Guidance on building a security-conscious workforce through training, policy development, and awareness programs. Covers topics such as password hygiene, social engineering defenses, insider threat mitigation, and fostering a culture of cybersecurity within organizations.
posts
The Breach That Started With a Single Slack Message In September 2022, a threat actor sent a push notification to an Uber contractor's phone — over and over, for more than an hour. The contractor eventually approved the multi-factor authentication request just to make it stop. That single moment
Your Organization Needs a Phish Setlist — Not Just One Test In 2023, the FBI's IC3 received over 298,000 phishing complaints — making it the most reported cybercrime category for the fifth consecutive year. Yet most organizations I work with still run the same single phishing simulation once a
