Accountability and Security Awareness - Cyber Security Informer

Why Take9 Won’t Improve Cybersecurity

Schneier on Security

MAY 30, 2025

That’s why meaningful behavioral change requires more than just a pause; it needs cognitive scaffolding and system designs that account for these dynamic interactions. A successful awareness campaign would do more than tell people to pause. We’re using security awareness campaigns to cover up bad system design.

Cybersecurity

Cybersecurity Scams Security Awareness Phishing

The Risk-Conscious, Security-Aware Culture: The Forgotten Critical Security Control

Cisco Security

JULY 12, 2021

Would a risk-conscious, security-aware workforce become a security enabler rather than a security risk? Should a risk-conscious, security-aware culture be considered a critical security control? The indirect and hidden costs could be much higher. CISO Connections program.

Security Awareness

Security Awareness Risk CISO Cybersecurity

Security awareness training: An educational asset you can’t be without

Webroot

JANUARY 19, 2022

Being aware is the first step towards protecting your business. Security awareness training (SAT) can help. What is Security Awareness Training? Security awareness training is a proven, knowledge-based approach to empowering employees to recognize and avoid security compromises while using business devices.

Security Awareness

Security Awareness Education Phishing Social Engineering

Cyber Security Awareness Month – Answering Google’s Most Commonly Asked Questions

Thales Cloud Protection & Licensing

OCTOBER 17, 2023

Cyber Security Awareness Month – Answering Google’s Most Commonly Asked Questions madhav Wed, 10/18/2023 - 05:25 This month is Cyber Security Awareness Month , highlighting how far security education needs to go in order to enable a secure interconnected world. Data Sovereignty What is data sovereignty?

Security Awareness

Security Awareness Passwords Authentication Encryption

Cyber Security Awareness Month: Cyber tune-up checklist

Webroot

OCTOBER 1, 2024

For more than 20 years now, October has also been recognized as Cybersecurity Awareness Month. In our digitally connected world, apps and online accounts can make our lives much more convenient. But protecting your personal information online doesn’t need to be scary. In one recent data breach, 2.9 Do not use your pet’s name!

Security Awareness

Security Awareness Passwords Backups Password Management

Time suck: Security awareness pros are getting sidetracked from core functions

SC Magazine

MARCH 29, 2021

“Awareness programs are great for a number of reasons, but they do not take priority over the daily fire drills that most security teams face,” said Brian Johnson, chief security officer at Armorblox. Just under 40 percent of respondents said they spent only 10% of their time on security awareness.

Security Awareness

Security Awareness InfoSec CISO Media

Protect your business with security awareness training

SiteLock

AUGUST 27, 2021

Cybercriminals know this, which is why phishing attacks account for more than 80% of reported security incidents and why 54% of companies say their data breaches were caused by “negligent employees. ”. The reason many employees use the same passwords across all work accounts is simple – they can keep track of them all.

Security Awareness

Security Awareness Passwords Phishing Scams

Data Privacy Week 2022: The Security Awareness Canary in the Coalmine

Webroot

JANUARY 24, 2022

Whether it’s for your home or your business, ensure you take privacy into account when you agree to the terms and conditions of items available for download from the internet or when you create a program that may expose your employees to online risk. This Data Privacy Week, let’s move beyond just becoming more aware of bad actors.

Data privacy

Data privacy Security Awareness Antivirus Backups

Survey: Senior Executives Being Held More Accountable for Cybersecurity

Security Boulevard

AUGUST 16, 2024

The post Survey: Senior Executives Being Held More Accountable for Cybersecurity appeared first on Security Boulevard.

Accountability

Accountability Cybersecurity CISO Security Awareness

When Security Takes a Backseat to Productivity

Krebs on Security

JUNE 17, 2020

Continuously inventorying, auditing, logging and monitoring all devices and user accounts connected to the organization’s IT network. ” All organizations experience intrusions, security failures and oversights of key weaknesses.

Data breaches

Data breaches Security Awareness Surveillance Media

NY AG Warns Credential Stuff Compromised 1.1M Accounts

Security Boulevard

JANUARY 7, 2022

million online accounts have been compromised by cyberattacks involving credential stuffing. Accounts appeared first on Security Boulevard. New York Attorney General Letitia James has put 17 companies on notice that 1.1 The post NY AG Warns Credential Stuff Compromised 1.1M

Accountability

Accountability Passwords Security Awareness Cybersecurity

Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones

Security Boulevard

MARCH 28, 2024

The post Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones appeared first on Security Boulevard. Rethink different: First, fatigue frightened users with multiple modal nighttime notifications. Next, call and pretend to be Apple support.

Accountability

Accountability Social Engineering Authentication Data privacy

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

The Last Watchdog

OCTOBER 24, 2022

Employee security awareness is the most important defense against data breaches. Related: Leveraging security standards to protect your company. Create security awareness for employees. One of the most important ways to protect against data breaches is to increase employee security awareness.

Passwords

Passwords Security Awareness Data breaches Cybersecurity

Carnival discloses new data breach on email accounts

SC Magazine

JUNE 18, 2021

Carnival Corporation – which has been plagued by cyberattacks over the past few years – issued a breach disclosure on Thursday confirming hackers attacked email accounts and gained access to data about its customers and employees. The post Carnival discloses new data breach on email accounts appeared first on SC Media.

Data breaches

Data breaches Accountability Phishing Security Awareness

MY TAKE: Account hijackers follow small banks, credit unions over to mobile banking apps

The Last Watchdog

APRIL 10, 2019

In the not-so-distant past, banks dealt with online and account takeover fraud, where hackers stole passwords and used phishing scams to target specific individuals. Security capabilities are branching out beyond mobile banking into corporate cash management applications and retail channels. Key takeaways: Shifting risks.

Banking

Banking Mobile Accountability Artificial Intelligence

From Notifications to Deepfakes: How Human Behaviour Is Shifting and What It Means for Cybersecurity

Jane Frankland

JANUARY 19, 2025

For instance, we’ve already seen: A deepfake of a company executive instructing employees to transfer funds to a fraudulent account. Here’s what we can do to maintain this balance: Foster a Culture of Security Awareness Security awareness is the foundation of any cybersecurity strategy.

Cybersecurity

Cybersecurity Technology Scams Risk

Google Issues Cloud Security Wake-Up Call as Threats Evolve

Security Boulevard

JANUARY 28, 2025

A report published by Google Cloud found nearly half (46%) of the observed security alerts involved a service account that was overprivileged. The post Google Issues Cloud Security Wake-Up Call as Threats Evolve appeared first on Security Boulevard.

Accountability

Accountability Security Awareness Cybersecurity

A Policy of All Privileged Accounts – Overkill or Common Sense?

Security Boulevard

JUNE 20, 2023

An attacker accessing a privileged account doesn’t begin with a root or administrator account. An attack on a privileged account usually starts with the theft of an average user’s credentials. The post A Policy of All Privileged Accounts – Overkill or Common Sense? appeared first on Security Boulevard.

Accountability

Accountability Passwords CISO Security Awareness

Cybersecurity’s Comfort Zone Problem: Are you Guilty of it?

Jane Frankland

APRIL 15, 2025

Whether its a mis-click on a phishing email, poor password management, acting on a deepfake, or a misconfiguration, human error accounts for most breaches. Leaders must set the tone, providing vision, fostering accountability, andas Greg might put itensuring we “park the car and start walking toward what really matters.”

Risk

Risk Technology Cybersecurity Security Awareness

Voice Phishers Targeting Corporate VPNs

Krebs on Security

AUGUST 19, 2020

According to interviews with several sources, this hybrid phishing gang has a remarkably high success rate, and operates primarily through paid requests or “bounties,” where customers seeking access to specific companies or accounts can hire them to target employees working remotely at home.

Phishing

Phishing VPN Social Engineering Media

Travel Safe: Cybersecurity Tips for Your Next Vacation

SecureWorld News

NOVEMBER 27, 2024

On the go After you follow the cybersecurity to-do list before hitting the open road, there are best practices you can follow while exploring to keep your devices, data and accounts safe. Use secure Wi-Fi Do not transmit personal info or make purchases on unsecure or public Wi-Fi networks.

Cybersecurity

Cybersecurity Wireless Accountability Internet

Managed detection and response in 2024

SecureList

FEBRUARY 20, 2025

Human-driven targeted attacks accounted for 43% of high-severity incidents 74% more than in 2023 and 43% more than in 2022. A significant number of incidents are linked to unauthorized changes, such as adding accounts to privileged groups or weakening secure configurations. Human-driven targeted attacks are increasing.

Social Engineering

Social Engineering Phishing Government Threat Detection

Shedding AI Light on Bank Wire Transfer Fraud

Security Boulevard

OCTOBER 31, 2024

Wire transfer fraud occurs when scammers convince a company to send money to a fraudulent account. The post Shedding AI Light on Bank Wire Transfer Fraud appeared first on Security Boulevard. While weeding out suspicious requests like this may seem rudimentary, it’s not.

Banking

Banking Accountability Social Engineering Security Awareness

News alert: SquareX discloses ‘Browser Syncjacking’ – a new attack to hijack browser

The Last Watchdog

JANUARY 30, 2025

For example, the malicious extension can open and modify Googles official support page on how to sync user accounts to prompt the victim to perform the sync with just a few clicks. Once the profile is synced, attackers have full access to all credentials and browsing history stored locally.

Social Engineering

Social Engineering Engineering Authentication Media

March Madness Meets Cyber Mayhem: How Cybercriminals Are Playing Offense this Season

SecureWorld News

MARCH 20, 2025

Attackers are mimicking tournament brackets, betting promotions, and registration formstricking users into handing over credentials or linking bank accounts to fraudulent sites. A simple click on what seems like an innocent bracket challenge or promo offer can lead to compromised financial accounts before tipoff.

Scams

Scams Social Engineering Mobile Phishing

The NCSAM Campaign

Javvad Malik

NOVEMBER 19, 2020

For October’s National Cyber Security Awareness month, I put together a few videos and blogs. 5 Cyber Security Awareness Month Tips for Cybersecurity Professionals. 5 Cyber Security Awareness Month Tips for Cybersecurity Professionals. I then went on to advocate being a liar for the sake of security.

Security Awareness

Security Awareness Media Accountability Cybersecurity

Allstate Violates Drivers’ Privacy, Texas AG Alleges

Security Boulevard

JANUARY 15, 2025

Dont Mess With Texas Privacy: We will hold all these companies accountable, rants state attorney general Ken Paxton (pictured). The post Allstate Violates Drivers Privacy, Texas AG Alleges appeared first on Security Boulevard.

Accountability

Accountability Insurance Social Engineering Spyware

Author’s Q&A: It’s high time for CISOs to start leading strategically — or risk being scapegoated

The Last Watchdog

MAY 13, 2025

The way accountability is structured, everything rolls downhill to one person, even when the real issues are baked into the system. Build shared accountability across the C-suite. And no, Im not talking about security awareness training. One friend joked it should be called Chief Scapegoat Officer, and he wasnt wrong.

CISO

CISO Risk Cybersecurity Government

The Fake Browser Update Scam Gets a Makeover

Krebs on Security

OCTOBER 18, 2023

Earlier this month, researchers at the Tel Aviv-based security firm Guardio Labs said they tracked an updated version of the ClearFake scam that included an important evolution. Previously, the group had stored its malicious update files on Cloudflare, Guard.io

Scams

Scams Malware Cryptocurrency Hacking

Savings and Security: The Dual Benefits of FinOps and the Cloud

Security Boulevard

MARCH 14, 2025

Organizations can adopt FinOps, a cloud financial management practice promoting shared accountability among engineering, finance and operations teams to balance innovation, security and cost efficiency. The post Savings and Security: The Dual Benefits of FinOps and the Cloud appeared first on Security Boulevard.

Engineering

Engineering Accountability Security Awareness Cybersecurity

ROUNDTABLE: Targeting the supply-chain: SolarWinds, then Mimecast and now UScellular

The Last Watchdog

FEBRUARY 3, 2021

The attackers thus gained remote access to the CRM systems running on the store computers – and a foothold to access customers’ wireless phone numbers and associated account information. Our systems need to be able to monitor accounts, their privileges and their usage – to detect anomalous privileges and activities of these accounts.

Phishing

Phishing Hacking Accountability Social Engineering

What Maslow’s Hierarchy of Needs Reveals About Cybersecurity Flaws

Jane Frankland

APRIL 18, 2025

Strong leaders set vision, build trust, and foster accountability. Adaptive security awareness training solutions leverage individuals data to personalize their security awareness training, ensuring that the right person receives the right training, at the right time.

Cybersecurity

Cybersecurity Technology Risk Security Awareness

Financial cyberthreats in 2024

SecureList

MARCH 25, 2025

To gain an understanding of the financial threat landscape, we analyzed anonymized data on malicious activities detected on the devices of Kaspersky security product users and consensually provided to us through the Kaspersky Security Network (KSN). Mamont was the most active Android malware family, accounting for 36.7%

Phishing

Phishing Banking Scams Mobile

AWS Makes Significant Progress on Driving MFA Adoption

Security Boulevard

DECEMBER 9, 2024

Amazon Web Services (AWS) is reporting that since last April more than 750,000 root user accounts on its AWS Organizations console for managing access to cloud services have enabled multifactor authentication (MFA). The post AWS Makes Significant Progress on Driving MFA Adoption appeared first on Security Boulevard.

Authentication

Authentication Accountability Password Management Passwords

Secure Web Browsing – How to Remove the Headache

Jane Frankland

OCTOBER 17, 2023

By mid-year, there’s been a staggering 156% growth in the total number compared to the previous quarter, with a whopping 855 accounts worldwide being leaked every minute. So, let’s begin by examining what secure web browsing is and why it matters. So, let’s examine how these approaches function in promoting security awareness.

Security Awareness

Security Awareness Education Cybersecurity Data breaches

Microsoft Account Security Alert Email: Recognize the Scam

Security Boulevard

JULY 24, 2024

Reading Time: 5 min Have you received a microsoft account security alert email? Learn how to identify legitimate alerts and avoid phishing scams targeting your Microsoft account. The post Microsoft Account Security Alert Email: Recognize the Scam appeared first on Security Boulevard.

Account Security

Account Security Scams Accountability Phishing

9,000 employees targeted in phishing attack against California agency

SC Magazine

MARCH 24, 2021

A California state agency was victimized by a phishing incident last week in which an employee clicked on a link that provided access to the employee’s account for some 24 hours. In an announcement issued by SCO, officials said the improperly accessed email account was discovered promptly and access removed.

Phishing

Phishing Social Engineering Accountability Government

Say Hello To The New SiteLock Dashboard!

SiteLock

JUNE 29, 2021

Discover an interface redesigned for easier navigation, deeper visibility, and smoother integrations—delivering loyal SiteLock customers a user experience that empowers stronger security awareness in a time of heightened cybercrime. The post Say Hello To The New SiteLock Dashboard! appeared first on The SiteLock Blog.

Cybercrime

Cybercrime Security Awareness Accountability

TookPS: DeepSeek isn’t the only game in town

SecureList

APRIL 2, 2025

Ableton is music production software for composition, recording, mixing, and mastering, and Quicken is a personal finance app for tracking expenses, income, debts, and investments across various accounts. Additionally, regular security awareness training is essential for ensuring a proper level of employee vigilance. com tu02n[.]website

Software

Software Malware Security Awareness Authentication

Romantic Lawsuit for Two? Don't Let Cybercriminals Scam You this Valentine's Day

SecureWorld News

FEBRUARY 14, 2025

If you are in a C-suite role, you need to be engaged, informed, and accountable for what you are personally responsible for," Machin said.

Scams

Scams Cybercrime Social Engineering Phishing

GUEST ESSAY: Now more than ever, companies need to proactively promote family Online Safety

The Last Watchdog

FEBRUARY 15, 2021

In response to continuing waves of data breaches and network disruptions, companies have made a concerted effort and poured substantial resources into promoting data security awareness among employees, suppliers and clients. Incorporate security education into corporate volunteer or mentoring programs.

Education

Education CISO Security Awareness Cybersecurity

October Cybersecurity Awareness Month: Ensuring Data Security and Compliance is an Ongoing Concern

Security Boulevard

OCTOBER 29, 2024

Data should stay within a company’s control, whether it’s in a cloud account or data center, to meet security, residency and sovereignty needs. The post October Cybersecurity Awareness Month: Ensuring Data Security and Compliance is an Ongoing Concern appeared first on Security Boulevard.

Cybersecurity

Cybersecurity Accountability Security Awareness

Cybereason warns against ransomware attacks from Black Basta Gang

CyberSecurity Insiders

JULY 19, 2022

Cybereason offers these recommendations to organisations to reduce their risks: Practicing good security hygiene like implementing a security awareness program for employees, assuring operating systems and other software are regularly updated and patched. Evaluating lock-down of critical accounts when possible.

Ransomware

Ransomware Accountability Security Awareness Software

Upending expectations and challenging assumptions: BH Consulting Breakfast Insights 2025

BH Consulting

MAY 28, 2025

Faced with these challenges, Brian said there are five steps to improving security: Identify the key assets you have Put in place effective risk management Develop a breach detection and response plan Ensure there are appropriate layers of protection Nurture a culture of security awareness.

Scams

Scams Passwords Technology Insurance

Why Take9 Won’t Improve Cybersecurity

The Risk-Conscious, Security-Aware Culture: The Forgotten Critical Security Control

Trending Sources

Security awareness training: An educational asset you can’t be without

Cyber Security Awareness Month – Answering Google’s Most Commonly Asked Questions

Cyber Security Awareness Month: Cyber tune-up checklist

Time suck: Security awareness pros are getting sidetracked from core functions

Protect your business with security awareness training

Data Privacy Week 2022: The Security Awareness Canary in the Coalmine

Survey: Senior Executives Being Held More Accountable for Cybersecurity

When Security Takes a Backseat to Productivity

NY AG Warns Credential Stuff Compromised 1.1M Accounts

Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

Carnival discloses new data breach on email accounts

MY TAKE: Account hijackers follow small banks, credit unions over to mobile banking apps

From Notifications to Deepfakes: How Human Behaviour Is Shifting and What It Means for Cybersecurity

Google Issues Cloud Security Wake-Up Call as Threats Evolve

A Policy of All Privileged Accounts – Overkill or Common Sense?

Cybersecurity’s Comfort Zone Problem: Are you Guilty of it?

Voice Phishers Targeting Corporate VPNs

Travel Safe: Cybersecurity Tips for Your Next Vacation

Managed detection and response in 2024

Shedding AI Light on Bank Wire Transfer Fraud

News alert: SquareX discloses ‘Browser Syncjacking’ – a new attack to hijack browser

March Madness Meets Cyber Mayhem: How Cybercriminals Are Playing Offense this Season

The NCSAM Campaign

Allstate Violates Drivers’ Privacy, Texas AG Alleges

Author’s Q&A: It’s high time for CISOs to start leading strategically — or risk being scapegoated

The Fake Browser Update Scam Gets a Makeover

Savings and Security: The Dual Benefits of FinOps and the Cloud

ROUNDTABLE: Targeting the supply-chain: SolarWinds, then Mimecast and now UScellular

What Maslow’s Hierarchy of Needs Reveals About Cybersecurity Flaws

Financial cyberthreats in 2024

AWS Makes Significant Progress on Driving MFA Adoption

Secure Web Browsing – How to Remove the Headache

Microsoft Account Security Alert Email: Recognize the Scam

9,000 employees targeted in phishing attack against California agency

Say Hello To The New SiteLock Dashboard!

TookPS: DeepSeek isn’t the only game in town

Romantic Lawsuit for Two? Don't Let Cybercriminals Scam You this Valentine's Day

GUEST ESSAY: Now more than ever, companies need to proactively promote family Online Safety

October Cybersecurity Awareness Month: Ensuring Data Security and Compliance is an Ongoing Concern

Cybereason warns against ransomware attacks from Black Basta Gang

Upending expectations and challenging assumptions: BH Consulting Breakfast Insights 2025

Stay Connected