T-minus 1 hour before our Tweet Chat with KnowBe4 goes live! Be sure to follow #AskKB4

Obviously, we've seen all the COVID related stuff. But we've also seen a number of intricate BEC scams going on in Europe. And I predict these will only increase in the next half year #askkb4

A2 Not a particular scam.. but I do notice the bad guys becoming more bold and blatant in their approach. And they don't really need to be inventive (unfortunately). BEC type scams, for instance, have been around for ages and are still the same #askkb4

A3 The state of AI needed to make deepfakes has come a long way. But it is still quite tricky to make a very convincing deepfake easily and quickly. But not impossible. And when there is a lot of money to be made, there are always bad guys that are willing to take a shot at it..

A3 As for voice and text phishing. This is far easier to set up and execute. And since a lot of users still find it hard to determine whether something is a fraudulent text or voice message, there is plenty of opportunities for the bad guys to be successful with this. #askkb4

A3 Since it’s hard to detect deep fakes and voice scams in real-time (not impossible) with technology, you need to get the users involved and trained. #askkb4

A5 Make it where the focus is on rewarding employees for being watchful and alert. Engage with them on the changing situation at work and enable them to actively participate in the security of an organization. #AskKB4

A6 The ‘regular’ 3% or so of the IT budget spend on security won’t be enough. That is for sure. But it depends on the situation what budget would work. Organizations need to be aware they need to reevaluate according to their specific situation. #AskKB4

A7 I think a lot of organizations do value it. But find it hard to execute properly. Therefore, they go for the (easier?) technology angle. Showing them (through data) of the need AND the value in security awareness is the way to go to convince them. #AskKB4

A8 Aligning security culture with the existing values of the overarching company culture works well. It should be a joined effort supported by all. But C-level determines how they want their culture to look like. Thus they should decide the level of security they want. #AskKB4

A9 By asking them about their opinions ons security related issues. Are they aware? How do they feel about security? And how would they react to an incident? Then compare the results to the security posture of your organization through data from your monitoring tools. #AskKB4

A10 Password management can be tough. That’s where password managers come in. Combined with solid MFA, and you're well on your way. There are password-less solutions out there. But I think they have a hard time being accepted. Passwords will be with us for quite a while still.

What the #Oldsmar cyberattack teaches us — The #cyberattack on the Oldsmar, FL, water supply brings to light the need for #cybersecurity assistance at under-resourced critical infrastructure facilities. trib.al/H1vQ4qC Metacurity https://metacurity.com. #CybersecurityTraining

So I've used these services myself. Don't know if my account is involved yet. But this a serious issue. I get you want to test some things.. but please keep it secure next time.. ow.ly/le0v50DNTyn

Pretty cool.. I did a talk for the #DACHStrategyForumCyberandInformationSecurity. And they captured it in this drawing. Great idea!

As with many things.. once you are popular, you become a target. This time is is Clubhouse that has suffered a data breach. ow.ly/AZcq50Emskz

No cheese at your favorite grocery store? Could be because of a ransomware attack that hit their main supplier.. (Article in Dutch.. so Google translate it). ow.ly/1Shn50EmDBM

And the story continues.. Two new serious vulnerabilities in Exchange. Well, back to patching people: msrc.microsoft.com/update-guide/v… msrc.microsoft.com/update-guide/v…

Crypto technology might be considered safe by some.. but the people behind the machine can still be manipulated. decrypt.co/69740/a-crypto…

KnowBe4 Do you wanna go to the premiere in Florida? Go ahead.. I would!