Security awareness companies need core LMS features to enable customers to be able to get value from their training content. But what is an LMS? An LMS has a set of core required features, which we listed above. A Slack LMS integrates Slack into the workflows of all of these features.
The magazine Fast Company was recently hacked. After gaining access, the attackers sent offensive push notifications to users via the Apple News app. Apple disabled the Fast Company news account. It was easy for the attackers because Fast Company used default, easy to guess passwords.
The real risk of human actions has increased as more technology has moved to the cloud and more workflows have moved to SaaS (Slack, Google Workspace, Microsoft 365, Salesforce, Workday, etc.). Human risk today is driven by user decisions in SaaS apps. And security awareness hasn't kept pace.
The most recent Forrester Wave: Security Awareness & Training (SA&T) report was released a few months ago. The report lands at the following conclusion: security awareness training market is in need of disruption. We could not agree more.
If you are shopping for a security awareness vendor, you have Netflix-style variety at your fingertips. The problem is, users aren’t looking for new forms of content to teach them the same lessons. Security awareness needs a new approach, not new content covering the same topics.
My First Million is a popular business and technology podcast. In a recent episode, Shaan Puri (@ShaanVP) and Steph Smith (@stephsmithio) of a16z discussed social engineering and the phishing simulation market that grew to try to address it. We break down what we learned from hearing them talk.
👩💻 Optus, a huge telcom in Australia, recently had a data breach. Last week, Optus was adamant that “human error” was not a factor in the breach - “Optus has strenuously denied "human error" being a contributing factor in a data breach….”. Wait, what?!?!
🎃 Happy Halloween!In the spirit of the season, we wanted to debunk, and de-scare, some of the myths about social engineering. Social engineering is:the use of deception to manipulate individuals into divulging confidential or personal information that may be used for fraudulent purposes.
Security is a core competency that every person should possess. This does not mean every person should be a security or cybersecurity expert. The primary way to accomplish this is with a security mindset. And building a security mindset is a lot like building strength in a muscle.
An LMS is a learning management system. It is general purpose and can be used for any training topic. Security awareness is a form of training focused on security related topics. This post dissects how to run both concurrently because they are fundamentally different tools with different features.