Tag

Cybersecurity Training

Covers cybersecurity training programs, techniques, and best practices designed to equip employees and individuals with the skills to recognize and respond to cyber threats. Topics include security awareness curricula, simulation exercises, and measuring training effectiveness.

posts

Shadow IT Risks

Shadow IT Risks: The Threats Hiding in Your Network

A Single Spreadsheet Cost One Hospital $3 Million In 2023, a healthcare employee uploaded patient records to an unauthorized cloud spreadsheet tool to "make things easier" for her team. Nobody in IT knew about it. No encryption, no access controls, no audit trail. When that tool suffered a

Carl B. Johnson Jun 20, 2026 6 min read
Executive Phishing Attacks

Executive Phishing Attacks: Why the C-Suite Is Target #1

A Single Email Cost This Company $47 Million In 2016, Austrian aerospace firm FACC lost €42 million (roughly $47 million USD) after threat actors impersonated the CEO in a carefully crafted email to the finance department. The employee who wired the money believed they were following a direct executive order.

Carl B. Johnson Jun 17, 2026 6 min read
Spear Phishing

What Is Spear Phishing? The Targeted Attack Behind Major Breaches

A Single Email Cost This Company $100 Million In 2015, Ubiquiti Networks disclosed that threat actors used carefully crafted emails impersonating company executives to trick finance employees into wiring $46.7 million to overseas accounts. The attackers didn't exploit a software vulnerability. They exploited people — with spear phishing.

Carl B. Johnson Jun 07, 2026 5 min read
Cybersecurity Definition

Cybersecurity Definition: What It Really Means in 2026

In 2024, the average cost of a data breach hit $4.88 million — the highest figure IBM had ever recorded. That number didn't climb because organizations lacked firewalls. It climbed because most people fundamentally misunderstand what cybersecurity actually is. If you've searched for a cybersecurity definition,

Carl B. Johnson Jun 05, 2026 5 min read
Cybersecurity Definition

Cybersecurity Definition: What It Really Means in 2026

In 2023, MGM Resorts lost roughly $100 million after a social engineering phone call — a single phone call — gave threat actors the foothold they needed to deploy ransomware across the company's entire infrastructure. If you Google "cybersecurity definition," you'll get a tidy textbook answer

Carl B. Johnson Jun 04, 2026 5 min read
Spear Phishing

Spear Phishing: Why Targeted Attacks Bypass Your Defenses

In January 2024, a finance employee at a multinational engineering firm in Hong Kong wired $25 million to threat actors after a video call with what appeared to be the company's CFO. The call was a deepfake. But the attack started weeks earlier — with a single spear phishing

Carl B. Johnson Jun 02, 2026 5 min read
Cybersecurity Training

How to Train Employees on Cybersecurity in 2026

The Breach That Started With a Single Click In 2023, MGM Resorts lost an estimated $100 million after a threat actor called Scattered Spider social-engineered a help desk employee with a ten-minute phone call. The attacker didn't exploit a zero-day vulnerability. They didn't crack an encryption

Carl B. Johnson Jun 01, 2026 5 min read
Phishing

What Is Phishing? A Security Pro's Real-World Guide

In 2023, the FBI's Internet Crime Complaint Center received over 298,000 phishing complaints — making it the most reported cybercrime category for the fifth consecutive year. And those are just the ones people actually reported. If you're asking what is phishing, you're asking the

Carl B. Johnson May 30, 2026 6 min read
Phishing Awareness

How to Recognize a Phishing Email Before You Click

The Email That Cost One Company $100 Million In 2019, Toyota Boshoku Corporation lost $37 million in a single business email compromise attack. A threat actor impersonated a senior executive, sent a convincing email, and an employee wired the funds. No malware. No zero-day exploit. Just one phishing email that

Carl B. Johnson May 22, 2026 6 min read
Spear Phishing

What Is Spear Phishing? The Targeted Attack Behind Major Breaches

A Single Email Cost One Company $100 Million In 2019, Toyota Boshoku Corporation lost $37 million in a single business email compromise attack. The attacker didn't blast out a million generic emails. They researched one finance executive, crafted one convincing message, and walked away with the money. That&

Carl B. Johnson May 17, 2026 5 min read