Hackers exploit humans, and most if not all cyberattacks will have a social engineering component to them. In most cases this is phishing: hackers sending a malicious email with a link or attachment meant to aid the attacker in stealing passwords or installing malware on the target’s computer. Companies have known this for a long time.
We have for years tried to combat social engineering with security awareness training. Although it can be effective, in many cases the training has only limited effect, or only short-term effect. We believe this is because the focus of the training is often wrong: we are trying to train people to act as machines.
Cybehave has developed a different approach to security awareness training. We have built this on years of experience with risk assessments in complex environments, combining human factors knowledge and cognitive science with threat intelligence and technical security controls. Based on this, we have created a unique approach to building positive security behaviors that have lasting and significant impact on cybersecurity performance of organizations.
Contact us today for a no-strings-attached discussion on security awareness training built on human factors knowledge!