Security Awareness Blog

Verizon PCI Report - Nearly 70% of Data Breaches Started With the Human

Verizon recently released their 2014 PCI Compliance Report. As stated in the introduction: "This research is based on quantitative data gathered by our qualified security assessors (QSAs) while performing baseline assessments on PCI DSS 2.0 compliance between 2011 and 2013. The companies that we assessed span many industries and countries." One of the biggest findings? … Continue reading Verizon PCI Report - Nearly 70% of Data Breaches Started With the Human


Guest Post - Survey on Application Security Programs, Webcast and Paper

Editor's Note:This guest blog post is from Frank Kim, head of the Developer curriculum at the SANS Institute. For the second year in a row Jim Bird and I have helped SANS put together a "Survey on Application Security Programs and Practices". We asked some of the same questions as the previous year, just in … Continue reading Guest Post - Survey on Application Security Programs, Webcast and Paper


Feb OUCH - What Is Malware

Today we released the February edition of OUCH!, the free, monthly security awareness newsletter. Led by Malware expert and SANS instructor Lenny Zeltser, we explain what Malware is, who is creating it, and how to protect yourself. In addition, we just added Indonesian to this release. OUCH! is now translated into 23 languages. We had … Continue reading Feb OUCH - What Is Malware


Upcoming SANS MGT433 Courses

One of the most common challenges I see with organizations and their security awareness programs is they either are not sure where to start with building a new program, or they have an existing program and are looking to 'pump up the volume'. Either way, SANS MGT433 is the place to go. This intense two … Continue reading Upcoming SANS MGT433 Courses


STH.EndUser December 2013 Update

At Securing The Human we recently released the latest version of our EndUser security awareness training. Technology, threats and standards are constantly changing, so to should your awareness content. With this release we have several new updates and changes that benefit you and your organization. You can find the full details of all 43 training … Continue reading STH.EndUser December 2013 Update