Top Stories from the Past Week

Spinning off of my other thread, I wanted to know what people are doing in light of the return of CryptoWall...

How are you educating your clients?
What advice are you giving them?
What do you do if a client becomes a victim of CryptoWall?
In what scenario, if any, would you advise a client to just pay the ransom?

@scottalanmiller Unfortunate that those measure are necessary for users to really see the risk. But, at least for now, that seems to be the case...

@Dominica Guilty as charged...

@mlnews You would think, but if you read into the article that I linked above, it seems like people don't REALLY get the risk until they have become a victim.

@DustinB3403 This is great. Thanks!

@DustinB3403 So you're saying companies should essentially try to bait the employees into "mock phishing" attacks on their emails to prepare them for the real thing? Do you know if that is something that some companies are currently doing?

I recently came across an article on eWeek that talked about Malware attacks shifting back toward the end user.

One of the quotes that really resonated with me was the following...

He also said that he was disappointed that education didn’t work as well as it should and that the only thing that seemed to work was after people had been the victims of an attack. This means that companies need to perform more realistic training, he said.

What does "more realistic" training look like? Does anyone have any examples of effective security training? What can you do to make security training "more realistic?"

Hi! I'm new here. Already love it! I'm Glenn Barley!

@BigTimmy Don't forget your multi vitamin!

Eating grapes