Security awareness training and insider threats

Get advice and tips on how end user security awareness training can help prevent internal risks and external threats. Find out how training can protect users against phishing attacks, social engineering schemes and other threats that can lead to data breaches.

September 24, 2020 24 Sep'20
Shopify discloses data breach caused by insider threats

Canadian e-commerce company Shopify disclosed a data breach involving two insider threats, but questions remain about the breach and how it was discovered.
August 17, 2020 17 Aug'20
Email enigma: Why is Canada hit with so many phishing attacks?

Canada has become an increasingly popular target for phishing attacks, according to several security vendors, but the reasons for the increase remain a mystery.
August 10, 2020 10 Aug'20
Games, not shame: Why security awareness training needs a makeover

Elevate Security co-founder Masha Sedova spoke at Black Hat USA 2020 about why traditional security awareness training is ineffective and fails to change risky behavior.
March 24, 2020 24 Mar'20
RSA Conference 2020 guide: Highlighting security's human element

What's happening at the 2020 RSA Conference? Our team keeps you up to date with pre-conference coverage and breaking news from the infosec world's biggest event.

Bring yourself up to speed with our introductory content

How to develop a cybersecurity strategy: Step-by-step guide

A cybersecurity strategy isn't meant to be perfect, but it must be proactive, effective, actively supported and evolving. Here are the four steps required to get there. Continue Reading
6 common types of cyber attacks and how to prevent them

To prevail in the battle against cybercrime, companies must understand how they are being attacked. Here are the six most damaging types of cyber attacks and how to prevent them. Continue Reading
Insider threat vs. insider risk: What's the difference?

Identifying, managing and mitigating insider threats is far different than protecting against insider risks. Read up on the difference and types of internal risks here. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

Malware researcher speculates on the future of ransomware

Abhijit Mohanta, author of 'Preventing Ransomware,' opines on the future of ransomware and discusses why this attack is favored among cybercriminals. Continue Reading
The ultimate guide to cybersecurity planning for businesses

This in-depth cybersecurity planning guide provides information and advice to help organizations develop a successful strategy to protect their IT systems from attacks. Continue Reading
10 cybersecurity best practices and tips for businesses

Looking to improve your business's security program? Our top-10 list of cybersecurity advice breaks out best practices and tips for security professionals and for employees. Continue Reading

Learn to apply best practices and optimize your operations.

How to manage third-party risk in the supply chain

From third-party risk assessments to multifactor authentication, follow these steps to ensure suppliers don't end up being your enterprise cybersecurity strategy's weakest link. Continue Reading
How to prevent supply chain attacks: Tips for suppliers

Every company, large and small, must assume it is a target in the supply chain. Suppliers should follow these best practices to keep themselves and their customers protected. Continue Reading
5 key ransomware protection best practices to safeguard assets

With ransomware expected to cost companies billions, incorporate these ransomware prevention best practices to keep attackers away. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

Technical controls to prevent business email compromise attacks

Technical controls are at the heart of preventing successful business email compromise attacks. Learn about those and extra considerations to keep your business secure. Continue Reading
Use business email compromise training to mitigate risk

Effective BEC training can prevent scams designed to exploit the brain's automatic responses. It starts by teaching employees to slow down and make the unconscious conscious. Continue Reading
Enterprise ransomware prevention measures to enact in 2021

Enterprises must shore up their ransomware prevention efforts by strengthening security awareness, adding email controls, and developing and testing incident response plans. Continue Reading