As many of you have already read, a new 0-day attack has been released for Java. This one is nasty, as not only does the exploit work on the latest versions of Java but we are already seeing the exploit hit the streets in several crimware packs. For more details check out the great write-up … Continue reading Dangers of Java - OUCH!
Several months ago Brian Krebs posted the blog titled the "Value of a Hacked PC", a great visual that demonstrates to Ordinary Computer Users (OCUs) all the different ways their computer and accounts is worth money to cyber criminals. The end goal is to engage people by demonstrating how they are truly a target. Once … Continue reading Free Security Awareness Poster - You Are A Target
Building a high-impact, engaging security awareness program can be a big challenge, there are so few planning resources and so many different skills required including communications, project management, cognitive behavior, risks assessments and metrics. As a result, most organizations have no idea where to start. If you are looking to build a new awareness program … Continue reading Upcoming Training on Building High-Impact, Engaging Awareness Programs
As a security awareness officer I'm always interested in new ways to improve awareness training. As a father of three I'm always doing the same, but for my kids. In many ways securing your kids at home faces the same challenges at work. You create an Acceptable Use Policy, you ensure your kids understand and … Continue reading Two Lessons Learned for Keeping Your Kids Safe Online
One of the levers we have to changing behaviors is reward and punishment. Reward behaviors we want to encourage, punish behaviors we want to stop. But which one is more effective, and which ones should we use? To be honest, this is a complex question and in part depends on your environment. However this is … Continue reading Reward vs Punishment - Which is Best for my Awareness Program?