Wombat Security is a leader in security awareness and training. Our blog covers the latest cyber security news, insights, and best practices. We arm infosec professionals with the knowledge and tools they need to improve end-user behaviors and reduce organizational risk.


Three Mobile Security Habits to Implement Today

Posted by Gretel Egan on Oct 19, 2016 2:36:31 PM

In relatively short order, mobile devices have become fixtures in our daily lives. Nothing makes this more clear than the fact that my parents have figured out texting and how to take — and send — a picture with their smartphone. It’s rather amazing to think about what is possible today that wasn’t possible just a few years ago.

But as Uncle Ben Parker of Spider-Man fame cautioned, “With great power comes great responsibility.” (That’s totally who said it. You can look it up.) Our devices help us connect, work, shop, and play — and to enable that, they hold a lot of personal information. Protecting our devices is akin to protecting ourselves.   

It’s time to banish that alter ego who sits on your shoulder and tells you that things like identity theft can’t happen to you. Instead, power up by making the following mobile security tips a part of your cybersecurity arsenal. 

Read More »

Worst Passwords of 2015: Another Hall of Shame

Posted by Gretel Egan on Jan 21, 2016 12:49:52 PM

We often hear these phrases from people who shy away from security awareness and training:

Everybody already knows what phishing is!

People know better than to leave their devices unlocked!

Anyone who watches the news understands why they need to be careful online!

People obviously know how to create strong passwords!

Um…time to stop pretending that your users “know better.” Because the worst passwords of 2015 have been revealed, and it’s clear that plenty of people have not gotten the message about even the most basic cyber security safeguards.

Read More »

What's Wrong With Your Pa$$word?

Posted by Lorrie Cranor on Jun 25, 2014 5:50:00 AM

I studied thousands of real passwords to figure out the surprising, very common mistakes that users — and secured sites — make to compromise security. And how, you may ask, did I study thousands of real passwords without compromising the security of any users? That's a story in itself. It's secret data worth knowing, especially if your password is 123456...

Read More »

Red-Haired Women Pick the Best Passwords, Bearded Men the Worst

Posted by Abaker on Dec 5, 2013 4:54:40 AM

We are sharing this article and its interesting password factoids with you as a reminder that passwords are still a fundamental area of risk that deserves specific emphasis in your employee security education program.

Read More »

This List of Security Tips Goes to Eleven

Posted by Jason Hong on Oct 3, 2013 11:15:24 AM

If you’re looking for a short list of tips to share with your employees this has one more than the David Letterman top 10 list. These short and simple tips demonstrate things you should absolutely, never, ever, ever do when using your computer.

1. Don’t install any software you weren’t expecting to install. There are lots of fake anti-virus scares out there that will try to trick you into installing malware on your computer. A simple heuristic here is: if you weren’t expecting to install any software, then don’t install it.

Read More »