Watch NINJIO’s Core-4 for CSAM
October is Cybersecurity Awareness Month, an ideal time to remind all employees that they have an indispensable role to play in preventing cyberattacks. Despite the fact that the vast majority of breaches involve a human element, many employees believe cybersecurity falls outside their purview. This dangerous misconception is due to a lack of cybersecurity awareness, which is why companies should take the opportunity to educate employees.
With that goal in mind, we’ve outlined the top four subjects companies should focus on to demonstrate just how destructive cyberattacks can be—and we’ve put together our Core-4 list of NINJIO episodes that teach employees how to address them:
Business Email Compromise (BEC)
BEC refers to cybercriminals who break into a victim’s email account and use this access to deceive and manipulate employees, company leaders, or partners. For example, a cyber criminal could hack into a CEO’s account and demand an immediate wire payment from the accounting department, or convince employees to click on links or attachments that install malware on their devices.
Core-4 Episode: “A Compromising Crash”
Phishing
Of all the social engineering breaches tracked in Verizon’s 2022 DBIR, phishing was the top action variety. Beyond the fact that phishing is one of the most common methods used to scam individual consumers, it’s also a highly effective entry point for hackers who want to infiltrate a company. Hackers can use a single compromised device to access an entire network. Core-4 Episode: “Homephished”
Credential Security
Stolen credentials are right behind phishing in BEC incidents – and in many cases, cybercriminals use phishing to acquire credentials that they later use for other attacks. In many sectors, credentials are one of the top types of data breached, and they’re often part of multi-stage attacks (as they allow hackers to access secure systems and initiate new social engineering attacks from the inside).
Core-4 Episode: “See Something, Do Something”
Ransomware & Proactive Cybersecurity Awareness
Several of the largest cyberattacks in history were ransomware attacks: from SolarWinds to NotPetya to Colonial Pipeline. However, employees are still woefully unprepared for ransomware attacks – according to a 2021 survey, 29 percent of employees didn’t even know what ransomware was before their company fell victim to it.
Core-4 Episode: “Safety in Numbers and Letters”
Cybercriminals will always try to exploit gaps in your employees’ knowledge, so it’s your responsibility to fill those gaps and change employee behavior. You can check out the Core-4 for free, all Cybersecurity Awareness Month Long.
