News and Insights
Get the latest Click Armor news and expert insights to help you fight phishing, social engineering scams and other risks related to human behaviors.
The perfect storm of risks facing remote workers
Recently CPO Magazine published an article I wrote entitled "Engaging Remote Workers to Defend Information and Systems With Gamification". In that article, I laid out the events that have led to the risky situation in which many businesses find themselves. Here are...
Can I Be Phished? Ep. 3 – Unboxing a phishing email from the World Health Organization with Shawn Tuma
In our third episode of Can I Be Phished? we welcome Shawn Tuma, a data privacy and cyber security lawyer at Spencer Fane law firm in Houston, Texas. Shawn helps me unbox another phishing message that is offering something enticing from the World Health Organization....
What is gamification?
While some people assert that there is a single definition (in their mind) of what gamification is, I’ve actually learned that there are several definitions for it. So, for the purposes of awareness, and specifically cyber security awareness, I like to keep it simple....
Ethical Employee Vulnerability Management – The pitfalls of phishing assessments
Security professionals have tested networks to identify vulnerabilities for many years now. It’s a common practice called “Vulnerability Analysis and Penetration Testing”, or sometimes “Ethical Hacking”. The word ethical in this context is interesting, as it indicates...
What should I be doing for Cyber Security Awareness Month?
It is October 1, 2020, and as you may know, October is always Cyber Security Awareness Month, and I have a confession to make. For many years as a security consultant and security awareness trainer, October always crept up on me. So, I sometimes didn't have much...
“Home Alone”: Click Armor Launches Gamified Cyber Security Awareness Training for Remote Workforces
Solution helps remote workers protect business and personal information from attacks
Why security awareness training is different from task-based training
If you’ve ever taken a security awareness training course, aside from a phishing assessment that tests your skill at avoiding email attacks, you may not have noticed something that’s really pretty obvious. Security awareness training is typically delivered using a...
The pitfalls of compliance-based security awareness training
What I call Off-the-shelf “compliance-focused” security awareness programs are designed to be a “one-size-fits all” solution that is quick to deploy to all staff. However, the problem I often see with these solutions is that they usually include content that is...
Top 3 reasons why employees need security awareness training more than once a year
Many people ask, “Why do employees need security awareness training more than once a year?” In this 2 minute video, Scott Wright explains the top 3 reasons why annual awareness training is a waste of time and money.
Can I Be Phished? Episode 2 – Unboxing an “Imminent Expiry” phishing message
In our second episode of Can I Be Phished? we welcome Dave Ockwell-Jenner, the VP of Information Security at Arctic Wolf. Dave helps me unbox another phishing message that is warning me that my online banking service will expire soon. NOTE: Due to the visual nature of...
Click Armor Announces Game-based Social Engineering Awareness Training
Solution helps organizations prevent social engineering attacks which can lead to costly data breaches
The phone scam that should cause you to have reservations about your reservations
Caller ID is not a reliable method of authentication when scammers can spoof any number they like. People with reservations for High Tea at The Ritz discovered this as a result of an attack that exploited information about their reservations.
One ransomware infection impacted many operational services at Garmin
On July 23, 2020, a ransomware infection struck Garmin, the electronics company that produces fitness trackers, GPS traffic navigation systems and aircraft avionics and information systems. The malware locked up its fitness tracking services and customer service...
How did teenagers access Twitter’s user admin tools with a few hours of social engineering?
With the high profile social engineering hack of Twitter, it’s a good time to review why employees are so vulnerable, and what can be done about it.
Announcing the “Can I Be Phished?” podcast – unboxing the most common attacks!
Click Armor is proud to announce that we have published our first episode of the "Can I Be Phished?" podcast, where we take a closer look at some of the most common and dangerous phishing attacks and scams. The podcast is available on Youtube for video and on popular...
