blog-logo.png

A BLOG ABOUT CYBER SECURITY

Wombat Security is a leader in security awareness and training. Our blog covers the latest cyber security news, insights, and best practices. We arm infosec professionals with the knowledge and tools they need to improve end-user behaviors and reduce organizational risk.

Phishing

The Latest in Phishing: First of 2017

Posted by Kym Harper on Feb 15, 2017 9:00:00 AM

We bring you the latest in phishing statistics and attacks from the wild.

Read More »

Put Less Emphasis on Phishing Trends, More Emphasis on Managing Risk

Posted by Gretel Egan on Jan 25, 2017 10:46:05 AM

As we indicated in our recent 2017 State of the Phish Report summary, we noticed some positive trends with regard to the reported volume of phishing attacks, and these trends coincided with the numbers noted in the Anti-Phishing Working Group’s Phishing Trends Report, 3rd Quarter 2016, which was released in late December. The APWG headlined its report summary with “Record Wave of Phishing Comes to an Ebb in Autumn 2016” and noted several key comparison metrics:

Read More »

New State of the Phish Report Shows Positive Trends, But End-User Risk Remains

Posted by Gretel Egan on Jan 19, 2017 6:00:31 PM

We're excited to announce the release of the 2017 State of the Phish Report, our third-annual look at how end users are recognizing and responding to phishing attacks, and what infosec professionals are doing to mitigate the risks associated with this perennial threat.

Read More »

SecureWorld Webinar Offers Preview of Wombat’s 2017 State of the Phish Report

Posted by Gretel Egan on Jan 13, 2017 1:49:08 PM

On Wednesday, January 11, Wombat CTO Trevor Hawthorn participated in SecureWorld’s “State of the Phish 2017 – A 360-Degree View” webinar and gave a preview of our forthcoming 2017 State of the Phish Report. He was joined by fellow presenters Jake Bernstein, an attorney with Newman Du Wors, and Mitch Parker, Indiana University Health’s Executive Director of Information Security and Compliance.

Read More »

Phishing Prevention: Don’t Become a Victim of Your Own Success

Posted by Gretel Egan on Jan 10, 2017 4:30:12 PM

Phishing emails in their many forms — spear phishing messages, business email compromise (BEC) and whaling attacks, etc. — remain a preeminent threat to organizations and individuals worldwide. The most viable path to preventing phishing scams from hitting their mark is to utilize a combination of technical safeguards (like spam filters and blacklists) and ongoing end-user security awareness training. Those who downplay the potential benefits of employee security training are forgetting that successful social engineering attacks rely on one common factor: human engagement.

Read More »