Wombat Security is a leader in security awareness and training. Our blog covers the latest cyber security news, insights, and best practices. We arm infosec professionals with the knowledge and tools they need to improve end-user behaviors and reduce organizational risk.

Keys to Success

Holiday Shopping Tips: Stay Alert to These Types of Scams

Posted by Gretel Egan on Nov 15, 2017 2:49:43 PM

Holiday shopping mania seems to be in full swing already this year, with Black Friday and Cyber Monday previews and preseason deals popping up in inboxes and social feeds everywhere. And it’s not just happening in the US, despite the fact that these shopping specials are triggered by the Thanksgiving holiday. In the UK, retailers are already offering heavy discounts — some as high as 25% to 30% — which normally doesn’t happen until Black Friday and beyond. Though the offers in the UK are likely in response to rising inflation, a dip in annual sales figures, and a hike in interest rates, the aggressive sales by legitimate retailers on both sides of the pond present a golden opportunity for cybercriminals — an environment in which online shoppers are seeking (and expecting) better-than-average deals.

Read More »

Reinforcing Key Topics Is Critical in Security Awareness Training

Posted by Gretel Egan on Nov 3, 2017 2:33:22 PM

Are you reinforcing key principles of cybersecurity with your end users? And are you doing so on both an awareness and training front? If you answered “no” to either of these questions — or if you’re uncertain about the differences between raising awareness and delivering training — read on to find out how you could be undercutting your chances for success.

Read More »

Simulated Attacks: Keeping Your Phishing Statistics Honest

Posted by Gretel Egan on Oct 10, 2017 1:47:01 PM

As pioneers in the development of simulated phishing attacks, we naturally recommend using these assessment tools as foundational components of security awareness training programs. But just as we believe there is more to successful security education than phishing tests, we feel there is more to measuring program success than tracking end-user click rates. And that’s for one simple reason: these metrics don’t provide a full view into your organization’s susceptibility.

Read More »

Register for a Free Cyber Security Awareness Month Toolkit

Posted by Aaron Jentzen on Sep 28, 2017 3:03:30 PM

October is Cyber Security Awareness Month around the globe, and it’s not too late to seize this opportunity to raise awareness among employees at your organization. To support the efforts of infosec professionals, we have developed a free, easy-to-use program called Best Behavior Bingo.

Read More »

Security Awareness Training Data Is Great…But Wisdom Is Better

Posted by Greg Haas on Sep 26, 2017 11:13:07 AM

The amount of data tracked throughout every aspect of our lives is ever increasing, as are the opportunities to track even more data.  Whether as a customer, a contributor for your organization, an investor, or even a parent, there is an enormous framework to grow our knowledge and understand the impacts we impose on others and experience ourselves.  However, in cybersecurity awareness training (as in life) data alone is not the rationale that drives decisions, defines success or failure, interprets risk, and so forth.

Read More »