blog-logo.png

A BLOG ABOUT CYBER SECURITY

Wombat Security is a leader in security awareness and training. Our blog covers the latest cyber security news, insights, and best practices. We arm infosec professionals with the knowledge and tools they need to improve end-user behaviors and reduce organizational risk.

Holiday Shopping Tips: Stay Alert to These Types of Scams

Written by Gretel Egan

Holiday shopping mania seems to be in full swing already this year, with Black Friday and Cyber Monday previews and preseason deals popping up in inboxes and social feeds everywhere. And it’s not just happening in the US, despite the fact that these shopping specials are triggered by the Thanksgiving holiday. In the UK, retailers are already offering heavy discounts — some as high as 25% to 30% — which normally doesn’t happen until Black Friday and beyond. Though the offers in the UK are likely in response to rising inflation, a dip in annual sales figures, and a hike in interest rates, the aggressive sales by legitimate retailers on both sides of the pond present a golden opportunity for cybercriminals — an environment in which online shoppers are seeking (and expecting) better-than-average deals.

Read More

Blog Topics

Holiday Shopping Tips: Stay Alert to These Types of Scams

Holiday shopping mania seems to be in full swing already this year, with Black Friday and Cyber Monday previews and preseason deals popping up in inboxes and social feeds everywhere. And it’s not just happening in the US, despite the fact that these shopping specials are triggered by the Thanksgiving holiday. In the UK, retailers are already offering heavy discounts — some as high as 25% to 30% — which normally doesn’t happen until Black Friday and beyond. Though the offers in the UK are likely in response to rising inflation, a dip in annual sales figures, and a hike in interest rates, the aggressive sales by legitimate retailers on both sides of the pond present a golden opportunity for cybercriminals — an environment in which online shoppers are seeking (and expecting) better-than-average deals.

Read More

Wombat Cybersecurity Education Helps Texas City Avoid BEC Attack

Earlier this week, we released a new industry case study in conjunction with our partner Future Com, a leader in the network foundation, performance, and security space. The study illustrates how our security awareness and training solutions — delivered by Future Com — helped the City of Garland, Texas, reduce phishing susceptibility by 80%, build a stronger culture of security, and avoid a potentially costly business email compromise (BEC) attack.

Read More

New APWG Report Shows Need for Strategic Phishing Awareness Training

The volume of phishing attacks rose in the first half of 2017 and more brands are being targeted than in 2016, according to a new report by the Anti-Phishing Working Group (APWG). As these attacks become more strategic and sophisticated in nature, your organization’s phishing awareness training should follow suit.

Read More

Scary Data Breach Statistics of 2017

On October 25, the Identity Theft Resource Center (ITRC) published its latest compilation of confirmed data breach notifications affecting US organizations and customers so far this year.* The headline numbers — 1,120 total breaches and more than 171 million records exposed — are frightening in their own right, especially considering that in all of 2016, the ITRC reported 1,039 total breaches and just over 36.6 million records exposed. But what really stood out to us in this latest look at the report wasn’t the numbers that are known, but the numbers that remain unknown.

Read More

Connecting the Dots: The Human Factor and the Cost of Cybercrime

The recently published 2017 Cost of Cyber Crime Study from Ponemon Institute and Accenture delivered some sobering statistics:

  • Organizations pay an average annualized cost of $11.7 million* to deal with cybercrime (up 23% from the prior year).
  • Organizations are dealing with an average of 130 successful security breaches each year (an uptick of 27% year over year)
  • The average cost of cybercrime has risen by 62% since 2013.
Read More

Social Media Hauntings: Students and Job Seekers Beware

When I was a kid, there was a lot of collective fear among my fellow students at the idea of infractions going on a “permanent record.” This nebulous threat from parents, teachers, and administrators had many of us thinking — and fretting — about the types of behaviors and activities that could potentially be tied to us for eternity. (We were easily fooled. What can I say?)

Back in the olden days (i.e., the pre-internet years), we worried about the ramifications of an essentially baseless behavior log that we never actually saw with our own eyes. Interestingly, today’s most frightening form of a permanent record is the one that kids and adults alike are creating for themselves on social media. Unfortunately, bad decisions shared on these forums can haunt users for years to come.

Read More

Holiday Shopping Tips: Stay Alert to These Types of Scams

Holiday shopping mania seems to be in full swing already this year, with Black Friday and Cyber Monday previews and preseason deals popping up in inboxes and social feeds everywhere. And it’s not just happening in the US, despite the fact that these shopping specials are triggered by the Thanksgiving holiday. In the UK, retailers are already offering heavy discounts — some as high as 25% to 30% — which normally doesn’t happen until Black Friday and beyond. Though the offers in the UK are likely in response to rising inflation, a dip in annual sales figures, and a hike in interest rates, the aggressive sales by legitimate retailers on both sides of the pond present a golden opportunity for cybercriminals — an environment in which online shoppers are seeking (and expecting) better-than-average deals.

Read More

Reinforcing Key Topics Is Critical in Security Awareness Training

Are you reinforcing key principles of cybersecurity with your end users? And are you doing so on both an awareness and training front? If you answered “no” to either of these questions — or if you’re uncertain about the differences between raising awareness and delivering training — read on to find out how you could be undercutting your chances for success.

Read More

Simulated Attacks: Keeping Your Phishing Statistics Honest

As pioneers in the development of simulated phishing attacks, we naturally recommend using these assessment tools as foundational components of security awareness training programs. But just as we believe there is more to successful security education than phishing tests, we feel there is more to measuring program success than tracking end-user click rates. And that’s for one simple reason: these metrics don’t provide a full view into your organization’s susceptibility.

Read More

Wombat Security Named a Leader for Fourth Consecutive Year

For the fourth year in a row, IT research and advisory firm Gartner, Inc. has recognized Wombat Security as a Leader in the Magic Quadrant for Security Awareness Computer-Based Training (CBT).* Our strong position this year reflects our Ability to Execute and Completeness of Vision — the latter of which Wombat was ranked highest.

Read More

Register for a Free Cyber Security Awareness Month Toolkit

October is Cyber Security Awareness Month around the globe, and it’s not too late to seize this opportunity to raise awareness among employees at your organization. To support the efforts of infosec professionals, we have developed a free, easy-to-use program called Best Behavior Bingo.

Read More

Update: Advanced Anti-Phishing Training Series, Platform Enhancements

We are excited to announce a new series of product updates that are designed to help our customers deliver advanced, effective security awareness training programs that will help their end users recognize and avoid cyberattacks. These enhancements to our Security Education Platform include a new anti-phishing training series and localized translations, advanced reporting features, updates to our PhishAlarm® product, and a new user interface.

Read More
icon-book.png

Try Our Interactive Security Awareness Training Modules

Our 25+ interactive training modules in topics like Email Security, URL Training, Mobile App Security, and more are proven to change the behavior of end users and reduce risk.

Try Our Modules

   Educate Yourself: Protect Against Security Vulnerabilities