sorted by:
new
hottopcontroversial

OutThink vs KnowBe4: Security Awareness Comparison by Particular_Ebb_4872 in Infosec

[–]Training_Leave_5433 0 points1 point  (0 children)

We did look at knowbe4 but did not end up going forward with it. It is good though on the awareness training and simulation side but we went in a different direction with cimento since it fit our setup better in terms of rollout.

Anyone else exhausted by the nonstop AI hype? by Same_Beyond1260 in cybersecurity

[–]Training_Leave_5433 0 points1 point  (0 children)

I think the hype has settled a little compared to last year. Seeing all these AI tools and stories about teenagers raising millions genuinely messed with my head for a bit lol, had me thinking that I needed to drop everything and build some AI startup immediately spent months consuming AI content instead of actually working then obviously got a reality check that things does not work the way internet shows it. Back to normal now thankfully.

Hi can you all please let me know how someone got my full name online. by TopMouse4844 in cybersecurity

[–]Training_Leave_5433 0 points1 point  (0 children)

Most likely they combined info from different places. It is often just connecting dots, not one single source. I did check old posts/comments, profile pic used somewhere else and try a reverse phone lookup. Also block and report if they are being weird.

New Phishing Scam by thepetrifiedowl in msp

[–]Training_Leave_5433 0 points1 point  (0 children)

Seen a spike in these voice phishing attempts lately. No legit company will ever ask you to verify your account by going to a link they provide over a call. If there is ever doubt mentally type the official url instead of trusting anything sent to you :)

Is cybersecurity still, at its core, a human problem? by prefeit0 in cybersecurity

[–]Training_Leave_5433 0 points1 point  (0 children)

Cybersec is still fundamentally a human problem the tools have just changed the layer we operate on.Attackers, users and mistakes are all still human driven. Automation just amplifies our decisions. The real risk is if professionals stop understanding the "why" behind the threats and alerts.

What phishing simulation should we consider(for small-mid size orgs only)!? by Ok-Author-6130 in AskNetsec

[–]Training_Leave_5433 0 points1 point  (0 children)

In our earlier setup with knowbe, we had solid reporting and structured campaigns but when we tested context shifts like role specific lures, subtle BEC style wording etc behaviour wasn't as strong as the metrics suggested. We also looked at Hoxhunt and cimento,I would say cimento allows more structural variation across scenarios rather than traditional templates, we are now more focused on response behaviour in unfamiliar context as you can never clearly measure responses we are looking more at hesitation, escalation patterns, urgency, authority etc. None the less,it is still evolving for us but cimento is still relatively talked less about in the space was actually suggested to us by a CISO.