Comprehensive Software Reviews to make better IT decisions
KnowBe4 Releases Machine Learning Module for PhishER Platform
Security awareness and training vendor KnowBe4 has added a machine learning module called PhishML to its existing security orchestration, automation, and response (SOAR) platform, PhishER. PhishER automatically triages emails as they come in and therefore reduces the amount of effort required from IT personnel.
To improve the capability and effectiveness of PhishER, PhishML will learn from data collected across the PhishER user community. This module, which is free to existing PhishER customers, will tag more than half of incoming emails with confidence levels included. Currently, KnowBe4 markets that PhishML has a prediction accuracy of more than 95%.
Source: KnowBe4 at Software Reviews, Report Published April 2019
PhishML is an excellent addition to the PhishER product. When triaging and tagging emails, IT professionals are likely to display hidden patterns: patterns that would be hard for a human to identify but easy for a machine learning algorithm to spot. What’s more, IT professionals have little to no visibility into how other organizations triage and tag their emails. Again, PhishML overcomes this.
Bad actors are constantly learning new ways to craft even more dubious malicious emails by paying attention to which attacks work and which fail. IT professionals rarely have the time to reciprocate this effort by finding patterns within malicious emails. Machine learning algorithms like PhishML are a clear solution to this problem: they can learn as the attacks happen across multiple organizations and they will improve over time at detecting threats at the door.
Bad actors are constantly developing more effective ways of attacking through email by analyzing which attempts succeed and which fail. KnowBe4’s PhishML module serves as a countermeasure by analyzing malicious emails as they arrive. Over time, these modules will become more adept at identifying malicious emails before they ever have the chance to be read.
Want to Know More?
Cisco is beginning to lose patience with its Zoom interoperability after another Zoom security risk: access for the Zoom Connector for Cisco hosted on zoom.us did not require authentication, allowing external users to join a Zoom meeting without password credentials.
On October 30, 2019, KnowBe4, a leader in the end-user security training space, was awarded Federal Risk and Authorization Management Program (FedRAMP) approval from the US federal government.
National Cyber Security Alliance Names Habitu8 As Their Official Security Awareness Video Training Partner
For 2019’s National Cybersecurity Awareness Month (NCSAM), the National Cyber Security Alliance (NCSA) has named the security awareness and training vendor Habitu8 its official partner.
Trend Micro Partners With NINJIO, InfoSec, GoldPhish, and NextTech Security to Offer Free Training Content
Trend Micro has added training content to its free Phish Insight tool, originally a simple, cloud-based phishing platform. The new training content comes from partnerships with NINJIO, InfoSec, GoldPhish, and NextTech Security.
Prebuilt, Layered Campaign Kits Make Security Awareness and Training a Low-Effort, High-Value Initiative
Infosec now offers campaign kits through its Infosec IQ product: prebuilt campaigns consisting of layered training materials and implementation recommendations. While many vendors are willing to provide guidance on how you should build and deliver your campaign, these kits from Infosec Institute already have that guidance built in.
Avaya’s newly released firmware addresses a vulnerability that has survived for 10 years in VoIP phone models configured with H.323 signaling.
A hacker has compromised 106 million Capital One customers after a data breach. But the real story might be less to do with cloud security itself and more to do with Capital One’s own security engine for cloud services.
Apple has delivered a silent update to Macs, rectifying a security flaw in its Zoom web-conferencing service.
To Combat the Reactive Culture Surrounding New Data Privacy Laws, MediaPRO Releases Training on the CCPA
MediaPRO has taken the lead in the market on offering training around the impending California Consumer Privacy Act (CCPA), a data privacy law set to go into effect on January 1, 2020.