knowbe4 — Black Arrow Cyber Consulting

Posts tagged knowbe4

Black Arrow Cyber Threat Intelligence Briefing 26 January 2024

Black Arrow Cyber Threat Intelligence Briefing 26 January 2024:

-Russian Hackers' Breach of Microsoft and Hewlett Packard Corporate Mailboxes is an Identity Threat Detection Wake-up Call

-94% of CISOs are Concerned About Third-Party Cyber Threats, Yet Only 3% Have Started Implementing Security Measures

-Cyber Risks Needs to be Prioritised as a Key Business Risk Says UK Government, as New Cyber Security Governance Code Puts Cyber Risks on Boardroom Agenda

-81% of Security Professionals Say Phishing Is Top Threat

-Ransomware Attacks Cause Significant Psychological Harm

-Breached Password Report Reveals Two Million Compromised Cloud Credentials Used '123456' as Password

-NCSC: UK Intelligence Fears AI will Fuel Ransomware and Exacerbate Cyber Crime

-Cyber Attacks More than Doubled in 2023, so Why Are So Many Firms Still Not Taking Security Seriously, or Why Firms Ignore Vulnerabilities at Their Own Risk

-Historic Data Leak Reveals 26 billion Records: Check What is Exposed

-Boardroom Cyber Expertise Comes Under Scrutiny

-“It is a whole new bar”: Months Left for Applicable Firms to Prepare for New EU Cyber Security Rules

-Ransomware Attacks Break Records In 2023: The Number of Victims Rose By 128%

Black Arrow AdminJanuary 28, 2024hpe, hp, hewlett packard enterprises, hewlett packard, sharepoint, rusi, royal united services institute, moab, mother of all breaches, nis2, dora, digital operational resilience act, conti, royal cyber, medibank, kasseika, bianlian, teamviewer, black basta, riksbank, north face, supreeme, vans, vf corp, akira, tietoevry, lockbit, loandepot, subway, veoilia north, aercap, equilend, knowbe4, trezor, chatgpt, ta866, inhospitality, blackwood apt, systembc, sec, securities exchange commission, breachforums, jason's deli, 23adnme, coventry, metacrime, barracuda, 3am, panorays, specops, outlookm, eu ai, ring, vmware, midnight blizzard, apt29, solarwinds, starcruft, crowdstrikem, minst sandstorm, ivanti, atlassian, cisco, goanywhere mft, parrot, mozilla, webkit, fortra, cloudflare, microsoft, black arrow cyber, black arrow, threat intelligence, osint, ncsc, national cyber security centre, cpni, mi5, gchq, cert, nca, national crime agency, europol, interpol, enisa, nato, cyber, information security, it security, cyber warfare, russia, north korea, china, iran

Black Arrow Cyber Threat Briefing 29 September 2023

Black Arrow Cyber Threat Intelligence Briefing 29 September 2023:

-Ransomware Groups Are Shifting Their Focus Away From Larger Targets

-Cover-ups Still the Norm as Half of Cyber Attacks go Unreported

-Reported Cyber Security Breaches Increase Threefold for Financial Services Firms

-Attacks on SME’s Surged in The First Half of 2023

-The CISO Carousel and Its Effect on Enterprise Cyber Security

-Bermuda Struggles to Recover from Ransomware Attack

-Businesses Remain Unprepared Despite Cyber Threats Remaining a Top Concern

-Business Leaders More Anxious About Ransomware Than Recession as Tally from One Attack Alone Surpasses 2,000 Victim Organisations

-Hotel Hackers Redirect Guests to Fake Booking[.]com Site in Major Phishing Campaign

-Cyber Leaders Worry That AI Will Overwhelm Cyber Defences

-Boards Still Lack Cyber Security Expertise

-4 Legal Surprises You May Encounter After a Cyber Security Incident

Black Arrow AdminOctober 1, 2023turla, budworm, securities exchange permission, x, twitter, culturestreak, ntt docomo, internet security alliance, national association of corporate directors, nacd, trend micro, lockbit, cl0p, clop, black cat, kaspersky, bermuda, bermudan, moveit, booking.com, shadow syndicate, sony, mgm, caesars, vmware, conti, akira, dallas, may royal, alphy, clarion, leekes, johnson, atlascross, outlook, av scan, bard, gozi, gitlab, deadglyph, bbtok, zenrat, bitwarden, evilbamboo, ios 17, ios17, xenomorph, predator, darkweb, amazon alexa, british charities, air canada, clearinghouse, born, nft, mixin, okta, online sfatey bill, sec, delete act, apt29, scottish tory, blacktech, libwebp, firefox 118, openfire, sonoma, space force, knowbe4, google, google chrome, mozilla, firefox, thunderbird, black arrow cyber, black arrow, threat intelligence, osint, ncsc, national cyber security centre, cpni, mi5, gchq, cert, nca, national crime agency, europol, interpol, enisa, nato, cyber, information security, it security, cyber warfare, russia, north korea, china, iran

Black Arrow Cyber Threat Briefing 15 September 2023

Black Arrow Cyber Threat Intelligence Briefing 15 September 2023:

-Overconfident Organisations Prone to Cyber Breaches

-Board Members Struggling to Understand Cyber Risks

-Cyber Criminals are Targeting Top Executives and Could be Using Sensitive Information to Extort Them

-Cyber Attacks Reach Fever Pitch in Q2 2023

-Ransomware Attacks Hit Record Levels in UK as More Companies Fail to Tackle Growing Threats

-Microsoft Warns of More Attacks as Ransomware Spreads Through Teams Phishing

-Europol - Financial Crime Makes “Billions” and Impacts “Millions”

-Almost One in Three Parents Have Never Spoken to Their Children About Cyber Security

-Hackers are Dropping USB Drives Outside Buildings to Target Networks

-Data Theft is Now the No. 1 Cyber Security Threat Keeping Execs Awake at Night

-If You Didn’t Change Your Passwords After the LastPass Data Breach, Do It Now

-Cloud Vulnerabilities Surge Nearly 200% as Cloud Credentials Become the New Hot Ticket on the Dark Web

Black Arrow AdminSeptember 17, 2023teams, mgm, ico, information commissioners office, ibm, palo alto networks, pwc, csfi, knowbe4, savanti, 3am, webp, cuba ransomware, rhysida, sec, security exchange commission, ceasars, greater manchester police, save the children, shell, bg group, moveit, dutch fa, google looker, agent tesla, originbotnet, redline clipper, w3ll, associated press stylebook, chatgpt, akamai, telegram, yukon, nunavut, coop, wyze, lastpass, dymocks, capita, airbus, webex, lazarus, coinex, cryptoqueen, trickbot, conti, kubernetes, openssl, wiki-eve, musk, starlink, myanmar, ethnic militia, ooda, adobe, notepad++, rocketmq, metastealer, bruschetta-board, sophos, black arrow cyber, black arrow, threat intelligence, osint, ncsc, national cyber security centre, cpni, mi5, gchq, cert, nca, national crime agency, europol, interpol, enisa, nato, cyber, information security, it security, cyber warfare, russia, north korea, china, iran

Black Arrow Cyber Threat Briefing 28th July 2023

Black Arrow Cyber Threat Briefing 28 July 2023:

-Half of UK businesses Struggle to Fill Cyber Security Skills Gap as Companies Encounter Months-long Delays in Filling Critical Security Positions

-Deloitte Joins fellow Big Four MOVEit victims PWC, EY as MOVEit Victims Exceeds 500

-Why Cyber Security Should Be Part of Your ESG Strategy

-Lawyers Take Frontline Role in Business Response to Cyber Attacks

-Organisations Face Record $4.5M Per Data Breach Incident

-Cryptojacking Soars as Cyber Attacks Diversify

-Ransomware Attacks Skyrocket in 2023

-Blocking Access to ChatGPT is a Short-Term Solution to Mitigate AI Risk

-Protect Your Data Like Your Reputation Depends on It (Because it Does)

-Why CISOs Should Get Involved with Cyber Insurance Negotiation

-Companies Must Have Corporate Cyber Security Experts, SEC Says

-Over 400,000 Corporate Credentials Stolen by Info-stealing Malware

Black Arrow AdminJuly 30, 2023outlook, metabase bi, apache openmeetings, cve-2023-3519, mysterious elephant, wyden, wuhan earthquake center, ib co, mastadon, novel, booz allen, norton motorcycles, alphapo, axis, anonymous sudan, hotrat, realst, fin8, intel, un security council, price waterhouse cooper, ibm cost of a data breach report, clop, dsit, moveit, pwc, ey, deloitte, cl0p, esg, iso 27001, sophos state of ransomware 2023, gdpr, ibm, cryptojacking, cryptomining, chainalysis, chatgpt, securities and exchange commission, sec, info-stealing, salesforce, google cloud, aws, openai, google ads, nitrogen, coveware, akira, cynthia kaiser, alphv, yahama, dhl, microsoft cloud, microsoft key, knowbe4, linkedin, vec, fraudgpt, meta, whitehouse, decoy dog, rust, lazarus, p2pinfect worm, asyncrat, socksescort, spyhide, mirai botnet, zyxel, anonumous sudan, peleton, defender, capita, virustotal, nato, tampa general hospital, suzuki, breachforums, breach forums database, johns hopkins, macos malware, wormhole, jumpcloud, nhs ambulance trust, opsec, wiz, zenbleed, ubuntu, linux, shadow it, imessage, facetime, openssh, cisa, stanford, amazon, alexa, ryanair, killnet, andorid, beijing, group ib, netscaler, github, google zero-days, cvss 4.0, windows xp, citrix, shadowserver, ivanti, mobileiron, mikrotik, openmeetings, vmware, zen2 processors, python, windows 10, atlassian, bamboo, zimbra, wordpress, flipperzero, google chrome, europol iocta, tetra, black arrow cyber, black arrow, threat intelligence, osint, ncsc, national cyber security centre, cpni, mi5, gchq, cert, nca, national crime agency, europol, interpol, enisa, cyber, information security, it security, cyber warfare, russia, north korea, china, iran

Black Arrow Cyber Threat Briefing 23rd June 2023

Black Arrow Cyber Threat Briefing 23 June 2023:

-How the MOVEit Breach Shows Hackers' Interest in Corporate File Transfer Tools

-Attackers Discovering Exposed Cloud Assets Within Minutes

-Majority of Users Neglect Best Password Practices

-One in Three Workers Susceptible to Phishing

-Ransomware Misconceptions Abound, to the Benefit of Attackers

-Threat Actors Scale and Commoditise Uncommon Tools and Techniques

-Goodbyes are Difficult, IT Offboarding Processes Make Them Harder

-Security Budget Hikes are Missing the Mark, CISOs Say

-Understanding Cyber Resilience: Building a Holistic Approach to Cyber Security

-Emerging Ransomware Group 8Base Releasing Data on SMBs Globally

-Cyber Security Industry Still Fighting to Recruit and Retain Talent

-Financial Firms to Build Resilience in Face of Growing Cyber-Threats

-Fulfilling Expected SEC Requirements for Cyber Security Expertise at Board Level

Black Arrow AdminJune 25, 2023moveit, accelion, fortra, dropbox, wetransfer, proofpoint, github, google workspace, slack, okta, 8base, cbest, knowbe4, sec, dora, infosecurityeurope, pwc, bbc, ba, avast, norton, sophos, cisa, fbi, ey, blackcat, adur, worthing, ups, chatgpt, onlyfans, diicot, condi, 3cx, reddit, capita, western digital, megaupload, asus, zyxel, chrome, trellix, lenovo, securities and exchange commission, rorschach, university of manchester, manchester university, usda, joe biden, rdstealer, mystic stealer, apt37, blacklotus, scarcruft, flea, chameldoh, gravityrat, apple, android, mirai, zeeland, pet feeders, us military, mondelez, sap, telegram, blockchain, influencers, social media, amazon, amazon s3, shadow it, intel, ssh, tsunami botnet, lockbit, killnet, gru, apt28, doj, us department of justice, cadet blizzard, apt15, red eyes, vmware, vmware vrealize, gifshell, wordpress, azure, gigabyte motherboards, triangulation spyware, repojacking, black arrow cyber, black arrow, threat intelligence, osint, ncsc, national cyber security centre, cpni, mi5, gchq, cert, nca, national crime agency, europol, interpol, enisa, nato, cyber, information security, it security, cyber warfare, russia, north korea, china, iran

Black Arrow Cyber Threat Briefing 21 April 2023

Black Arrow Cyber Threat Briefing 21 April 2023:

-March 2023 Broke Ransomware Attack Records with a 91% Increase from the Previous Month

-Organisations Overwhelmed with Cyber Security Alerts, Threats and Attack Surfaces

-One in Three Businesses Faced Cyber Attacks Last Year

-Why Your Anti-Fraud, Identity & Cybersecurity Efforts Should Be Merged

-Tight Budgets and Burnout Push Enterprises to Outsource Cyber Security

-Complex 8 Character Passwords Can Be Cracked in as Little as 5 Minutes

-83% of Organizations Paid Up in Ransomware Attacks

-Security is a Revenue Booster, Not a Cost Centre

-EX-CEO Gets Prison Sentence for Bad Security

-Warning From UK Cyber Agency for a New ‘Class’ of Russian Hackers

-KnowBe4 Q1 Phishing Report Reveals IT and Online Services Emails Drive Dangerous Attack Trend

-Outsourcing Group Capita Admits Customer Data May Have Been Breached During Cyber-Attack

-Outdated Cyber Security Practices Leave Door Open for Criminals

-Quantifying cyber risk vital for business survival

-Recycled Network Devices Exposing Corporate Secrets

Black Arrow AdminApril 23, 2023ncc group, fortra, goanywhere mft, goanywhere, clop, cobalt, hive, chatgpt, knowbe4, capita, vice society, action1 rmm, darktrace, rtm locker, western digital, ncr, blackcat, alphv, lockbit, apple, mac, commscope, black basta, bablock, medusa, point32health, play, qbot, conti, fin7, chameleon, cisco, youtube, google drive, raspberry robin, macstealer, aukill, android, nso, zaraza, hikvision, nokia, five eye, volvo, rheinmetall, kodi, jack teixeira, kaspersky, lloyds, insursec, operation cookie monster, ftc, 3cx, lazarus, spectre, alibaba, facebook, instagram, linkedin, truthgpt, solarwinds, quadream, apt41, muddywater, mint sandstorm, killnet, javascript, wordpress, cyberspace solarium commission, black arrow cyber, black arrow, threat intelligence, osint, ncsc, national cyber security centre, cpni, mi5, gchq, cert, nca, national crime agency, europol, interpol, enisa, nato, cyber, information security, it security, cyber warfare

Black Arrow Cyber Threat Briefing 29 July 2022

-1 in 3 Employees Don’t Understand Why Cyber Security Is Important

-As Companies Calculate Cyber Risk, The Right Data Makes a Big Difference

-Only 25% Of Organizations Consider Their Biggest Threat to Be from Inside the Business

-The Global Average Cost of a Data Breach Reaches an All-Time High of $4.35 Million

-Race Against Time: Hackers Start Hunting for Victims Just 15 Minutes After a Bug Is Disclosed

-Ransomware-as-a-Service Groups Forced to Change Tack as Payments Decline

-Phishers Targeted Financial Services Most During H1 2022

-HR Emails Dupe Employees the Most – KnowBe4 research reveals

-84% Of Organizations Experienced an Identity-Related Breach In The Past 18 Months

-Economic Downturn Raises Risk of Insiders Going Rogue

-5 Trends Making Cyber Security Threats Riskier and More Expensive

-Ransomware: Publicly Reported Incidents Are Only the Tip of the Iceberg

Black Arrow AdminJuly 31, 2022tessian, coveware, us sec, securities and exchange commission, gurucul, ibm, ibm security, ponemon institute, proxyshell, proxylogon, apache, log4j, log4shell, zoho manageengine, facebook, orange, credit agricole, whatsapp, knowbe4, sapio, unit 42, hiscox, lockbit, lockbit 2.0, wordfly, blackmatter, italy, callback, interplanetary, bofa, citi, wells fargo, robin banks, cisco, uefi, npm, discord, cosmicstrand, qbot, gootkit, dsirf, qakbot, roaming mantis, dahua, t-mobile, ducktail, snapchat, nft, audius, akamai, kansas, ssh, cytrox, samba, filewave, drupal, libreoffice, prestashop, grails, adobe, knotweed, black arrow, black arrow cyber, cyber experts, cyber consulting, cyber investigators, cyber, cyber security, infosec, information security, threat intel, threat intelligence, threat report, business risk, business risks, cyber risk management, risk management, cyber risk, cyber security risk, cyber risk assessment, risk assessment, cyber incident response, cyber incident response team, cyber emergency response, computer incident response, computer emergency response, emergency response, subject matter experts, it security, trusted adviser, trusted partner, vciso, virtual chief information security officer, viso, information security officer, security executive on demand, security as a service, security on demand, cyber security strategy, cyber strategy, cyber kill chain, security as a a service, security-as-a-service, british intelligence, national security, uk national security, military intelligence, mod, ministry of defence, police, law enforcement, ftse 100, ftse100, offshore financial services, gfsc, guernsey financial services commission, fortune 500, fortune500, ncsc, national cyber security centre, cpni, mi5, gchq, cert, cert-uk, cert.gg, five eyes, cyber guernsey, guernsey cyber, nca, national crime agency, europol, interpol, enisa, nato, australian cyber security centre, acsc, canadian centre for cyber security, cccs, new zealand national cyber security centre, ncsc-nz, cybersecurity and infrastructure agency, cisa, national security administration, nsa, federal bureau of investigation, fbi, central intelligence agency, cia, department of homeland security, dhs, secret service, odpa, office of the data protection authority, ico, information commissioners office, isc2, isaca, sme, smb, small business, medium sized business, accounting, law firms, legal sector, academia, education, schools, retail, maritime, aviation, aerospace, transport, defence, defense, defence contractor, cni, scada, ics, industrial control systems, operational technology, ot, healthcare, medical, pharma, pharmaceuticals, pci-dss, payment card, payment card industry, estate agents, estate agency, child safety, parental controls, regulated firms, financial services, critical infrastructure, mergers and acquisitions, manda, m&a, research and development, r&d, intellectual property, ip, telecoms, telecommunications, executives, executive, insiders, insider threat, staff, users, end users, senior executives, c-suite, boards, human element, human centric security, human centric, weakest link, boardroom, board room, ciso, ceo, cto, cio, cfo, nist, cyber essentials, cyber essentials plus, iasme, iasme governance, iasme gold, iso 27001, iso27001, cyber killchain, mitre, mitre att&ck, cis, cis controls, cap1753, cap 1753, caa, civil aviation authority, fraud investigations, forensics, cyber forensics, forensic investigations, expert witness, technical investigations, apt, china, russia, iran, north korea, nation state actors, gru, svr, fsb, ransomware, bec, business email compromise, email, social engineering, phishing, spear-phishing, whaling, credentials, credential stuffing, account takeover, account takeovers, ato, extortion, blackmail, denial of service, distributed denial of service, dos, ddos, rddos, botnet, cryptomining, cryptojacking, rootkits, rootkit, shadow it, remote code execution, rce, zero-day, malware, vishing, smishing, heat attacks, heat, highly evasive adaptive threats, rat, remote access trojan, cyber bullying, cyber stalking, sextortion, blockchain, vulnerability, vulnerabilities, vulnerability management, patch management, patching, kev, kevs, known exploited vulnerabilities, insurance, cyber insurance, incident response, incident response plan, disaster recovery, disaster recovery plan, drp, business continuity, business continuity planning, business continuity plan, training, education and awareness training, awareness, exercising, exercise, proctored exercise, facilitated exercise, simulations, gap analysis, cyber gap analysis, board upskilling, senior executive cyber risk and governance, senior executive cyber risk and governance workshops, technical assessment, technical analysis, penetration testing, pentesting, physical penetration testing, tas, targeted attack simulations, iso 27001 iso27001, technical IT security, iam, idam, identity and access management, digital transformation, change management, hackers, criminals, cyber criminals, cyber warfare, espionage, cyber espionage, fraudsters, fraud, scammers, scams, scam, organised crime, criminal actor, criminal actors, terrorism, terrorists, cyber terrorists, cyber terrorism, supply chain, third parties, mssp, msp, managed service provider, managed security service provider, external it provider, internal it, apple, mac, macos, ios, iphone, android, microsoft, windows, cloud, saas, iaas, paas, dark web, databases, encryption, cryptocurrencies, iot, ai, endpoint protection, antivirus, antimalware, wfh, work from home, dns, email gateway, gdpr, online, open source, attack surface, edr, mdr, xdr, monitoring and detection, andorra, anguilla, antigua and barbuda, aruba, bahamas, barbados, bermuda, british virgin islands, bvi, cayman islands, channel islands, ci, cyprus, dominica, dublin, dutch antilles, gibraltar, grenada, guernsey, isle of man, jersey, liechtenstein, london, luxembourg, malta, monaco, netherlands antilles, philippines, st kitts and nevis, st lucia, st vincent and grenadines, switzerland, turks and caicos islands, scotland, edinburgh, glasgow, bristol, southampton, portsmouth, exeter, europe, offshore, south west, south east, uk, england, great britain, british isles, germany, south africa

Black Arrow Cyber Threat Briefing 15 July 2022

Black Arrow Cyber Threat Briefing 15 July 2022:

-10,000 Organisations Targeted by Phishing Attack That Bypasses Multi-Factor Authentication

-Businesses Are Adding More Endpoints, But Can’t Manage Them All

-Ransomware Activity Resurges in Q2

-North Korean Hackers Targeting Small and Midsize Businesses with H0lyGh0st Ransomware

-One-Third of Users Without Security Awareness Training Click on Phishing URLs

-Ransomware Scourge Drives Price Hikes in Cyber Insurance

-Conventional Cyber Security Approaches Are Falling Short

-Virtual CISOs Are the Best Defence Against Accelerating Cyber Risks

-Firms Not Planning for Supply Chain Threats

-Data Breach Lawsuit: Will IT Service Provider Capgemini Owe Damages?

-Security Culture: Fear of Cyber Warfare Driving Initiatives

-Cryptocurrency 'Mixers' See Record Transactions from Sanctioned Actors

-Online Payment Fraud Expected to Cost $343B Over Next 5 Years

Black Arrow AdminJuly 17, 2022ukraine, mitm, aitm, modishka, ponemon, ponemon institute, lockbit, zcash, alphv, dev-530, .onion, knowbe4, panaseer, tata consulting, capgemini, razer, infosecurity europe, chainalysis, mixers, hydra, lazarus, us treasury, office of foreign assets control, blackcat, lilith, redalert, omega, h0lygh0st, holyghost, brute ratel, uniswap, paypal, wordpress, quickbooks, tesla, tesla model y, honda, axie infinity, joshua schulte, mantis, netwrix, facebook, disney, tiktok, lithuania, log4j, elastix, elastix voip, digium voip, digium phone, retbleed, spectre, amd, intel, kubernetes, lenovo, uefi, lagarde, christine lagarde, ecb, european central bank, black arrow, black arrow cyber, cyber experts, cyber consulting, cyber investigators, cyber, cyber security, infosec, information security, threat intel, threat intelligence, threat report, business risk, business risks, cyber risk management, risk management, cyber risk, cyber security risk, cyber risk assessment, risk assessment, cyber incident response, cyber incident response team, cyber emergency response, computer incident response, computer emergency response, emergency response, subject matter experts, it security, trusted adviser, trusted partner, vciso, virtual chief information security officer, viso, information security officer, security executive on demand, security as a service, security on demand, cyber security strategy, cyber strategy, cyber kill chain, security as a a service, security-as-a-service, british intelligence, national security, uk national security, military intelligence, mod, ministry of defence, police, law enforcement, ftse 100, ftse100, offshore financial services, gfsc, guernsey financial services commission, fortune 500, fortune500, ncsc, national cyber security centre, cpni, mi5, gchq, cert, cert-uk, cert.gg, five eyes, cyber guernsey, guernsey cyber, nca, national crime agency, europol, interpol, enisa, nato, australian cyber security centre, acsc, canadian centre for cyber security, cccs, new zealand national cyber security centre, ncsc-nz, cybersecurity and infrastructure agency, cisa, national security administration, nsa, federal bureau of investigation, fbi, central intelligence agency, cia, department of homeland security, dhs, secret service, odpa, office of the data protection authority, ico, information commissioners office, isc2, isaca, sme, smb, small business, medium sized business, accounting, law firms, legal sector, academia, education, schools, retail, maritime, aviation, aerospace, transport, defence, defense, defence contractor, cni, scada, ics, industrial control systems, operational technology, ot, healthcare, medical, pharma, pharmaceuticals, pci-dss, payment card, payment card industry, estate agents, estate agency, child safety, parental controls, regulated firms, financial services, critical infrastructure, mergers and acquisitions, manda, m&a, research and development, r&d, intellectual property, ip, telecoms, telecommunications, executives, executive, insiders, insider threat, staff, users, end users, senior executives, c-suite, boards, human element, human centric security, human centric, weakest link, boardroom, board room, ciso, ceo, cto, cio, nist, cyber essentials, cyber essentials plus, iasme, iasme governance, iasme gold, iso 27001, iso27001, cyber killchain, mitre, mitre att&ck, cis, cis controls, cap1753, cap 1753, caa, civil aviation authority, fraud investigations, forensics, cyber forensics, forensic investigations, expert witness, technical investigations, apt, china, russia, iran, north korea, nation state actors, ransomware, bec, business email compromise, email, social engineering, phishing, spear-phishing, whaling, credentials, credential stuffing, account takeover, account takeovers, ato, extortion, blackmail, denial of service, distributed denial of service, dos, ddos, rddos, botnet, cryptomining, cryptojacking, rootkits, rootkit, shadow it, remote code execution, rce, zero-day, malware, vishing, smishing, heat attacks, heat, highly evasive adaptive threats, rat, remote access trojan, cyber bullying, cyber stalking, sextortion, blockchain, vulnerability, vulnerabilities, vulnerability management, patch management, patching, kev, kevs, known exploited vulnerabilities, insurance, cyber insurance, incident response, incident response plan, disaster recovery, disaster recovery plan, drp, business continuity, business continuity planning, business continuity plan, training, education and awareness training, awareness, exercising, exercise, proctored exercise, facilitated exercise, simulations, gap analysis, cyber gap analysis, board upskilling, senior executive cyber risk and governance, senior executive cyber risk and governance workshops, technical assessment, technical analysis, penetration testing, pentesting, physical penetration testing, tas, targeted attack simulations, iso 27001 iso27001, technical IT security, iam, idam, identity and access management, digital transformation, change management, hackers, criminals, cyber criminals, cyber warfare, espionage, cyber espionage, fraudsters, fraud, scammers, scams, scam, organised crime, criminal actor, criminal actors, terrorism, terrorists, cyber terrorists, cyber terrorism, supply chain, third parties, mssp, msp, managed service provider, managed security service provider, external it provider, internal it, apple, mac, macos, ios, iphone, android, microsoft, windows, cloud, saas, iaas, paas, dark web, databases, encryption, cryptocurrencies, iot, ai, endpoint protection, antivirus, antimalware, wfh, work from home, dns, email gateway, gdpr, online, open source, attack surface, edr, mdr, xdr, monitoring and detection andorra, anguilla, antigua and barbuda, aruba, bahamas, barbados, bermuda, british virgin islands, bvi, cayman islands, channel islands, ci, cyprus, dominica, dublin, dutch antilles, gibraltar, grenada, guernsey, isle of man, jersey, liechtenstein, london, luxembourg, malta, monaco, netherlands antilles, philippines, st kitts and nevis, st lucia, st vincent and grenadines, switzerland, turks and caicos islands, scotland, edinburgh, glasgow, bristol, southampton, portsmouth, exeter, europe, offshore, south west, south east, uk, england, great britain, british isles

Blog