Tag

Cybersecurity Training

Covers cybersecurity training programs, techniques, and best practices designed to equip employees and individuals with the skills to recognize and respond to cyber threats. Topics include security awareness curricula, simulation exercises, and measuring training effectiveness.

posts

Spear Phishing

What Is Spear Phishing? The Targeted Attack Behind Big Breaches

In March 2022, the FBI warned that business email compromise — a category dominated by spear phishing — cost victims over $2.4 billion in 2021 alone, making it the most financially damaging cybercrime category in the FBI IC3 Annual Report. That number dwarfs ransomware losses. So what is spear phishing, exactly,

Carl B. Johnson Aug 23, 2022 8 min read
What Is Cybersecurity

What Is Cybersecurity? A Practitioner's Real-World Guide

In March 2022, Lapsus$ — a threat actor group made up largely of teenagers — breached Microsoft, Nvidia, Samsung, and Okta in rapid succession. They didn't use sophisticated zero-day exploits. They used social engineering, credential theft, and the kinds of gaps that exist in almost every organization. If you'

Carl B. Johnson Aug 11, 2022 7 min read
Computer Security Jobs Pay

Computer Security Jobs Pay: What You'll Earn in 2022

3.5 Million Open Positions and Salaries That Reflect the Desperation Cybersecurity Ventures projects 3.5 million unfilled cybersecurity jobs globally in 2025. We're already feeling the squeeze in 2022. That talent gap isn't just a headline — it's the single biggest driver of what

Carl B. Johnson Jun 20, 2022 6 min read
Cybersecurity Definition

Cybersecurity Definition: What It Actually Means in 2022

In March 2022, the FBI's Internet Crime Complaint Center reported that Americans lost over $6.9 billion to cybercrime in 2021 — a 64% jump from the year before. That number makes the standard cybersecurity definition you'll find in a textbook feel almost dangerously quaint. If you&

Carl B. Johnson Jun 20, 2022 6 min read
Define Cyber

Define Cyber: What It Really Means for Your Security

In May 2021, a single compromised password shut down Colonial Pipeline — the largest fuel pipeline in the United States — for six days. The company paid a $4.4 million ransom. Flights were disrupted. Gas stations ran dry across the Southeast. All because one set of credentials was exposed on the

Carl B. Johnson Jun 20, 2022 6 min read
Phishing Email

How to Recognize a Phishing Email Before You Click

In March 2022, the FBI's Internet Crime Complaint Center reported that phishing schemes were the most complained-about cybercrime in 2021, with over 323,000 victims — more than double the number from just two years prior. That stat doesn't surprise me. What surprises me is how many

Carl B. Johnson May 25, 2022 7 min read
Spear Phishing vs Phishing

Spear Phishing vs Phishing: What Actually Gets People

In March 2022, the FBI's Internet Crime Complaint Center reported that business email compromise — a form of spear phishing — caused $2.4 billion in adjusted losses in 2021 alone. That dwarfs every other cybercrime category. Meanwhile, broad phishing campaigns still top the list as the most common attack

Carl B. Johnson May 25, 2022 7 min read
Spear Phishing

What Is Spear Phishing? The Targeted Attack Behind Major Breaches

In March 2022, the FBI's Internet Crime Complaint Center reported that business email compromise — a direct descendant of spear phishing — cost organizations over $2.4 billion in 2021 alone. That number dwarfs ransomware losses. Yet most people I talk to still think phishing means a badly written email

Carl B. Johnson Apr 22, 2022 6 min read
Vishing Scam Awareness

Vishing Scam Awareness: Stop Voice Phishing Cold

In July 2020, a teenager and two accomplices called Twitter employees, posed as IT staff, and convinced them to hand over internal credentials. Within hours, they'd hijacked 130 high-profile accounts — including Barack Obama, Elon Musk, and Apple — and ran a Bitcoin scam that netted over $100,000 in

Carl B. Johnson Apr 21, 2022 7 min read