would be looking at statistics on breaches, compromised passwords and scams in 2020. Actually, we are going to explore something far more […]Read More
Cyber culture in the time of COVID
The shock, the dance and the new normal. It may not have been the virus that they planned for. But CISOs around the world have certainly risen to the challenge of the coronavirus crisis. And this is a crisis with an over-abundance of challenge. There have been the immediate triage efforts: minimising disruption, assuring continuity […]Read More
The new normal. What the old normal should have been?
The COVID-19 pandemic is an opportunity to regroup – four areas to consider. In his fascinating book ‘I’m afraid Debbie from Marketing has left for the day’*, Morten Münster explains that when it comes to decision making, the human brain has two systems: System one: fast, automatic, uncontrolled, subconscious, intuitive System two: slow, reflective, controlled, […]Read More
Phishing: Big phish, little phish
Landing just one phish can be disastrous. How many times have you heard that it only takes one phishing email to cause damage? That’s because it really does only take one. One email to an employee. One click on a link. One fake website. One password entered. One very happy criminal. What is a ‘typical’ […]Read More
Why the threat of phishing can’t be ‘trained away’
The Security Awareness Special Interest Group (SASIG) connects cybersecurity professionals from all areas. TSC invites SASIG Supporters to share their cybersecurity insights in The Insider. In this piece, we review a report from machine learning email security company Tessian, that opens up the issue of how training and technology should be applied to combat phishing. […]Read More
3 reasons to consider gamification as part of your information security programme
What is gamification? Gamification is the application of gaming techniques and elements into any non-gaming environment. It can be applied to learning and development situations, marketing, recruitment and even our own health regimes (known as ‘exergaming’ – think Fitbit and associated challenges within the software. Across gamification models, typical game-playing elements include point scoring, competition […]Read More
Was 2017 the Year of Ultimate Breaches?
Last year wasn’t exactly the poster child for good cybersecurity. Barely a month passed by without another data breach being reported. Large businesses and household names were victims of major cyber attacks, which affected millions of people as information was hacked, stolen or left unsecured. More personal data was compromised in the first half of […]Read More