New MITRE ATT&CK certification course could boost framework’s adoption
But unusual recertification process must avoid becoming burdensome for busy security professionals.
About SC Media
Security Training, Certification, User Awareness
How, and when, to hand down consequences to employees for breaching security policy
While security leaders often pay with their jobs for lapses that lead to breaches at their companies (think Target and Uber), organizations long have struggled with how to handle everyday employees who step outside the bounds of security protocols.
SANS Institute breach proves anyone can fall victim to a ‘consent phishing’ scam
The security training authority has confirmed to SC Media that an employee was tricked into downloading malicious code, which then caused emails to be automatically forwarded to the attacker.
To reduce security errors, employers must relieve stress and fatigue
Working professionals are blaming stress, time pressure, fatigue and distractions for lapses in safe cyber practices – and current conditions caused by the Covid-19 pandemic may only be exacerbating the problem. According to a newly published research report from Tessian, a survey of 2,000 working professionals in the U.S. and UK found that 43 percent…
Hacking: The Art of Exploitation
This book is truly meaty stuff. It explains in detail what every hacker should know, but more importantly, what every security expert should be aware of so they can take action to avoid being hacked.
