Tag

Security Awareness Training

Discover resources and strategies for building effective security awareness training programs. Posts cover curriculum design, engagement techniques, compliance requirements, and methods for measuring training impact to reduce human-related security incidents across organizations.

posts

Phishing Definition

Phishing Definition: What It Really Means in 2026

In 2024, the FBI's Internet Crime Complaint Center received over 298,000 phishing complaints — making it the most reported cybercrime category for the fifth consecutive year. That number almost certainly undercounts reality. Most phishing attacks never get reported. If you've landed here searching for a phishing

Carl B. Johnson May 12, 2026 5 min read
Phishing

What Is Phishing? The Attack Behind 80% of Breaches

In January 2024, a finance employee at a multinational firm in Hong Kong wired $25.6 million to criminals after a video call with what appeared to be the company's CFO. Every person on that call was a deepfake. The attack started with a single phishing email. If

Carl B. Johnson May 10, 2026 5 min read
Cloud Storage Security Risks

Cloud Storage Security Risks: What's Actually Exposing You

A Single Misconfigured Bucket Exposed 3 Billion Records In 2021, Cognyte left an unsecured database containing over 5 billion records — scraped from previous breaches — sitting in a cloud storage instance with no authentication required. Anyone with a browser could reach it. That's not a sophisticated nation-state attack. That&

Carl B. Johnson May 09, 2026 5 min read
Cybersecurity for Nonprofits

Cybersecurity for Nonprofits: A Practical Survival Guide

The Breach That Cost a Children's Charity Everything In 2023, Save the Children Federation disclosed it had been hit by the BianLian ransomware gang, which claimed to have stolen nearly 7 GB of sensitive data including financial records, medical information, and personal data. A global nonprofit with significant

Carl B. Johnson May 08, 2026 5 min read
Ransomware Protection

Ransomware Protection Tips That Actually Work in 2026

A Single Click Cost One Hospital Chain $100 Million In 2024, Change Healthcare — the payment processing backbone of the U.S. healthcare system — was crippled by a ransomware attack attributed to the ALPHV/BlackCat group. UnitedHealth Group, its parent company, disclosed the incident would cost over $870 million in direct

Carl B. Johnson May 07, 2026 5 min read
Third Party Risk Management

Third Party Vendor Cybersecurity Risk: A Practical Guide

The Breach That Didn't Start With You In early 2024, a massive data breach at Change Healthcare — a subsidiary of UnitedHealth Group — disrupted the entire U.S. healthcare payment system for weeks. The root cause? A threat actor exploited compromised credentials on a remote access portal that lacked

Carl B. Johnson May 07, 2026 5 min read
Cybersecurity Awareness Month

Cybersecurity Awareness Month: What Actually Works

October Comes and Goes — Breaches Don't Every October, organizations dust off the same tired PowerPoint decks, send a few reminder emails about password hygiene, and pat themselves on the back for "participating" in Cybersecurity Awareness Month. Then November arrives, an employee clicks a credential-harvesting link, and

Carl B. Johnson May 07, 2026 5 min read
Phishing Emails

How Phishing Emails Work: The Psychology Behind the Click

In 2023, the FBI's Internet Crime Complaint Center received over 298,000 phishing complaints — making it the most reported cybercrime category for the fifth consecutive year. But here's what the raw numbers don't tell you: every single one of those incidents started with a

Carl B. Johnson May 06, 2026 5 min read
Phish Food

Phish Food: What Employees Click and Why It Works

Your Employees Are Hungry — And Threat Actors Are Cooking In 2023, the FBI's Internet Crime Complaint Center (IC3) logged over 298,000 phishing complaints — more than any other cybercrime category for the fifth year running. That's nearly 817 reported phishing attacks per day. And those are

Carl B. Johnson May 05, 2026 5 min read