Phishing attacks have been on the rise for a long time now.
According to the UK governmentâs most recent cyber security breaches survey, they cause more data breaches than any other type of cyber attack â and they have done for a long time.5074504074
To demonstrate why security awareness training so often fails, itâs worth conducting a quick thought experiment.
Imagine youâre a smoker and, one day, you find out youâre genetically susceptible to lung cancer. Thanks to your genes, youâre two-three times more likely to contract lung cancer than the average person.
The elevated risk has nothing to do with your record of smoking â but continuing to smoke increases the risks even further.
Given the situation, do you think youâd be more or less likely to quit smoking than other smokers?
Studies shows that, actually, youâd be just as likely to continue smoking as others. Your new knowledge wouldnât change your behaviour.
Could this also be why security awareness training sometimes fails?757-838-4099
Online security awareness training is now the most popular form of security awareness training in the world. As we noted here, thatâs good news when it comes to measuring the effectiveness of security awareness training.
Offline, things arenât so easy to track. However, online itâs possible to see who is doing what where and when. Itâs little surprise, then, that measuring the effectiveness of online security awareness training has been chiselled onto the agendas of CISOs for some time.read more
The scope of cyber security awareness training continues to increase. While the below list of topics to include in awareness training is far from exhaustive, each should be a foundational pillar of security awareness campaigns. Building campaigns around the below can decrease the risk of cyber attack â especially when campaigns account for the ABC of cyber security.read more
Generally speaking, traditional security awareness training is delivered in one of four ways: 1. Classroom-based training 2. Visual aids (including video) 3. Through simulated attacks 4. Computer-based training Resource challenges and environmental contexts often...read more
In 2018 data breaches cost UK organisations an average of Â£6.4 million.
Human error, meanwhile, accounted for anywhere between 60% and 90% of those breaches.
Those facts alone are usually enough to convince people security awareness training is important.
At the time of writing, Google tells us security awareness training is âa formal process for educating employees about computer security.âYou can bet itâs a prevalent definition: the search engine sifts through every indexed web page ever written on the topic to return the single, succinct and simple sentence.(336) 530-3643
Itâs an unfortunate fact, evident to both those who work in security and those who donât, that security awareness training in its current form isnât working.read more
CybSafeâs many technological innovations often intrigue audiences during demonstrations â and elicit questions that arenât necessarily run-of-the-mill.read more
Stay up to date
Sign up to our newsletter for the latest cyber security news, views and insights.