Subscribe
Subscribe
A Successful Security Strategy Is All About Relationships. Here’s How to Build Them.
Security efforts are not limited to security teams. High impact strategies need to engage everyone from employees to the board of execs, DevOps teams and IT. Learn how how to become not just an effective partner but a trusted advisor across an organization.
https://www.humanlayersecurity.com/blog/relationship-framework-for-security-leaders/
Your Legacy Phishing Solution Isn’t Enough to Protect Your Organization
CISO Josh Yavor explains why legacy phishing solutions aren't effective in preventing successful attacks, and what you can do about it.
https://www.humanlayersecurity.com/blog/human-layer-security-vs-legacy-solutions/
9 Things I’ve Learned Writing Phishing Emails
Ethical hacker, Craig Hays, explains why copywriting, timing, and context are all essential "ingredients" in crafting a phishing attack.
https://www.humanlayersecurity.com/blog/9-things-i-learned-writing-phishing-emails/
Employee Burnout Will Probably Cause Your Next Data Breach
Understanding how stress impacts cybersecurity behaviors could significantly reduce the chances of people’s mistakes compromising company’s security.
https://www.humanlayersecurity.com/blog/employee-burnout-causes-breaches/
Stateful Machine Learning is Our Best (And Only) Bet
Traditional machine learning methods that are used to detect threats at the machine layer aren’t equipped to account for the complexities of human relationships and behaviors across businesses over time. There is no concept of “state” — the additional variable that makes human-layer security problems so complex.
https://www.humanlayersecurity.com/blog/stateful-machine-learning/
How Easy Is It to Phish?
You don't have to be tech savvy to become a "hacker". This blog outlines how to create a phishing campaign, and was designed to help security leaders protect their organizations.
https://www.humanlayersecurity.com/blog/how-to-create-a-phishing-campaign/

Read More

Explore Human Layer Security.

Learn About Our Mission
Explore Me
Read More
Share

Season 1, Episode 7

February 9th, 2021

Hacking humans is easy. Hacking software is not. And that’s why hacking humans is still the easiest way to hack into organizations today and why social engineering type attacks are continually rising.

But how do hackers hack humans? Tim Sadler speaks to Craig Hays, an ethical hacker, to find out . They discuss how attackers select their targets, leverage publicly available information online and craft successful social engineering scams to hack people and their organizations.

Their conversation centers on a recent report from Tessian titled How to Hack a Human – a report in which Craig, along with other ethical hackers within the HackerOne community, contributed to. It’s a must-read for any employee, IT or business leader looking to understand social engineering in more detail. You can find the full report on Tessian website or click here.

Read Craig's Full Article