KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

Back to Articles

3 Ways your Phishing Defense Can Be like the Marines - Dark Reading

darkreading.com - 11 months ago

3 Ways your Phishing Defense Can Be like the MarinesTo lower the security threat, organizations must choose the right battles. These best practices will show you how.

Want to stay in front of breaches? Train like the Marines.

Too often in cybersecurity, people focus on mitigating breaches after they occur—and long after phishing emails deliver malicious payloads. To lower the threat, many companies now train employees by sending them simulated phishes, so they can learn to recognize and report suspicious messages. It's the kind of proactive thinking the Marines call "left of bang." In the security world, it’s more like left of breach.

The Marines Combat Hunter training works on this premise: by understanding what "normal" looks like, you’re much more likely to recognize activities and behaviors that are out of place. That recognition, even if based on “gut feel,” becomes the trigger for acting.

This approach relies heavily on front-line human assets, not just technology,...(continued)

View Full Original Article

AWS FreeRTOS Bugs Allow Compromise of IoT Devices

threatpost.com - The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

6 minutes ago

Celebrating 100 episodes of the Smashing Security podcast

grahamcluley.com - To celebrate 100 episodes of the “Smashing Security” podcast I co-host with Carole Theriault each week, we asked listeners to let us know some of their favourite moments from the show.

7 minutes ago - by Graham Cluley

City Pays $2,000 in Computer Ransomware Attack

securityweek.com - The city of West Haven Connecticut has paid $2,000 to restore access to its computer system after a ransomware attack.

8 minutes ago

Drupal dev team fixed Remote Code Execution flaws in the popular CMS

securityaffairs.co - The Drupal development team has patched several vulnerabilities in version 7 and 8 of the popular CMS, including RCE flaws.

21 minutes ago - by Pierluigi Paganini

Should We Break Up the Tech Giants? Not if You Ask the Economists Who Take Money From Them - Slashdot

apple.slashdot.org - This week's FTC hearings on the growing power of companies like Amazon, Facebook, and Google only included economists who have taken money, directly and indirectly, from giant corporations that have a stake in the debate. From a report: Amid growing concern over the power of such behemoths as Ama...

35 minutes ago

Google App Suite Costs as Much as $40 Per Phone Under New EU Android Deal - Slashdot

tech.slashdot.org - Android manufacturers will have to pay Google a surprisingly high cost in Europe in order to include Google's Play Store and other mobile apps on their devices, according to documents obtained by The Verge. From the report: A confidential fee schedule shows costs as high as $40 per device to inst...

about 1 hour ago

Why we need more cybersecurity workers right now

techrepublic.com - At the 2018 Grace Hopper Celebration, Katie Jenkins of Liberty Mutual explained how to attract more diverse candidates to cybersecurity roles.

about 1 hour ago - by Alison DeNisco Rayome

jQuery File Upload Plugin Vulnerable for 8 Years and Only Hackers Knew

bleepingcomputer.com - Of the thousands of plugins for the jQuery framework, one of the most popular of them harbored for at least three years an oversight in code that eluded the security community, despite public availability of tutorials that explained how it could be exploited.

about 1 hour ago - by Ionut Ilascu

View All Trending Stories

Tell the World about Us

We are a new security info web site done right. Find the security news that interest you, and discover the ones that are trending at the moment.

Other Stories From Source

Risky Business: Dark Reading Caption Contest Winners

about 1 hour ago

Cyber Espionage Campaign Reuses Code from China's APT1

about 18 hours ago

How to Get Consumers to Forgive You for a Breach

about 19 hours ago

New Security Woes for Popular IoT Protocols

about 20 hours ago

Audits: The Missing Layer in Cybersecurity

about 21 hours ago

Former Equifax Manager Sentenced for Insider Trading

about 21 hours ago

7 Ways A Collaboration System Could Wreck Your IT Security

about 23 hours ago

Apache Access Vulnerability Could Affect Thousands of Applications

1 day ago