News and Insights
Get the latest Click Armor news and expert insights to help you fight phishing, social engineering scams and other risks related to human behaviors.
Why traditional security awareness training fails to engage employees to learn
If you’ve ever taken an online security awareness or compliance course, you’ll now that it can be incredibly dry. Fun videos and micro-learning can make content more consumable and entertaining for employees, but if your training is not immersing people into an...
Revitalizing your security awareness program in 2022
So, you're glad to put 2021 behind you, and start a new calendar year. Maybe you've even made some resolutions on both the personal and business side. One of those things might just be "To do something about our stale security awareness program."What will it take to...
Stale awareness programs are an opportunity for service providers to show leadership
During my 10 years of experience in security awareness and compliance training, I’ve spoken to hundreds of customers and thousands of end-users. It can be pretty obvious when an awareness training program isn’t working or providing value, but it’s not so easy to...
Can I Be Phished? Ep. 8 – Zoom Zinger with Jeff Ton
This episode features Jeff Ton, speaker, explorer and author of "Amplify Your Value" and "Amplify Your Job Search". Jeff has some great tips and stories for MSPs and IT professionals who want to up their game. Try the "CAN I BE PHISHED?" online self-assessment game to...
The Phishing Assessment Optimizer™ helps avoid frustrations, distractions, and PR nightmares
Most of us have either been on the giving or receiving end of a “phishing assessment” (also called phishing tests, mock phishing exercises, or phishing simulations). I have run live email phishing assessments for many different customers in the past 10 years, and have...
Employees need realistic phishing simulations to break the kill chain of cyberattacks
Businesses should pay attention to the joint advisory from the Cybersecurity and Infrastructure Security Agency (CISA) in the USA that highlights a growing pattern of newly announced malware infections that have impacted municipal water and wastewater systems (WWS)...
Your organization needs you to be a Cyber Security Champion
If you’re interested in cyber security in any way, you can easily become a Cyber Security Champion within your team, and you should. Wouldn’t it be great to be the “go-to” person for questions about security from non-technical team members? Regardless of your job...
Cyber stories for executives: Using the Guntrader data breach to help get executive buy-in for cyber security investment
TL:DR – Anyone trying to convince management (internally or externally) of the need to invest in cyber security must start by highlighting relevant examples of risk management failures that appeal to both their logical reasoning and their “croc brains” on the...
What you should learn from data breach lawsuits like this one
When an organization, especially an insurance company, is hit with a law suit related to a data breach, you can expect that there will be some details published about the allegations. This can help us understand the possible causes and impacts from a data breach. The...
Sneaky Microsoft Office phishing attachments effectively trick users into running malicious macros
Most of us have learned not to enable macros in unexpected Microsoft Office documents. But there is a new malware attack that uses some less obvious social engineering tactics to get people to allow macros to run.Attackers are looking for more effective attacks, as...
Three ways companies suffering breaches can reduce risks to their customers
On March 1, 2021 I wrote a short article about a data breach most people have never heard of. The victim was a company called DriveSure, which provides software to car dealerships that aims to help with customer loyalty through intelligent use of service records and...
What to tell frightened customers and end users about the Kaseya VSA ransomware breach
Hopefully your customers weren’t impacted by the recent Kaseya VSA ransomware incident that caused massive outages for many MSPs’ customers. There’s a good chance that your customers and end-users will be wondering if they are still at risk. Even if you don’t use...
How Click Armor’s thought-provoking interactivity engages end-users to learn about cyber security and compliance risks
You’ve probably experienced it yourself when going through an online course that isn’t one of your personal top priorities. You drift off as you scan a wall of text and click on the “Next” button… Or you look for the “fast forward” button on the cute video that seems...
How can small utilities strengthen their critical gap in cyber security awareness?
Imagine being a manager responsible for delivering the most basic necessities of life to an entire town or village full of people, many of whom you know personally. Now imagine that you have not been given the funds nor the mandate required to ensure that very capable...
Bundling security awareness in MSP services is like getting seatbelts with your new car
If cars didn’t have seatbelts built into them when they are purchased, how many people do you think would buy them “a la carte”? My guess is, not very many. But we all expect seatbelts to be included in every car that’s sold today. This is analogous to how cyber...
