[{"data":1,"prerenderedAt":7692},["Reactive",2],{"blog-article-knowbe4-vs-riot-en-us":3,"[blog-link-en-us]":474,"[hubspot_get_demo_cta-en-us]":499,"[connect-cta-en-us]":523,"[hubspot_free_trial_cta-en-us]":546,"awareness-link-awareness-en-us":569,"[case-studies-link-en-us]":973,"studio-link-studio-en-us":998,"[toolbox-link-en-us]":1389,"sonar-link-sonar-en-us":1413,"breaches-link-breaches-en-us":1724,"simulation-link-simulation-en-us":1996,"inbox-link-inbox-en-us":2269,"slash-link-slash-en-us":2531,"all-articles-en-us":2820},{"id":4,"uid":5,"url":6,"type":7,"href":8,"tags":9,"first_publication_date":11,"last_publication_date":12,"slugs":13,"linked_documents":15,"lang":16,"alternate_languages":17,"data":21},"ai-l3REAACoA_zcC","knowbe4-vs-riot",null,"blog_article","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22ai-l3REAACoA_zcC%22%29+%5D%5D",[10],"Blog","2026-06-16T15:23:12+0000","2026-06-16T15:40:41+0000",[14],"knowbe4-vs.-riot-the-basics-at-a-glance",[],"en-us",[18],{"id":19,"type":7,"lang":20,"uid":5},"ajFlzREAACcAAmnn","fr-fr",{"date":22,"title":23,"author_name":24,"author_position":25,"author_profile_picture":26,"thumbnail":35,"image":43,"created_at":56,"slices":57,"meta_description":466,"meta_image":467,"meta_title":23},"June 2026","KnowBe4 vs. Riot: Which Platform is Right for Your Team?","Tom Baragwanath","Head of Content, Riot",{"dimensions":27,"alt":6,"copyright":6,"url":29,"id":30,"edit":31},{"width":28,"height":28},64,"https://images.prismic.io/riot-website/ZlcwXqWtHYXtT5kt_ZlXp3aWtHYXtT28u_Author_Tom-Baragwanath.avif?auto=format,compress&rect=0,0,2000,2000&w=64&h=64","ZlcwXqWtHYXtT5kt",{"x":32,"y":32,"zoom":33,"background":34},0,1,"transparent",{"dimensions":36,"alt":39,"copyright":6,"url":40,"id":41,"edit":42},{"width":37,"height":38},760,480,"KnowBe4 vs. Riot","https://images.prismic.io/riot-website/ajFhZ41P9HI4UlAL_blog-thumb-knowbe4.png?auto=format%2Ccompress&w=760&h=480","ajFhZ41P9HI4UlAL",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":44,"alt":39,"copyright":6,"url":47,"id":48,"edit":49,"Large":50},{"width":45,"height":46},1220,523,"https://images.prismic.io/riot-website/ajFfto1P9HI4Uk-8_blog-banner-knowbe4.png?auto=format%2Ccompress&w=1220&h=523","ajFfto1P9HI4Uk-8",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":51,"alt":39,"copyright":6,"url":54,"id":48,"edit":55},{"width":52,"height":53},2440,1046,"https://images.prismic.io/riot-website/ajFfto1P9HI4Uk-8_blog-banner-knowbe4.png?auto=format,compress",{"x":32,"y":32,"zoom":33,"background":34},"2026-06-17",[58,91,128,184,236,308,335,380,407,456,461],{"variation":59,"version":60,"items":61,"primary":62,"id":89,"slice_type":90,"slice_label":6},"default","initial",[],{"content":63},[64,77,80,86],{"type":65,"text":66,"spans":67,"direction":76},"paragraph","With the scale and complexity of today's cyber threats, investing in the right security solution is crucial. When two out of three data breaches start with human error, the right training can be the difference between staying secure and becoming the next big headline.",[68],{"start":69,"end":70,"type":71,"data":72},114,144,"hyperlink",{"link_type":73,"url":74,"target":75},"Web","https://www.verizon.com/business/resources/reports/dbir/","_blank","ltr",{"type":65,"text":78,"spans":79,"direction":76},"But with so many options on the market, which solution should you choose? Should you go with the market leader, KnowBe4, with its huge content library? Or should you go with a platform built to deliver unforgettable learning and a stronger shared security posture: Riot?",[],{"type":65,"text":81,"spans":82,"direction":76},"If you're comparing KnowBe4 vs. Riot to find the right fit for your team, we're here to help. In this article, we break down the key differences across the four areas that matter most: awareness training, phishing simulations, proactive defense, and ease of use. When you're done, you'll have everything you need to make the right call.",[83],{"start":32,"end":84,"type":85},336,"strong",{"type":65,"text":87,"spans":88,"direction":76},"Let's start with the basics.",[],"article_content$aebc0939-7db7-4191-aff1-00179419be84","article_content",{"variation":59,"version":60,"items":92,"primary":93,"id":127,"slice_type":90,"slice_label":6},[],{"content":94},[95,99,105,110,115,119],{"type":96,"text":97,"spans":98,"direction":76},"heading2","KnowBe4 vs. Riot: The basics at a glance",[],{"type":65,"text":100,"spans":101,"direction":76},"Founded back in 2010, KnowBe4 is regarded as the pioneer of security awareness training as a discipline. With 70,000 client organizations worldwide, KnowBe4 is the leading platform in the market, and is targeted towards large enterprises with complex compliance requirements and dedicated IT or security teams to operate and manage the platform.",[102],{"start":103,"end":104,"type":85},22,29,{"type":65,"text":106,"spans":107,"direction":76},"Riot was founded in 2020, and was built around a fundamentally different philosophy. Rather than offering learners a vast library of content, Riot delivers impactful training via its security coach, Albert, directly inside Slack, Microsoft Teams, or Google Chat. Today, Riot supports 2,000,000+ learners in over 2,000 organizations to develop a stronger shared security posture.",[108],{"start":32,"end":109,"type":85},4,{"type":65,"text":111,"spans":112,"direction":76},"The key difference? KnowBe4 offers classic eLearning at scale, whereas Riot focuses on simplicity, ease of use, and learner engagement.",[113],{"start":32,"end":114,"type":85},135,{"type":116,"text":117,"spans":118,"direction":76},"heading3","KnowBe4 vs. Riot feature comparison table",[],{"type":120,"url":121,"alt":6,"copyright":6,"dimensions":122,"id":125,"edit":126},"image","https://images.prismic.io/riot-website/ajFgt41P9HI4Uk_u_RiotvsKB4tableEN.png?auto=format,compress",{"width":123,"height":124},1006,820,"ajFgt41P9HI4Uk_u",{"x":32,"y":32,"zoom":33,"background":34},"article_content$e7392a13-8b20-40f1-8221-004707d33bb3",{"variation":59,"version":60,"items":129,"primary":130,"id":183,"slice_type":90,"slice_label":6},[],{"content":131},[132,135,143,151,154,159,165,172,180],{"type":96,"text":133,"spans":134,"direction":76},"Awareness training – how each platform engages people",[],{"type":65,"text":136,"spans":137,"direction":76},"It's an uncomfortable truth, but we need to face it: most classic cybersecurity training simply doesn't work.",[138],{"start":139,"end":140,"type":71,"data":141},89,108,{"link_type":73,"url":142,"target":75},"https://tryriot.com/blog/boring-cybersecurity-training/",{"type":65,"text":144,"spans":145,"direction":76},"It's not because the content is wrong, or because people don't realize the importance of cybersecurity. It's because it fails to actually engage people: nearly two out of three employees say they tune out during security awareness training – and that doesn't include the employees who don't even bother to show up for it.",[146],{"start":147,"end":148,"type":71,"data":149},153,186,{"link_type":73,"url":150,"target":75},"https://www.computerweekly.com/news/252523196/Cyber-security-training-boring-and-largely-ignored",{"type":65,"text":152,"spans":153,"direction":76},"Given the scale of this challenge, security and IT teams need something that meets learners where they are and helps them develop a stronger security posture by making better decisions.",[],{"type":65,"text":155,"spans":156,"direction":76},"KnowBe4 offers an enormous content library of 1,000+ modules, videos, games, posters, and newsletters delivered to learners via traditional eLearning techniques. It's a huge range of content, and for large organizations looking for sheer variety of compliance topics, KnowBe4 can be a good fit. However, the learning format leans towards classic LMS-style eLearning, with slide-heavy modules that some employees – and even some admins – say can start to feel repetitive and forgettable over time, according to G2 reviews. Some users also say the content looks outdated, and others say the library of material can be overwhelming for small teams to manage.",[157],{"start":32,"end":158,"type":85},7,{"type":65,"text":160,"spans":161,"direction":76},"In contrast, Riot is built to solve the employee engagement problem, using active learning techniques and impactful storytelling that takes no more than a few minutes per module. With Riot, learners – and admins – don't have to navigate a giant library of content; instead, they get a hand-picked selection of essential topics covering the cybersecurity basics, like AI deepfakes, vishing, and social engineering. Multi-year chapters also keep best practices fresh over time, and Riot's Studio feature empowers users to craft custom courses that match their content.",[162],{"start":163,"end":164,"type":85},13,17,{"type":120,"url":166,"alt":6,"copyright":6,"dimensions":167,"id":170,"edit":171},"https://images.prismic.io/riot-website/ZvQQ3rVsGrYSv8qz_Blog_Cours_EN.png?auto=format,compress",{"width":168,"height":169},1844,2524,"ZvQQ3rVsGrYSv8qz",{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":173,"spans":174,"direction":76},"With Riot, admins achieve training completion rates of 91%+ thanks to unforgettable, punchy modules built around the latest news headlines and threat intelligence.",[175],{"start":176,"end":177,"type":71,"data":178},26,59,{"link_type":73,"url":179,"target":75},"https://tryriot.com/blog/cybersecurity-courses/",{"type":65,"text":181,"spans":182,"direction":76},"And speaking of unforgettable learning…",[],"article_content$30fe4055-255c-47d5-abae-20b7634a8833",{"variation":59,"version":60,"items":185,"primary":186,"id":235,"slice_type":90,"slice_label":6},[],{"content":187},[188,191,199,205,221,224],{"type":96,"text":189,"spans":190,"direction":76},"Phishing simulations – testing your team the right way",[],{"type":65,"text":192,"spans":193,"direction":76},"Phishing simulations are a crucial tool in the cybersecurity awareness toolkit – but not all simulations are created equal. A simulation that feels like a punishment, generates a flood of false positives, or fails to reinforce best practices can do more harm than good.",[194],{"start":195,"end":196,"type":71,"data":197},188,203,{"link_type":73,"url":198,"target":75},"https://tryriot.com/blog/phishing-false-positives/",{"type":65,"text":200,"spans":201,"direction":76},"On the simulation front, KnowBe4 has one of the most comprehensive template libraries on the market, covering a wide range of scenarios, hooks, and spoofed partners. For large security teams looking for specialized hooks to target defined user groups, this template library is useful. The downside is that KnowBe4 simulations can occasionally err towards a “gotcha” approach, focusing more on catching employees out rather than supporting them to improve. Some users also note in G2 reviews that the volume of simulation data can be tough to turn into an actionable plan.",[202],{"start":203,"end":204,"type":85},25,32,{"type":65,"text":206,"spans":207,"direction":76},"With Riot, phishing simulations are built around a simpler and more human philosophy: the goal is not just to trap, but to teach. Admins can choose from an intuitive range of hand-picked templates, and if an employee falls for a simulated attack, they immediately receive targeted follow-up training to help them understand what just happened and why. Users praise Riot's fast and simple setup, and its clear and actionable reporting that empowers non-technical users to turn a campaign into a clear roadmap. And as a bonus, Riot also offers smishing simulations.",[208,211,216],{"start":209,"end":210,"type":85},5,10,{"start":212,"end":213,"type":71,"data":214},372,393,{"link_type":73,"url":215,"target":75},"https://www.g2.com/products/riot-2022-06-07/reviews/riot-review-10805567",{"start":217,"end":218,"type":71,"data":219},403,433,{"link_type":73,"url":220,"target":75},"https://www.g2.com/products/riot-2022-06-07/reviews/riot-review-12213438",{"type":65,"text":222,"spans":223,"direction":76},"The bottom line? KnowBe4 has more phishing templates to choose from; Riot supports simulations that drive lasting behavioral change and strengthen employee security posture.",[],{"type":65,"text":225,"spans":226,"direction":76},"Learn more: How to Run a World-Class Phishing Simulation in 6 Steps – and 5 Big Mistakes to Avoid",[227,230,231],{"start":32,"end":228,"type":229},97,"em",{"start":32,"end":228,"type":85},{"start":232,"end":228,"type":71,"data":233},12,{"link_type":73,"url":234,"target":75},"https://tryriot.com/blog/phishing-simulation/","article_content$b46350af-92c8-45e3-89a1-1791050c75f3",{"variation":59,"version":60,"items":237,"primary":238,"id":307,"slice_type":90,"slice_label":6},[],{"content":239},[240,243,246,250,254,257,260,264,272,279,286,295,298],{"type":96,"text":241,"spans":242,"direction":76},"Proactive defense – limiting what attackers have to work with",[],{"type":65,"text":244,"spans":245,"direction":76},"Employee awareness training and phishing simulations are one side of the security coin – but what about proactively limiting what hackers and other bad actors can find out about us?",[],{"type":65,"text":247,"spans":248,"direction":76},"KnowBe4 offers some coverage on this, with its Artificial Intelligence Defense Agents (AIDA) feature automating many human risk management functions, including:",[249],{"start":32,"end":158,"type":85},{"type":251,"text":252,"spans":253,"direction":76},"list-item","Customizing phishing simulations to suit a user's past performance.",[],{"type":251,"text":255,"spans":256,"direction":76},"Adapting training modules to suit a user's expertise level.",[],{"type":251,"text":258,"spans":259,"direction":76},"Proactively analyzing some risky user behaviors to minimize exposure and prevent attacks.",[],{"type":65,"text":261,"spans":262,"direction":76},"Riot has built a suite of features in line with its Employee Security Posture Management (ESPM) philosophy, supporting employees to develop a stronger shared security posture through continuous improvement and proactive defense. These features scan and remedy employee habits and behaviors that can lead to a heightened risk of attack, including:",[263],{"start":32,"end":109,"type":85},{"type":251,"text":265,"spans":266,"direction":76},"Slash: AI-powered attack detection stopping threats before they land.",[267,270],{"start":32,"end":209,"type":71,"data":268},{"link_type":73,"url":269,"target":75},"https://tryriot.com/slash/",{"start":32,"end":271,"type":85},6,{"type":251,"text":273,"spans":274,"direction":76},"Inbox: A 24/7 AI-powered cyber hotline offering real-time threat intelligence.",[275,278],{"start":32,"end":209,"type":71,"data":276},{"link_type":73,"url":277,"target":75},"https://tryriot.com/inbox/",{"start":32,"end":271,"type":85},{"type":251,"text":280,"spans":281,"direction":76},"Sonar: Proactive insights to remedy insecure document and sharing practices.",[282,285],{"start":32,"end":209,"type":71,"data":283},{"link_type":73,"url":284,"target":75},"https://tryriot.com/sonar/",{"start":32,"end":271,"type":85},{"type":251,"text":287,"spans":288,"direction":76},"Breaches: Real-time breach detection helping users stay one step ahead.",[289,293],{"start":32,"end":290,"type":71,"data":291},8,{"link_type":73,"url":292,"target":75},"https://tryriot.com/breaches/",{"start":32,"end":294,"type":85},9,{"type":65,"text":296,"spans":297,"direction":76},"Whereas AIDA focuses on automating training delivery, Riot's ESPM suite goes a step further by actively reducing the attack surface bad actors have to work with. For busy teams, this is critical.",[],{"type":65,"text":299,"spans":300,"direction":76},"Learn more: 3 Ways to Take Control of Your Digital Footprint and Stop Giving Scammers a Head Start",[301,303,304],{"start":32,"end":302,"type":229},98,{"start":32,"end":302,"type":85},{"start":232,"end":302,"type":71,"data":305},{"link_type":73,"url":306,"target":75},"https://tryriot.com/blog/digital-footprint/","article_content$060d7341-9a12-47e4-b40e-69cfcad3edb3",{"variation":59,"version":60,"items":309,"primary":310,"id":334,"slice_type":90,"slice_label":6},[],{"content":311},[312,315,318,322,326],{"type":96,"text":313,"spans":314,"direction":76},"Deployment, admin, and day-to-day usability",[],{"type":65,"text":316,"spans":317,"direction":76},"So far we've looked at the strengths of the two platforms when it comes to awareness training, phishing simulations, and proactive defense. But what about the ease of deployment and day-to-day use? And how heavy is the admin workload? These might seem like secondary questions, but they can make a huge difference in the long run – especially for smaller companies.",[],{"type":65,"text":319,"spans":320,"direction":76},"KnowBe4 is a comprehensive cybersecurity platform offering a substantial choice of both awareness content and phishing templates. Getting the most out of it requires significant onboarding time, with G2 reviews commenting on the complexity of KnowBe4's admin console. For companies without a dedicated team member to manage campaigns, review reporting, and oversee the training program, this may prove challenging.",[321],{"start":32,"end":158,"type":85},{"type":65,"text":323,"spans":324,"direction":76},"Riot is designed to help lean teams get up and running quickly, with fast deployment and minimal ongoing maintenance. Because training is delivered through existing collaboration tools, there's no new interface for employees to learn. Teams can get up and running within a day, using Riot's clean and intuitive dashboard to give security leads and IT managers a clear overview of security posture and vulnerabilities without having to become experts.",[325],{"start":32,"end":109,"type":85},{"type":65,"text":327,"spans":328,"direction":76},"In short, if you don't have a full-time security team, Riot is the natural choice. Even for larger and more established customers, the difference in day-to-day admin involvement between the two platforms is significant. With 53% of security leaders see time constraints as the biggest barrier to better cyber awareness, a solution needs to drive real impact without pulling employees away from their day-to-day work.",[329],{"start":330,"end":331,"type":71,"data":332},225,248,{"link_type":73,"url":333,"target":75},"https://www.cybersecuritydive.com/news/cybersecurity-training-budget-increases-ai-skills/822640/","article_content$21424114-fa88-410e-904e-8ed885e8dae3",{"variation":59,"version":60,"items":336,"primary":337,"id":379,"slice_type":90,"slice_label":6},[],{"content":338},[339,342,345,350,353,356,359,362,367,370,373,376],{"type":96,"text":340,"spans":341,"direction":76},"Which solution is right for you?",[],{"type":65,"text":343,"spans":344,"direction":76},"Riot and KnowBe4 are both serious cybersecurity awareness platforms with proven track records, thousands of customers, and millions of learners. Making the right choice depends on what your team looks like, what your needs are, and how much time you have to spare.",[],{"type":65,"text":346,"spans":347,"direction":76},"Choose KnowBe4 if:",[348],{"start":32,"end":349,"type":85},18,{"type":251,"text":351,"spans":352,"direction":76},"You need a vast content library with a mix of formats, including LMS-style video tutorial and click-through slide training.",[],{"type":251,"text":354,"spans":355,"direction":76},"You have the admin bandwidth to configure, manage, and get the most from a platform requiring a higher degree of customization and setup.",[],{"type":251,"text":357,"spans":358,"direction":76},"You have the time to monitor and oversee a set of autonomous AI agents dedicated to employee security.",[],{"type":251,"text":360,"spans":361,"direction":76},"You have a dedicated security or IT team managing a complex set of compliance requirements.",[],{"type":65,"text":363,"spans":364,"direction":76},"Choose Riot if:",[365],{"start":32,"end":366,"type":85},15,{"type":251,"text":368,"spans":369,"direction":76},"You prioritize employee engagement, completion rates, and retention over having an inexhaustible library of training content.",[],{"type":251,"text":371,"spans":372,"direction":76},"You want hand-picked, impactful training that finds your teams where they already work, including Slack, Microsoft Teams, or Google Chat.",[],{"type":251,"text":374,"spans":375,"direction":76},"You want to proactively improve the security posture of your teams by limiting what people are sharing and how easily attackers can find it.",[],{"type":251,"text":377,"spans":378,"direction":76},"You need to get up and running quickly, with simple pricing, seamless integration, and responsive customer support ready to help you succeed.",[],"article_content$fd8d6c71-3e96-40e2-af31-d4525523842b",{"variation":59,"version":60,"items":381,"primary":382,"id":406,"slice_type":90,"slice_label":6},[],{"content":383},[384,387,393,396],{"type":96,"text":385,"spans":386,"direction":76},"The best training solution? The one people actually remember",[],{"type":65,"text":388,"spans":389,"direction":76},"You can have the most comprehensive awareness platform in the world – but it won't do a thing to protect your team if nobody's paying attention. That's why the best training solution isn't the one with the biggest library of content to choose from – it's the one your employees actually remember when a real threat comes knocking.",[390],{"start":391,"end":392,"type":85},278,295,{"type":65,"text":394,"spans":395,"direction":76},"We couldn't find this solution on the market – so we built it. With the help of Albert, your AI-powered cyber coach, bite-sized training delivered where people already are, realistic phishing simulations, and real-time threat monitoring, Riot gives your teams everything they need to build a stronger security posture together. Best of all? It never feels like homework.",[],{"type":65,"text":397,"spans":398,"direction":76},"Ready to deliver unforgettable learning experiences for your whole team? Get in touch with one of our experts today.",[399,401],{"start":32,"end":400,"type":85},116,{"start":402,"end":403,"type":71,"data":404},73,85,{"link_type":73,"url":405,"target":75},"https://tryriot.com/pricing/","article_content$1615ebee-bb12-4d01-b8b5-6d31556dbefd",{"variation":59,"version":60,"items":408,"primary":409,"id":455,"slice_type":90,"slice_label":6},[],{"content":410},[411,414,420,425,430,435,440],{"type":96,"text":412,"spans":413,"direction":76},"Frequently asked questions",[],{"type":415,"text":416,"spans":417,"direction":76},"o-list-item","What's the single biggest difference between Riot and KnowBe4? In short: scale and ease of use. KnowBe4 has the most comprehensive library of training content and phishing simulation templates on the market, but the platform is heavy and time-consuming to optimize. In contrast, Riot is leaner, more focused, and easier for admins to start driving better results through meaningful employee engagement.",[418],{"start":32,"end":419,"type":85},63,{"type":415,"text":421,"spans":422,"direction":76},"What is Employee Security Posture Management (ESPM)? Employee Security Posture Management, or ESPM, is Riot's philosophy of supporting employees to develop a stronger shared security posture through continuous improvement and proactive defense. With ESPM, Riot takes cybersecurity beyond awareness training or phishing simulation to address the full scope of today's threats.",[423],{"start":32,"end":424,"type":85},53,{"type":415,"text":426,"spans":427,"direction":76},"How does Riot compare to KnowBe4 on price? Riot offers a standard price of $6.89 per user / month, with custom pricing for 201+ employees. In contrast, KnowBe4 offers a four-tier Silver, Gold, Platinum, and Diamond pricing structure, with some features available only at certain tiers.",[428],{"start":32,"end":429,"type":85},43,{"type":415,"text":431,"spans":432,"direction":76},"Which platform is easier to set up? User reviews for KnowBe4 suggest the platform can be time-consuming and cumbersome to set up and operate. On the other hand, users praise Riot for being quick and simple to get up and running, with admins deploying training and simulations in just a few hours.",[433],{"start":32,"end":434,"type":85},36,{"type":415,"text":436,"spans":437,"direction":76},"Is Riot or KnowBe4 better for a small business? For smaller teams with less time to spend on organizing and running a cybersecurity platform, KnowBe4 may be less of a natural fit, as its powerful dashboard can present a learning curve even for experienced operators. In contrast, Riot is leaner and simpler to launch and oversee, resulting in a lighter process for smaller teams.",[438],{"start":32,"end":439,"type":85},48,{"type":415,"text":441,"spans":442,"direction":76},"How can I get started with Riot? You can get started for free or book a demo with one of our experts – most teams get their training and simulations up and running within a day.",[443,445,450],{"start":32,"end":444,"type":85},33,{"start":446,"end":447,"type":71,"data":448},41,61,{"link_type":73,"url":449,"target":75},"https://tryriot.com/",{"start":451,"end":452,"type":71,"data":453},65,76,{"link_type":73,"url":454,"target":75},"https://tryriot.com/demo/","article_content$29515192-93cf-483a-8a6b-4f01b610470b",{"variation":59,"version":60,"items":457,"primary":458,"id":459,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$aaf3c299-a8f7-4935-b97a-8477ca8cff16","article_shared_buttons",{"variation":59,"version":60,"items":462,"primary":463,"id":464,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$382c2dba-12fe-4a95-b449-d563a00685ca","blog_article_list","Comparing KnowBe4 vs. Riot? We break down training, phishing simulations, pricing and ease of use to help you choose the right platform for your team.",{"dimensions":468,"alt":6,"copyright":6,"url":471,"id":48,"edit":472},{"width":469,"height":470},2400,1260,"https://images.prismic.io/riot-website/ajFfto1P9HI4Uk-8_blog-banner-knowbe4.png?auto=format,compress&rect=224,0,1992,1046&w=2400&h=1260",{"x":473,"y":32,"zoom":33,"background":34},224,{"id":475,"uid":476,"url":6,"type":476,"href":477,"tags":478,"first_publication_date":479,"last_publication_date":480,"slugs":481,"linked_documents":482,"lang":16,"alternate_languages":483,"data":489},"Zlc4jxEAACQAeHC9","blog","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Zlc4jxEAACQAeHC9%22%29+%5D%5D",[10],"2024-05-29T14:24:03+0000","2026-06-16T15:28:55+0000",[476],[],[484,487],{"id":485,"type":476,"lang":486,"uid":476},"Zlc6rhEAACUAeHd3","it-it",{"id":488,"type":476,"lang":20,"uid":476},"Zlc6nxEAACMAeHda",{"title":10,"subtitle":490,"slices":491,"meta_description":496,"meta_image":497,"meta_title":498},"Explore the latest cybersecurity topics, from emerging threats to best practices and more.",[492],{"variation":59,"version":60,"items":493,"primary":494,"id":495,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":4,"max_number_of_items":366},"blog_article_list$075b0f25-ceaa-4102-9f52-2924b885feee","Welcome to the Riot blog! Come and explore the latest cybersecurity topics, from emerging threats to best practices and more.",{},"Blog - Riot",{"id":500,"uid":6,"url":6,"type":501,"href":502,"tags":503,"first_publication_date":504,"last_publication_date":505,"slugs":506,"linked_documents":508,"lang":16,"alternate_languages":509,"data":517},"Z5zmlBIAACYALb5A","hubspot_get_demo_cta","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Z5zmlBIAACYALb5A%22%29+%5D%5D",[],"2025-01-31T15:05:12+0000","2025-02-02T16:17:54+0000",[507],"hubspot-get-demo-cta",[],[510,512,515],{"id":511,"type":501,"lang":20},"Z5zmzhIAACgALb6y",{"id":513,"type":501,"lang":514},"Z6TisBIAACgAOhut","es-es",{"id":516,"type":501,"lang":486},"aK3VzREAACIAZ9rJ",{"tracking_url":518,"cta":519},"https://cta-service-cms2.hubspot.com/web-interactives/public/v1/track/redirect?encryptedPayload=AVxigLJkfAMPLmymqbcTiF9SqWEOnbo61gm6BbpTEqq41wvOpDkzpn2KWxpsXbK6F82i8JUaUzGhy1D2%2BfJgxi0xgaADHr2FMAIsUKtZGgmwr0rd%2Fr%2B8PjABgow26gZThloAbQSkCrtv6VmruttMFt%2B0kTJkD6qa4ch435sAxQ%3D%3D&webInteractiveContentId=185565467557&portalId=6784255",[520],{"type":65,"text":521,"spans":522,"direction":76},"Book a demo",[],{"id":524,"uid":6,"url":6,"type":525,"href":526,"tags":527,"first_publication_date":528,"last_publication_date":529,"slugs":530,"linked_documents":532,"lang":16,"alternate_languages":533,"data":540},"ZvKuxhEAACEA2Y5Y","hubspot_connect_cta","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22ZvKuxhEAACEA2Y5Y%22%29+%5D%5D",[],"2024-09-24T12:21:42+0000","2025-02-01T17:08:21+0000",[531],"hubspot-connect-cta",[],[534,536,538],{"id":535,"type":525,"lang":486},"ZvQKCBAAACIA8imZ",{"id":537,"type":525,"lang":20},"ZvKvbhEAAB8A2Y9x",{"id":539,"type":525,"lang":514},"Z6TpMRIAACgAOiag",{"tracking_url":541,"cta":542},"https://cta-service-cms2.hubspot.com/web-interactives/public/v1/track/redirect?encryptedPayload=AVxigLKI%2F5G%2BTdHh%2F5Mp3HB3XrzzXxo4Zl6xH9YNr30jdd1d5uJTG%2F3nxtFRx7vmGc1ftvIDjYizJG%2BPT5FdhmgLZbES3%2BGfxZqSXS3L3uLGDC3WEXFZmq3R6jVayOb5PIPOxPtPwnbsPDDGVh%2FPi1zgzEu2LlwmbJ2GhtVdxEzrGFzI&webInteractiveContentId=180147302724&portalId=6784255",[543],{"type":65,"text":544,"spans":545,"direction":76},"Log in",[],{"id":547,"uid":6,"url":6,"type":548,"href":549,"tags":550,"first_publication_date":551,"last_publication_date":552,"slugs":553,"linked_documents":555,"lang":16,"alternate_languages":556,"data":563},"ZvKu8BEAACAA2Y6c","hubspot_free_trial_cta","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22ZvKu8BEAACAA2Y6c%22%29+%5D%5D",[],"2024-09-24T12:22:09+0000","2024-10-03T14:46:19+0000",[554],"hubspot-free-trial-cta",[],[557,559,561],{"id":558,"type":548,"lang":20},"ZvKvTxEAACIA2Y85",{"id":560,"type":548,"lang":486},"ZvQKWxAAACEA8io9",{"id":562,"type":548,"lang":514},"Z6TleBIAACcAOiBB",{"tracking_url":564,"cta":565},"https://cta-service-cms2.hubspot.com/web-interactives/public/v1/track/redirect?encryptedPayload=AVxigLI%2B3%2F2ZYMjeRvlnZg0HjQ4oeuryTHlDJMeIqa%2FE0CwRNdHcqqaJ8c0PiScJarFrOo34Surv761EnovJFWtR19Ethbv9dK9hLq%2FqxTV6AKRLMS4bs2XYqEF6aLy3ANPM92wsWoYb976DnIuXdowLjqaiJdtzAsEk47Y924mGy5Zl&webInteractiveContentId=180149143311&portalId=6784255",[566],{"type":65,"text":567,"spans":568,"direction":76},"Start for free",[],{"id":570,"uid":571,"url":6,"type":572,"href":573,"tags":574,"first_publication_date":576,"last_publication_date":577,"slugs":578,"linked_documents":579,"lang":16,"alternate_languages":580,"data":587},"Z5kMGxAAACEA1F8B","awareness","landing_page","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Z5kMGxAAACEA1F8B%22%29+%5D%5D",[575],"landing-v2","2025-01-31T14:20:00+0000","2026-06-01T12:22:55+0000",[571],[],[581,583,585],{"id":582,"type":572,"lang":20,"uid":571},"Z5-4BxIAACUAMeR6",{"id":584,"type":572,"lang":486,"uid":571},"Z5_S1BIAACYAMg7l",{"id":586,"type":572,"lang":514,"uid":571},"Z6N2hRIAACUAN9SV",{"logo":588,"link_name":599,"link_description":600,"slices":601,"meta_title":607,"meta_description":611,"meta_image":972},{"dimensions":589,"alt":6,"copyright":6,"url":591,"id":592,"edit":593,"large":594},{"width":590,"height":590},56,"https://images.prismic.io/riot-website/Z5zBGJbqstJ9-Flp_icon-awareness.png?auto=format,compress&rect=0,0,112,112&w=56&h=56","Z5zBGJbqstJ9-Flp",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":595,"alt":6,"copyright":6,"url":597,"id":592,"edit":598},{"width":596,"height":596},112,"https://images.prismic.io/riot-website/Z5zBGJbqstJ9-Flp_icon-awareness.png?auto=format,compress&rect=0,0,112,112&w=112&h=112",{"x":32,"y":32,"zoom":33,"background":34},"Awareness","Effortless cybersecurity culture",[602,625,637,757,834,882,906,967],{"variation":59,"version":60,"items":603,"primary":604,"id":623,"slice_type":624,"slice_label":6},[],{"title":605,"description":609,"withctas":613,"icon":614,"module_name":620},[606],{"type":65,"text":607,"spans":608,"direction":76},"Meet Albert, your new cybersecurity coach.",[],[610],{"type":65,"text":611,"spans":612,"direction":76},"Empower better decision-making with tailored conversations and real-time support.",[],true,{"dimensions":615,"alt":6,"copyright":6,"url":591,"id":592,"edit":616,"large":617},{"width":590,"height":590},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":618,"alt":6,"copyright":6,"url":597,"id":592,"edit":619},{"width":596,"height":596},{"x":32,"y":32,"zoom":33,"background":34},[621],{"type":65,"text":599,"spans":622,"direction":76},[],"master_head_v2$cfb2e7b2-3f8f-4f51-8bbf-bc08b86133d7","master_head_v2",{"variation":59,"version":60,"items":626,"primary":627,"id":635,"slice_type":636,"slice_label":6},[],{"image":628},{"dimensions":629,"alt":6,"copyright":6,"url":632,"id":633,"edit":634},{"width":630,"height":631},2800,1460,"https://images.prismic.io/riot-website/Z6CSk5bqstJ9-Jvf_hero-awareness.png?auto=format,compress","Z6CSk5bqstJ9-Jvf",{"x":32,"y":32,"zoom":33,"background":34},"hero$53094e88-d986-483f-bc84-29b2b8bc01b6","hero",{"variation":59,"version":60,"items":638,"primary":639,"id":755,"slice_type":756,"slice_label":6},[],{"title":640,"logos":644},[641],{"type":65,"text":642,"spans":643,"direction":76},"Protecting 2,000,000+ employees in leading organizations.",[],[645,658,670,683,694,706,718,728,740,752],{"logo":646},{"dimensions":647,"alt":6,"copyright":6,"url":649,"id":650,"edit":651,"large":652},{"width":648,"height":439},148,"https://images.prismic.io/riot-website/Z5-3oZbqstJ9-IZH_icon-mistral-ai.png?auto=format,compress&rect=0,0,296,96&w=148&h=48","Z5-3oZbqstJ9-IZH",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":653,"alt":6,"copyright":6,"url":656,"id":650,"edit":657},{"width":654,"height":655},296,96,"https://images.prismic.io/riot-website/Z5-3oZbqstJ9-IZH_icon-mistral-ai.png?auto=format,compress&rect=0,0,296,96&w=296&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":659},{"dimensions":660,"alt":6,"copyright":6,"url":662,"id":663,"edit":664,"large":665},{"width":661,"height":439},146,"https://images.prismic.io/riot-website/Z5-3p5bqstJ9-IZN_icon-yc.png?auto=format,compress&rect=0,0,291,96&w=146&h=48","Z5-3p5bqstJ9-IZN",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":666,"alt":6,"copyright":6,"url":668,"id":663,"edit":669},{"width":667,"height":655},291,"https://images.prismic.io/riot-website/Z5-3p5bqstJ9-IZN_icon-yc.png?auto=format,compress&rect=0,0,291,96&w=291&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":671},{"dimensions":672,"alt":6,"copyright":6,"url":674,"id":675,"edit":676,"large":677},{"width":673,"height":439},62,"https://images.prismic.io/riot-website/Z5s-rJbqstJ9-B3F_icon-securite-sociale.png?auto=format,compress&rect=0,0,124,96&w=62&h=48","Z5s-rJbqstJ9-B3F",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":678,"alt":6,"copyright":6,"url":680,"id":681,"edit":682},{"width":679,"height":655},551,"https://images.prismic.io/riot-website/Z5-3opbqstJ9-IZI_icon-modern-treasury.png?auto=format,compress&rect=0,0,551,96&w=551&h=96","Z5-3opbqstJ9-IZI",{"x":32,"y":32,"zoom":33,"background":34},{"logo":684},{"dimensions":685,"alt":6,"copyright":6,"url":687,"id":688,"edit":689,"large":690},{"width":686,"height":439},93,"https://images.prismic.io/riot-website/Z5-3l5bqstJ9-IY9_icon-deel.png?auto=format,compress&rect=0,0,186,96&w=93&h=48","Z5-3l5bqstJ9-IY9",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":691,"alt":6,"copyright":6,"url":692,"id":688,"edit":693},{"width":148,"height":655},"https://images.prismic.io/riot-website/Z5-3l5bqstJ9-IY9_icon-deel.png?auto=format,compress&rect=0,0,186,96&w=186&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":695},{"dimensions":696,"alt":6,"copyright":6,"url":698,"id":699,"edit":700,"large":701},{"width":697,"height":439},143,"https://images.prismic.io/riot-website/Z5-3mpbqstJ9-IZA_icon-intercom.png?auto=format,compress&rect=0,0,286,96&w=143&h=48","Z5-3mpbqstJ9-IZA",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":702,"alt":6,"copyright":6,"url":704,"id":699,"edit":705},{"width":703,"height":655},286,"https://images.prismic.io/riot-website/Z5-3mpbqstJ9-IZA_icon-intercom.png?auto=format,compress&rect=0,0,286,96&w=286&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":707},{"dimensions":708,"alt":6,"copyright":6,"url":710,"id":711,"edit":712,"large":713},{"width":709,"height":439},131,"https://images.prismic.io/riot-website/Z5-3pJbqstJ9-IZK_icon-sorare.png?auto=format,compress&rect=0,0,262,96&w=131&h=48","Z5-3pJbqstJ9-IZK",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":714,"alt":6,"copyright":6,"url":716,"id":711,"edit":717},{"width":715,"height":655},262,"https://images.prismic.io/riot-website/Z5-3pJbqstJ9-IZK_icon-sorare.png?auto=format,compress&rect=0,0,262,96&w=262&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":719},{"dimensions":720,"alt":6,"copyright":6,"url":721,"id":722,"edit":723,"large":724},{"width":648,"height":439},"https://images.prismic.io/riot-website/Z5-3mJbqstJ9-IY-_icon-deezer.png?auto=format,compress&rect=0,0,296,96&w=148&h=48","Z5-3mJbqstJ9-IY-",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":725,"alt":6,"copyright":6,"url":726,"id":722,"edit":727},{"width":654,"height":655},"https://images.prismic.io/riot-website/Z5-3mJbqstJ9-IY-_icon-deezer.png?auto=format,compress&rect=0,0,296,96&w=296&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":729},{"dimensions":730,"alt":6,"copyright":6,"url":732,"id":733,"edit":734,"large":735},{"width":731,"height":439},158,"https://images.prismic.io/riot-website/Z5-3npbqstJ9-IZE_icon-l-occitane.png?auto=format,compress&rect=0,0,316,96&w=158&h=48","Z5-3npbqstJ9-IZE",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":736,"alt":6,"copyright":6,"url":738,"id":733,"edit":739},{"width":737,"height":655},316,"https://images.prismic.io/riot-website/Z5-3npbqstJ9-IZE_icon-l-occitane.png?auto=format,compress&rect=0,0,316,96&w=316&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":741},{"dimensions":742,"alt":6,"copyright":6,"url":744,"id":745,"edit":746,"large":747},{"width":743,"height":439},157,"https://images.prismic.io/riot-website/Z5-3n5bqstJ9-IZF_icon-le-monde.png?auto=format,compress&rect=0,0,313,96&w=157&h=48","Z5-3n5bqstJ9-IZF",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":748,"alt":6,"copyright":6,"url":750,"id":745,"edit":751},{"width":749,"height":655},313,"https://images.prismic.io/riot-website/Z5-3n5bqstJ9-IZF_icon-le-monde.png?auto=format,compress&rect=0,0,313,96&w=313&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":753},{"large":754},{},"logo_belt$d93b1f5e-e9b4-492e-963c-ee25f4e39417","logo_belt",{"variation":59,"version":60,"items":758,"primary":759,"id":832,"slice_type":833,"slice_label":6},[],{"item":760},[761,776,788,799,810,821],{"image":762,"description":769,"size":775},{"dimensions":763,"alt":6,"copyright":6,"url":766,"id":767,"edit":768},{"width":764,"height":765},960,720,"https://images.prismic.io/riot-website/Z5zB6pbqstJ9-FmT_awareness-bento-security.png?auto=format,compress","Z5zB6pbqstJ9-FmT",{"x":32,"y":32,"zoom":33,"background":34},[770],{"type":65,"text":771,"spans":772,"direction":76},"Proven impact. Albert’s training doesn’t just tick a box – it’s proven to strengthen your security posture and level-up your teams on the most urgent topics.",[773],{"start":32,"end":774,"type":85},14,"Large",{"image":777,"description":782,"size":787},{"dimensions":778,"alt":6,"copyright":6,"url":779,"id":780,"edit":781},{"width":764,"height":765},"https://images.prismic.io/riot-website/Z5zB4pbqstJ9-FmR_awareness-bento-delivery.png?auto=format,compress","Z5zB4pbqstJ9-FmR",{"x":32,"y":32,"zoom":33,"background":34},[783],{"type":65,"text":784,"spans":785,"direction":76},"Perfect timing. Albert works on your schedule, delivering training without distracting your teams.",[786],{"start":32,"end":366,"type":85},"Medium",{"image":789,"description":794,"size":787},{"dimensions":790,"alt":6,"copyright":6,"url":791,"id":792,"edit":793},{"width":764,"height":765},"https://images.prismic.io/riot-website/Z5zB7pbqstJ9-FmU_awareness-bento-teamwork.png?auto=format,compress","Z5zB7pbqstJ9-FmU",{"x":32,"y":32,"zoom":33,"background":34},[795],{"type":65,"text":796,"spans":797,"direction":76},"Strong teams. Managers are notified when someone needs extra support, building a shared security posture.",[798],{"start":32,"end":163,"type":85},{"image":800,"description":805,"size":775},{"dimensions":801,"alt":6,"copyright":6,"url":802,"id":803,"edit":804},{"width":764,"height":765},"https://images.prismic.io/riot-website/Z5zB5ZbqstJ9-FmS_awareness-bento-progress.png?auto=format,compress","Z5zB5ZbqstJ9-FmS",{"x":32,"y":32,"zoom":33,"background":34},[806],{"type":65,"text":807,"spans":808,"direction":76},"Track progress. Watch people go from newbie to cybersecurity wizard in real time with clear metrics.",[809],{"start":32,"end":366,"type":85},{"image":811,"description":816,"size":775},{"dimensions":812,"alt":6,"copyright":6,"url":813,"id":814,"edit":815},{"width":764,"height":765},"https://images.prismic.io/riot-website/Z5zB3ZbqstJ9-FmQ_awareness-bento-compliance.png?auto=format,compress","Z5zB3ZbqstJ9-FmQ",{"x":32,"y":32,"zoom":33,"background":34},[817],{"type":65,"text":818,"spans":819,"direction":76},"No headaches. Albert simplifies compliance with SOC 2 and ISO27001, integrating with Vanta, Drata, Thoropass, and more.",[820],{"start":32,"end":163,"type":85},{"image":822,"description":827,"size":787},{"dimensions":823,"alt":6,"copyright":6,"url":824,"id":825,"edit":826},{"width":764,"height":765},"https://images.prismic.io/riot-website/Z5zB9pbqstJ9-FmW_awareness-bento-tools.png?auto=format,compress","Z5zB9pbqstJ9-FmW",{"x":32,"y":32,"zoom":33,"background":34},[828],{"type":65,"text":829,"spans":830,"direction":76},"Easy integration. Albert meets you where you are, working seamlessly with Teams, Slack, and Google Chat.",[831],{"start":32,"end":164,"type":85},"bento$38b776ce-77fd-4fac-add1-77e7c8d24177","bento",{"variation":59,"version":60,"items":835,"primary":836,"id":880,"slice_type":881,"slice_label":6},[],{"background":837,"title":844,"company_logo":851,"job_title":858,"signature":862,"link_to":868},{"dimensions":838,"alt":6,"copyright":6,"url":841,"id":842,"edit":843},{"width":839,"height":840},1920,1080,"https://images.prismic.io/riot-website/Z53VnpbqstJ9-HhP_cowboy-testimonial-bg.png?auto=format,compress","Z53VnpbqstJ9-HhP",{"x":32,"y":32,"zoom":33,"background":34},[845,848],{"type":65,"text":846,"spans":847,"direction":76},"Riot saved me",[],{"type":65,"text":849,"spans":850,"direction":76},"a half-time job.",[],{"dimensions":852,"alt":6,"copyright":6,"url":855,"id":856,"edit":857},{"width":853,"height":854},299,47,"https://images.prismic.io/riot-website/Z53WXpbqstJ9-HhT_White.png?auto=format,compress","Z53WXpbqstJ9-HhT",{"x":32,"y":32,"zoom":33,"background":34},[859],{"type":65,"text":860,"spans":861,"direction":76},"Chief Technology Officer",[],{"dimensions":863,"alt":6,"copyright":6,"url":865,"id":866,"edit":867},{"width":864,"height":655},293,"https://images.prismic.io/riot-website/Z53U6JbqstJ9-HhJ_cowboy-signature.png?auto=format,compress","Z53U6JbqstJ9-HhJ",{"x":32,"y":32,"zoom":33,"background":34},{"id":869,"type":870,"tags":871,"lang":16,"slug":873,"first_publication_date":874,"last_publication_date":875,"uid":876,"link_type":877,"key":878,"isBroken":879},"ZmmfIBAAACEAkQQK","case_study",[872],"Case Study","the-critical-importance-of-cybersecurity-awareness","2024-06-12T13:16:33+0000","2026-06-01T12:36:17+0000","cowboy","Document","d23c8471-843f-4cd0-95d9-e4914f32be0c",false,"testimonial$1984c83b-a77a-4e85-9190-29a70943106e","testimonial",{"variation":59,"version":60,"items":883,"primary":884,"id":904,"slice_type":905,"slice_label":6},[],{"title":885,"description":889,"cta_information":893,"image":897},[886],{"type":65,"text":887,"spans":888,"direction":76},"Onboard Albert.",[],[890],{"type":65,"text":891,"spans":892,"direction":76},"Your employees are facing threats daily.\nAlbert is here to help you keep your team ready for hackers.",[],[894],{"type":65,"text":895,"spans":896,"direction":76},"No credit card required",[],{"dimensions":898,"alt":6,"copyright":6,"url":901,"id":902,"edit":903},{"width":899,"height":900},1784,1422,"https://images.prismic.io/riot-website/Z5zT8ZbqstJ9-F5F_awareness-cta-block.png?auto=format,compress","Z5zT8ZbqstJ9-F5F",{"x":32,"y":32,"zoom":33,"background":34},"cta_block_with_bottom_image$271334b0-7f66-431c-a2fe-db4204c9a39b","cta_block_with_bottom_image",{"variation":59,"version":60,"items":907,"primary":908,"id":965,"slice_type":966,"slice_label":6},[],{"title":909,"questions":913},[910],{"type":65,"text":911,"spans":912,"direction":76},"Most frequent questions.",[],[914,923,935,947,956],{"question":915,"answer":919},[916],{"type":65,"text":917,"spans":918,"direction":76},"What cyber topics are covered in the awareness training?",[],[920],{"type":65,"text":921,"spans":922,"direction":76},"The topics addressed cover essential aspects of cybersecurity, such as social engineering, password management, legal issues, digital footprint, GDPR and privacy, as well as real-life security (IRL) - among others.",[],{"question":924,"answer":928},[925],{"type":65,"text":926,"spans":927,"direction":76},"What means of communication are used to raise employee awareness?",[],[929,932],{"type":65,"text":930,"spans":931,"direction":76},"Our cyber coach, Albert, integrates directly into your company's communication tools such as Slack, Microsoft Teams, Google Chat, or via email.",[],{"type":65,"text":933,"spans":934,"direction":76},"Our aim is to position Albert as a cyber coach who interacts on the same communication channels as your teams. Your teams can boost their awareness without having to connect to a dedicated platform, which is often a hindrance to effective cybersecurity training.",[],{"question":936,"answer":940},[937],{"type":65,"text":938,"spans":939,"direction":76},"What is Riot's approach to awareness training?",[],[941,944],{"type":65,"text":942,"spans":943,"direction":76},"The course modules delivered by Albert - the employees' cyber coach - are immersive, interactive and short (less than five minutes). They are distributed regularly throughout the year, with new modules frequently added to our catalog of around thirty courses.",[],{"type":65,"text":945,"spans":946,"direction":76},"For key cybersecurity topics, such as malware, phishing or digital footprint, Albert offers multi-year courses. These incorporate new stories and practical tips to reinforce best practice and deepen your employees' knowledge.",[],{"question":948,"answer":952},[949],{"type":65,"text":950,"spans":951,"direction":76},"What completion rate can I achieve with Riot?",[],[953],{"type":65,"text":954,"spans":955,"direction":76},"Albert's cyber coach achieves the impossible: teaching your staff the fundamentals of cybersecurity without boring them or taking time away from urgent tasks. By combining our punchy training sessions with automated reminders, our customers achieve an average completion rate of 91%. This is a real success, especially when compared with other training solutions which claim to reinforce cyber culture, but are limited to one-way video training that is often not very effective or memorable.",[],{"question":957,"answer":961},[958],{"type":65,"text":959,"spans":960,"direction":76},"How can I track the progress of my team?",[],[962],{"type":65,"text":963,"spans":964,"direction":76},"To track the progress of your team, you can consult your awareness indicators (completion rates, quiz results, drop-out rates, etc.) and obtain detailed reports for managers or C-Level teams.",[],"questions_block$a9c3a7b2-671b-4873-99b7-154e57965a2e","questions_block",{"variation":59,"version":60,"items":968,"primary":969,"id":970,"slice_type":971,"slice_label":6},[],{},"footer$425cf2e4-a637-4b21-b086-e4c5d0e968fb","footer",{},{"id":974,"uid":975,"url":6,"type":976,"href":977,"tags":978,"first_publication_date":979,"last_publication_date":980,"slugs":981,"linked_documents":982,"lang":16,"alternate_languages":983,"data":987},"ZmbfUhAAACMAZUun","case-studies","case_studies","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22ZmbfUhAAACMAZUun%22%29+%5D%5D",[],"2024-06-11T12:03:50+0000","2024-06-24T07:17:14+0000",[975],[],[984],{"id":985,"type":976,"lang":20,"uid":986},"ZmbvzhAAACEAZWcz","cas-clients",{"title":988,"subtitle":989,"slices":990,"meta_description":996,"meta_image":997,"meta_title":988},"Case Studies","Find out how industry leaders are staying on top of the latest cyber threats with Albert.",[991],{"variation":59,"version":60,"items":992,"primary":993,"id":994,"slice_type":995,"slice_label":6},[],{},"case_studies_list$e9f84e65-7848-4761-9611-17f481f0ed52","case_studies_list","Find out how industry leaders are staying on top of the latest cyber threats with Albert",{},{"id":999,"uid":1000,"url":6,"type":572,"href":1001,"tags":1002,"first_publication_date":1003,"last_publication_date":1004,"slugs":1005,"linked_documents":1006,"lang":16,"alternate_languages":1007,"data":1014},"aFlY7RMAACAADfaV","studio","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22aFlY7RMAACAADfaV%22%29+%5D%5D",[],"2025-06-25T17:00:28+0000","2026-04-15T09:08:42+0000",[1000],[],[1008,1010,1012],{"id":1009,"type":572,"lang":20,"uid":1000},"aFmHMhMAACIADkkq",{"id":1011,"type":572,"lang":514,"uid":1000},"aXscTxAAACIAVqwj",{"id":1013,"type":572,"lang":486,"uid":1000},"aXscSRAAACIAVqwU",{"logo":1015,"link_name":1024,"link_description":1025,"slices":1026,"meta_title":1024,"meta_description":1025,"meta_image":1388},{"dimensions":1016,"alt":6,"copyright":6,"url":1017,"id":1018,"edit":1019,"large":1020},{"width":590,"height":590},"https://images.prismic.io/riot-website/aFlZFHfc4bHWinkI_Moduleicons.png?auto=format,compress&rect=0,0,112,112&w=56&h=56","aFlZFHfc4bHWinkI",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1021,"alt":6,"copyright":6,"url":1022,"id":1018,"edit":1023},{"width":596,"height":596},"https://images.prismic.io/riot-website/aFlZFHfc4bHWinkI_Moduleicons.png?auto=format,compress&rect=0,0,112,112&w=112&h=112",{"x":32,"y":32,"zoom":33,"background":34},"Studio","Craft courses to fit your context.",[1027,1047,1056,1225,1300,1361,1384],{"variation":59,"version":60,"items":1028,"primary":1029,"id":1046,"slice_type":624,"slice_label":6},[],{"title":1030,"description":1033,"withctas":613,"icon":1037,"module_name":1043},[1031],{"type":65,"text":1025,"spans":1032,"direction":76},[],[1034],{"type":65,"text":1035,"spans":1036,"direction":76},"Create content to match your company’s exact needs – or just ask Albert to do it for you.",[],{"dimensions":1038,"alt":6,"copyright":6,"url":1017,"id":1018,"edit":1039,"large":1040},{"width":590,"height":590},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1041,"alt":6,"copyright":6,"url":1022,"id":1018,"edit":1042},{"width":596,"height":596},{"x":32,"y":32,"zoom":33,"background":34},[1044],{"type":65,"text":1024,"spans":1045,"direction":76},[],"master_head_v2$6a995482-f717-4e90-b5ab-def959bd42d4",{"variation":59,"version":60,"items":1048,"primary":1049,"id":1055,"slice_type":636,"slice_label":6},[],{"image":1050},{"dimensions":1051,"alt":6,"copyright":6,"url":1052,"id":1053,"edit":1054},{"width":630,"height":631},"https://images.prismic.io/riot-website/aFlZpHfc4bHWinkk_hero-studio.png?auto=format,compress","aFlZpHfc4bHWinkk",{"x":32,"y":32,"zoom":33,"background":34},"hero$429abfbe-767a-414b-a66b-a923a1002cea",{"variation":59,"version":60,"items":1057,"primary":1058,"id":1224,"slice_type":756,"slice_label":6},[],{"title":1059,"logos":1062},[1060],{"type":65,"text":642,"spans":1061,"direction":76},[],[1063,1070,1077,1084,1091,1103,1110,1117,1124,1136,1148,1160,1167,1179,1188,1200,1212],{"logo":1064},{"dimensions":1065,"alt":6,"copyright":6,"url":721,"id":722,"edit":1066,"large":1067},{"width":648,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1068,"alt":6,"copyright":6,"url":726,"id":722,"edit":1069},{"width":654,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1071},{"dimensions":1072,"alt":6,"copyright":6,"url":649,"id":650,"edit":1073,"large":1074},{"width":648,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1075,"alt":6,"copyright":6,"url":656,"id":650,"edit":1076},{"width":654,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1078},{"dimensions":1079,"alt":6,"copyright":6,"url":662,"id":663,"edit":1080,"large":1081},{"width":661,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1082,"alt":6,"copyright":6,"url":668,"id":663,"edit":1083},{"width":667,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1085},{"dimensions":1086,"alt":6,"copyright":6,"url":744,"id":745,"edit":1087,"large":1088},{"width":743,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1089,"alt":6,"copyright":6,"url":750,"id":745,"edit":1090},{"width":749,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1092},{"dimensions":1093,"alt":6,"copyright":6,"url":1095,"id":1096,"edit":1097,"large":1098},{"width":1094,"height":439},133,"https://images.prismic.io/riot-website/Z5-3o5bqstJ9-IZJ_icon-ornikar.png?auto=format,compress&rect=0,0,266,96&w=133&h=48","Z5-3o5bqstJ9-IZJ",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1099,"alt":6,"copyright":6,"url":1101,"id":1096,"edit":1102},{"width":1100,"height":655},266,"https://images.prismic.io/riot-website/Z5-3o5bqstJ9-IZJ_icon-ornikar.png?auto=format,compress&rect=0,0,266,96&w=266&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":1104},{"dimensions":1105,"alt":6,"copyright":6,"url":710,"id":711,"edit":1106,"large":1107},{"width":709,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1108,"alt":6,"copyright":6,"url":716,"id":711,"edit":1109},{"width":715,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1111},{"dimensions":1112,"alt":6,"copyright":6,"url":698,"id":699,"edit":1113,"large":1114},{"width":697,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1115,"alt":6,"copyright":6,"url":704,"id":699,"edit":1116},{"width":703,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1118},{"dimensions":1119,"alt":6,"copyright":6,"url":687,"id":688,"edit":1120,"large":1121},{"width":686,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1122,"alt":6,"copyright":6,"url":692,"id":688,"edit":1123},{"width":148,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1125},{"dimensions":1126,"alt":6,"copyright":6,"url":1128,"id":1129,"edit":1130,"large":1131},{"width":1127,"height":439},223,"https://images.prismic.io/riot-website/Z5-3nJbqstJ9-IZC_icon-jimmy-fairly.png?auto=format,compress&rect=0,0,445,96&w=223&h=48","Z5-3nJbqstJ9-IZC",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1132,"alt":6,"copyright":6,"url":1134,"id":1129,"edit":1135},{"width":1133,"height":655},445,"https://images.prismic.io/riot-website/Z5-3nJbqstJ9-IZC_icon-jimmy-fairly.png?auto=format,compress&rect=0,0,445,96&w=445&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":1137},{"dimensions":1138,"alt":6,"copyright":6,"url":1140,"id":1141,"edit":1142,"large":1143},{"width":1139,"height":439},129,"https://images.prismic.io/riot-website/Z5-3lpbqstJ9-IY8_icon-business-france.png?auto=format,compress&rect=0,0,257,96&w=129&h=48","Z5-3lpbqstJ9-IY8",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1144,"alt":6,"copyright":6,"url":1146,"id":1141,"edit":1147},{"width":1145,"height":655},257,"https://images.prismic.io/riot-website/Z5-3lpbqstJ9-IY8_icon-business-france.png?auto=format,compress&rect=0,0,257,96&w=257&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":1149},{"dimensions":1150,"alt":6,"copyright":6,"url":1152,"id":1153,"edit":1154,"large":1155},{"width":1151,"height":439},178,"https://images.prismic.io/riot-website/Z5-3m5bqstJ9-IZB_icon-jeff-de-bruges.png?auto=format,compress&rect=0,0,355,96&w=178&h=48","Z5-3m5bqstJ9-IZB",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1156,"alt":6,"copyright":6,"url":1158,"id":1153,"edit":1159},{"width":1157,"height":655},355,"https://images.prismic.io/riot-website/Z5-3m5bqstJ9-IZB_icon-jeff-de-bruges.png?auto=format,compress&rect=0,0,355,96&w=355&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":1161},{"dimensions":1162,"alt":6,"copyright":6,"url":732,"id":733,"edit":1163,"large":1164},{"width":731,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1165,"alt":6,"copyright":6,"url":738,"id":733,"edit":1166},{"width":737,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1168},{"dimensions":1169,"alt":6,"copyright":6,"url":1171,"id":1172,"edit":1173,"large":1174},{"width":1170,"height":439},140,"https://images.prismic.io/riot-website/Z5-3ppbqstJ9-IZM_icon-veolia.png?auto=format,compress&rect=0,0,280,96&w=140&h=48","Z5-3ppbqstJ9-IZM",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1175,"alt":6,"copyright":6,"url":1177,"id":1172,"edit":1178},{"width":1176,"height":655},280,"https://images.prismic.io/riot-website/Z5-3ppbqstJ9-IZM_icon-veolia.png?auto=format,compress&rect=0,0,280,96&w=280&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":1180},{"dimensions":1181,"alt":6,"copyright":6,"url":1183,"id":681,"edit":1184,"large":1185},{"width":1182,"height":439},276,"https://images.prismic.io/riot-website/Z5-3opbqstJ9-IZI_icon-modern-treasury.png?auto=format,compress&rect=0,0,551,96&w=276&h=48",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1186,"alt":6,"copyright":6,"url":680,"id":681,"edit":1187},{"width":679,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1189},{"dimensions":1190,"alt":6,"copyright":6,"url":1192,"id":1193,"edit":1194,"large":1195},{"width":1191,"height":439},100,"https://images.prismic.io/riot-website/Z5-3pZbqstJ9-IZL_icon-swile.png?auto=format,compress&rect=0,0,200,96&w=100&h=48","Z5-3pZbqstJ9-IZL",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1196,"alt":6,"copyright":6,"url":1198,"id":1193,"edit":1199},{"width":1197,"height":655},200,"https://images.prismic.io/riot-website/Z5-3pZbqstJ9-IZL_icon-swile.png?auto=format,compress&rect=0,0,200,96&w=200&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":1201},{"dimensions":1202,"alt":6,"copyright":6,"url":1204,"id":1205,"edit":1206,"large":1207},{"width":1203,"height":439},136,"https://images.prismic.io/riot-website/Z5-3nZbqstJ9-IZD_icon-kaufman-broad.png?auto=format,compress&rect=0,0,272,96&w=136&h=48","Z5-3nZbqstJ9-IZD",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1208,"alt":6,"copyright":6,"url":1210,"id":1205,"edit":1211},{"width":1209,"height":655},272,"https://images.prismic.io/riot-website/Z5-3nZbqstJ9-IZD_icon-kaufman-broad.png?auto=format,compress&rect=0,0,272,96&w=272&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":1213},{"dimensions":1214,"alt":6,"copyright":6,"url":1216,"id":1217,"edit":1218,"large":1219},{"width":1215,"height":439},110,"https://images.prismic.io/riot-website/Z5-3mZbqstJ9-IY__icon-etam.png?auto=format,compress&rect=0,0,220,96&w=110&h=48","Z5-3mZbqstJ9-IY_",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1220,"alt":6,"copyright":6,"url":1222,"id":1217,"edit":1223},{"width":1221,"height":655},220,"https://images.prismic.io/riot-website/Z5-3mZbqstJ9-IY__icon-etam.png?auto=format,compress&rect=0,0,220,96&w=220&h=96",{"x":32,"y":32,"zoom":33,"background":34},"logo_belt$d2105875-465c-4c20-8fd4-362d04e16aad",{"variation":59,"version":60,"items":1226,"primary":1227,"id":1299,"slice_type":833,"slice_label":6},[],{"item":1228},[1229,1240,1251,1263,1276,1287],{"image":1230,"description":1235,"size":775},{"dimensions":1231,"alt":6,"copyright":6,"url":1232,"id":1233,"edit":1234},{"width":764,"height":765},"https://images.prismic.io/riot-website/aFlZqnfc4bHWinkq_sonar-bento-your-policies.png?auto=format,compress","aFlZqnfc4bHWinkq",{"x":32,"y":32,"zoom":33,"background":34},[1236],{"type":65,"text":1237,"spans":1238,"direction":76},"Your context. Go beyond good practices and create courses that reflect the quirks of your context.",[1239],{"start":32,"end":232,"type":85},{"image":1241,"description":1246,"size":787},{"dimensions":1242,"alt":6,"copyright":6,"url":1243,"id":1244,"edit":1245},{"width":764,"height":765},"https://images.prismic.io/riot-website/aFlZqXfc4bHWinkp_sonar-bento-stay-in-control.png?auto=format,compress","aFlZqXfc4bHWinkp",{"x":32,"y":32,"zoom":33,"background":34},[1247],{"type":65,"text":1248,"spans":1249,"direction":76},"Stay in control. Start with our trusted content and shape it to match your team’s tools and priorities.",[1250],{"start":32,"end":366,"type":85},{"image":1252,"description":1258,"size":775},{"dimensions":1253,"alt":6,"copyright":6,"url":1255,"id":1256,"edit":1257},{"width":1254,"height":765},961,"https://images.prismic.io/riot-website/aFlZpXfc4bHWinkl_sonar-bento-ai-builder.png?auto=format,compress","aFlZpXfc4bHWinkl",{"x":32,"y":32,"zoom":33,"background":34},[1259],{"type":65,"text":1260,"spans":1261,"direction":76},"AI builder. Generate courses in minutes, with AI that honors the tone and structure of our proven curriculum.",[1262],{"start":32,"end":210,"type":85},{"image":1264,"description":1271,"size":787},{"dimensions":1265,"alt":6,"copyright":6,"url":1268,"id":1269,"edit":1270},{"width":1266,"height":1267},800,600,"https://images.prismic.io/riot-website/aK1d8WGNHVfTOTg7_studio-bento-from-scratch-en.png?auto=format,compress","aK1d8WGNHVfTOTg7",{"x":32,"y":32,"zoom":33,"background":34},[1272],{"type":65,"text":1273,"spans":1274,"direction":76},"From scratch. Build your own security training from a blank canvas, or mix in our existing content.",[1275],{"start":32,"end":232,"type":85},{"image":1277,"description":1282,"size":787},{"dimensions":1278,"alt":6,"copyright":6,"url":1279,"id":1280,"edit":1281},{"width":764,"height":765},"https://images.prismic.io/riot-website/aFlZpnfc4bHWinkm_sonar-bento-easy-collaboration.png?auto=format,compress","aFlZpnfc4bHWinkm",{"x":32,"y":32,"zoom":33,"background":34},[1283],{"type":65,"text":1284,"spans":1285,"direction":76},"Easy collaboration. Shape lessons together across teams in real time - ideal when you need to move fast.",[1286],{"start":32,"end":349,"type":85},{"image":1288,"description":1293,"size":775},{"dimensions":1289,"alt":6,"copyright":6,"url":1290,"id":1291,"edit":1292},{"width":764,"height":765},"https://images.prismic.io/riot-website/aFlZp3fc4bHWinkn_sonar-bento-frictionless-publishing.png?auto=format,compress","aFlZp3fc4bHWinkn",{"x":32,"y":32,"zoom":33,"background":34},[1294],{"type":65,"text":1295,"spans":1296,"direction":76},"Frictionless publishing. Deploy courses instantly to your chat tools with no code or integration hurdles.",[1297],{"start":32,"end":1298,"type":85},23,"bento$3c83febd-3578-4edd-a457-8c949fe51df2",{"variation":59,"version":60,"items":1301,"primary":1302,"id":1360,"slice_type":966,"slice_label":6},[],{"title":1303,"questions":1307},[1304],{"type":65,"text":1305,"spans":1306,"direction":76},"Most frequent questions",[],[1308,1317,1326,1335,1344],{"question":1309,"answer":1313},[1310],{"type":65,"text":1311,"spans":1312,"direction":76},"What is Studio?",[],[1314],{"type":65,"text":1315,"spans":1316,"direction":76},"Studio is a course creation tool allowing users to build custom content matching their cybersecurity challenges, strengths, and needs. Just tell Albert what you need, and he will create a bespoke conversation that sounds and feels like him.",[],{"question":1318,"answer":1322},[1319],{"type":65,"text":1320,"spans":1321,"direction":76},"What topics are covered in the training?",[],[1323],{"type":65,"text":1324,"spans":1325,"direction":76},"Studio builds on our core training curriculum on topics like social engineering, password management, and data security to offer custom courses on any cybersecurity topic a user might require.",[],{"question":1327,"answer":1331},[1328],{"type":65,"text":1329,"spans":1330,"direction":76},"What do I need to get started?",[],[1332],{"type":65,"text":1333,"spans":1334,"direction":76},"You just need a basic idea of the topic you’d like to cover, for example something the core training curriculum has overlooked. Once you have a first version, you can iterate and improve the custom training before shipping it to your teams.",[],{"question":1336,"answer":1340},[1337],{"type":65,"text":1338,"spans":1339,"direction":76},"How do I know the training will work?",[],[1341],{"type":65,"text":1342,"spans":1343,"direction":76},"Studio ensures all custom courses have the same level of quality as our core training curriculum. This means they look and sound like Albert, helping learners explore cybersecurity topics with real-life scenarios, interactive quizzes, and role-playing.",[],{"question":1345,"answer":1349},[1346],{"type":65,"text":1347,"spans":1348,"direction":76},"How much is it?",[],[1350],{"type":65,"text":1351,"spans":1352,"direction":76},"Pricing depends on the number of users, and the features included. Take a look at our pricing page for more information – or chat with one of our experts today.",[1353,1356],{"start":1354,"end":302,"type":71,"data":1355},86,{"link_type":73,"url":405,"target":75},{"start":1357,"end":147,"type":71,"data":1358},125,{"link_type":73,"url":1359,"target":75},"https://tryriot.com/demo/?hsCtaAttrib=185565467557","questions_block$3bb6696d-8bc2-49d1-9087-8bc5bd5565a8",{"variation":59,"version":60,"items":1362,"primary":1363,"id":1382,"slice_type":1383,"slice_label":6},[],{"image":1364,"title":1371,"description":1375,"cta_information":1379,"withcta":613},{"dimensions":1365,"alt":6,"copyright":6,"url":1368,"id":1369,"edit":1370},{"width":1366,"height":1367},3456,1592,"https://images.prismic.io/riot-website/aFlZq3fc4bHWinkr_studio-cta-bg.png?auto=format,compress","aFlZq3fc4bHWinkr",{"x":32,"y":32,"zoom":33,"background":34},[1372],{"type":65,"text":1373,"spans":1374,"direction":76},"Your Studio is waiting",[],[1376],{"type":65,"text":1377,"spans":1378,"direction":76},"Build custom cybersecurity training in just minutes.",[],[1380],{"type":65,"text":895,"spans":1381,"direction":76},[],"cta_block$a37faca6-b0c1-4731-8498-506c6ef3f169","cta_block",{"variation":59,"version":60,"items":1385,"primary":1386,"id":1387,"slice_type":971,"slice_label":6},[],{},"footer$d28dbb08-6be1-486d-a7c5-145518a8ae1d",{},{"id":1390,"uid":1391,"url":6,"type":1391,"href":1392,"tags":1393,"first_publication_date":1394,"last_publication_date":1395,"slugs":1396,"linked_documents":1397,"lang":16,"alternate_languages":1398,"data":1403},"Zlg7TxEAACMAehf6","toolbox","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Zlg7TxEAACMAehf6%22%29+%5D%5D",[],"2024-05-30T09:18:12+0000","2024-06-11T15:08:34+0000",[1391],[],[1399,1401],{"id":1400,"type":1391,"lang":486,"uid":1391},"ZlhEkhEAACQAeifn",{"id":1402,"type":1391,"lang":20,"uid":1391},"Zlg7bBEAACIAehgm",{"title":1404,"subtitle":1405,"slices":1406,"meta_description":1405,"meta_image":1412,"meta_title":1404},"Toolbox","Albert's hand-picked selection of free guides, checklists, and templates to help keep your team cyber secure.",[1407],{"variation":59,"version":60,"items":1408,"primary":1409,"id":1410,"slice_type":1411,"slice_label":6},[],{},"toolbox_list$a0c3c98b-3c27-4fc4-a2dc-9b5a5c47f37a","toolbox_list",{},{"id":1414,"uid":1415,"url":6,"type":572,"href":1416,"tags":1417,"first_publication_date":1003,"last_publication_date":1418,"slugs":1419,"linked_documents":1420,"lang":16,"alternate_languages":1421,"data":1428},"aFlVkRMAACAADe6Y","sonar","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22aFlVkRMAACAADe6Y%22%29+%5D%5D",[],"2026-01-29T08:38:44+0000",[1415],[],[1422,1424,1426],{"id":1423,"type":572,"lang":514,"uid":1415},"aXscrhAAACQAVqzs",{"id":1425,"type":572,"lang":486,"uid":1415},"aXscqRAAACMAVqzh",{"id":1427,"type":572,"lang":20,"uid":1415},"aFlw6BMAACEADiRz",{"logo":1429,"link_name":1438,"link_description":1439,"slices":1440,"meta_title":1438,"meta_description":1439,"meta_image":1723},{"dimensions":1430,"alt":6,"copyright":6,"url":1431,"id":1432,"edit":1433,"large":1434},{"width":590,"height":590},"https://images.prismic.io/riot-website/aFlSvXfc4bHWinda_Moduleicons.png?auto=format,compress&rect=0,0,112,112&w=56&h=56","aFlSvXfc4bHWinda",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1435,"alt":6,"copyright":6,"url":1436,"id":1432,"edit":1437},{"width":596,"height":596},"https://images.prismic.io/riot-website/aFlSvXfc4bHWinda_Moduleicons.png?auto=format,compress&rect=0,0,112,112&w=112&h=112",{"x":32,"y":32,"zoom":33,"background":34},"Sonar","Stop permission drift before it bites you.",[1441,1460,1468,1594,1658,1701,1720],{"variation":59,"version":60,"items":1442,"primary":1443,"id":1046,"slice_type":624,"slice_label":6},[],{"title":1444,"description":1447,"withctas":613,"icon":1451,"module_name":1457},[1445],{"type":65,"text":1439,"spans":1446,"direction":76},[],[1448],{"type":65,"text":1449,"spans":1450,"direction":76},"Allow your employees to easily manage how they share data with partners.",[],{"dimensions":1452,"alt":6,"copyright":6,"url":1431,"id":1432,"edit":1453,"large":1454},{"width":590,"height":590},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1455,"alt":6,"copyright":6,"url":1436,"id":1432,"edit":1456},{"width":596,"height":596},{"x":32,"y":32,"zoom":33,"background":34},[1458],{"type":65,"text":1438,"spans":1459,"direction":76},[],{"variation":59,"version":60,"items":1461,"primary":1462,"id":1055,"slice_type":636,"slice_label":6},[],{"image":1463},{"dimensions":1464,"alt":6,"copyright":6,"url":1465,"id":1466,"edit":1467},{"width":630,"height":631},"https://images.prismic.io/riot-website/aFlTc3fc4bHWine9_hero-sonar.png?auto=format,compress","aFlTc3fc4bHWine9",{"x":32,"y":32,"zoom":33,"background":34},{"variation":59,"version":60,"items":1469,"primary":1470,"id":1224,"slice_type":756,"slice_label":6},[],{"title":1471,"logos":1474},[1472],{"type":65,"text":642,"spans":1473,"direction":76},[],[1475,1482,1489,1496,1503,1510,1517,1524,1531,1538,1545,1552,1559,1566,1573,1580,1587],{"logo":1476},{"dimensions":1477,"alt":6,"copyright":6,"url":721,"id":722,"edit":1478,"large":1479},{"width":648,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1480,"alt":6,"copyright":6,"url":726,"id":722,"edit":1481},{"width":654,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1483},{"dimensions":1484,"alt":6,"copyright":6,"url":649,"id":650,"edit":1485,"large":1486},{"width":648,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1487,"alt":6,"copyright":6,"url":656,"id":650,"edit":1488},{"width":654,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1490},{"dimensions":1491,"alt":6,"copyright":6,"url":662,"id":663,"edit":1492,"large":1493},{"width":661,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1494,"alt":6,"copyright":6,"url":668,"id":663,"edit":1495},{"width":667,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1497},{"dimensions":1498,"alt":6,"copyright":6,"url":744,"id":745,"edit":1499,"large":1500},{"width":743,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1501,"alt":6,"copyright":6,"url":750,"id":745,"edit":1502},{"width":749,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1504},{"dimensions":1505,"alt":6,"copyright":6,"url":1095,"id":1096,"edit":1506,"large":1507},{"width":1094,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1508,"alt":6,"copyright":6,"url":1101,"id":1096,"edit":1509},{"width":1100,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1511},{"dimensions":1512,"alt":6,"copyright":6,"url":710,"id":711,"edit":1513,"large":1514},{"width":709,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1515,"alt":6,"copyright":6,"url":716,"id":711,"edit":1516},{"width":715,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1518},{"dimensions":1519,"alt":6,"copyright":6,"url":698,"id":699,"edit":1520,"large":1521},{"width":697,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1522,"alt":6,"copyright":6,"url":704,"id":699,"edit":1523},{"width":703,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1525},{"dimensions":1526,"alt":6,"copyright":6,"url":687,"id":688,"edit":1527,"large":1528},{"width":686,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1529,"alt":6,"copyright":6,"url":692,"id":688,"edit":1530},{"width":148,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1532},{"dimensions":1533,"alt":6,"copyright":6,"url":1128,"id":1129,"edit":1534,"large":1535},{"width":1127,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1536,"alt":6,"copyright":6,"url":1134,"id":1129,"edit":1537},{"width":1133,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1539},{"dimensions":1540,"alt":6,"copyright":6,"url":1140,"id":1141,"edit":1541,"large":1542},{"width":1139,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1543,"alt":6,"copyright":6,"url":1146,"id":1141,"edit":1544},{"width":1145,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1546},{"dimensions":1547,"alt":6,"copyright":6,"url":1152,"id":1153,"edit":1548,"large":1549},{"width":1151,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1550,"alt":6,"copyright":6,"url":1158,"id":1153,"edit":1551},{"width":1157,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1553},{"dimensions":1554,"alt":6,"copyright":6,"url":732,"id":733,"edit":1555,"large":1556},{"width":731,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1557,"alt":6,"copyright":6,"url":738,"id":733,"edit":1558},{"width":737,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1560},{"dimensions":1561,"alt":6,"copyright":6,"url":1171,"id":1172,"edit":1562,"large":1563},{"width":1170,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1564,"alt":6,"copyright":6,"url":1177,"id":1172,"edit":1565},{"width":1176,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1567},{"dimensions":1568,"alt":6,"copyright":6,"url":1183,"id":681,"edit":1569,"large":1570},{"width":1182,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1571,"alt":6,"copyright":6,"url":680,"id":681,"edit":1572},{"width":679,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1574},{"dimensions":1575,"alt":6,"copyright":6,"url":1192,"id":1193,"edit":1576,"large":1577},{"width":1191,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1578,"alt":6,"copyright":6,"url":1198,"id":1193,"edit":1579},{"width":1197,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1581},{"dimensions":1582,"alt":6,"copyright":6,"url":1204,"id":1205,"edit":1583,"large":1584},{"width":1203,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1585,"alt":6,"copyright":6,"url":1210,"id":1205,"edit":1586},{"width":1209,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1588},{"dimensions":1589,"alt":6,"copyright":6,"url":1216,"id":1217,"edit":1590,"large":1591},{"width":1215,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1592,"alt":6,"copyright":6,"url":1222,"id":1217,"edit":1593},{"width":1221,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"variation":59,"version":60,"items":1595,"primary":1596,"id":1299,"slice_type":833,"slice_label":6},[],{"item":1597},[1598,1609,1620,1634,1646],{"image":1599,"description":1604,"size":775},{"dimensions":1600,"alt":6,"copyright":6,"url":1601,"id":1602,"edit":1603},{"width":764,"height":765},"https://images.prismic.io/riot-website/aFlUqHfc4bHWing3_sonar-bento-partners-and-files.png?auto=format,compress","aFlUqHfc4bHWing3",{"x":32,"y":32,"zoom":33,"background":34},[1605],{"type":65,"text":1606,"spans":1607,"direction":76},"Partners and files. Your policies understand that data privileges vary per partner; Sonar does, too.",[1608],{"start":32,"end":349,"type":85},{"image":1610,"description":1615,"size":787},{"dimensions":1611,"alt":6,"copyright":6,"url":1612,"id":1613,"edit":1614},{"width":764,"height":765},"https://images.prismic.io/riot-website/aFlUpXfc4bHWingz_sonar-bento-build-ownership.png?auto=format,compress","aFlUpXfc4bHWingz",{"x":32,"y":32,"zoom":33,"background":34},[1616],{"type":65,"text":1617,"spans":1618,"direction":76},"Build ownership. Albert will explain good practices to your employees, so you can breed security through habits.",[1619],{"start":32,"end":366,"type":85},{"image":1621,"description":1628,"size":1633},{"dimensions":1622,"alt":6,"copyright":6,"url":1625,"id":1626,"edit":1627},{"width":1623,"height":1624},740,555,"https://images.prismic.io/riot-website/aFlUp3fc4bHWing2_sonar-bento-orchestration.png?auto=format,compress","aFlUp3fc4bHWing2",{"x":32,"y":32,"zoom":33,"background":34},[1629],{"type":65,"text":1630,"spans":1631,"direction":76},"Orchestration. Distributed ownership across employees, so you can focus on policies and edge cases.",[1632],{"start":32,"end":163,"type":85},"Small",{"image":1635,"description":1641,"size":1633},{"dimensions":1636,"alt":6,"copyright":6,"url":1638,"id":1639,"edit":1640},{"width":1637,"height":1624},741,"https://images.prismic.io/riot-website/aFlUpXfc4bHWing0_sonar-bento-checkbox.png?auto=format,compress","aFlUpXfc4bHWing0",{"x":32,"y":32,"zoom":33,"background":34},[1642],{"type":65,"text":1643,"spans":1644,"direction":76},"Checkbox. Straightforward actions for employees – and a clear path to compliance for your enterprise.",[1645],{"start":32,"end":290,"type":85},{"image":1647,"description":1652,"size":1633},{"dimensions":1648,"alt":6,"copyright":6,"url":1649,"id":1650,"edit":1651},{"width":1637,"height":1624},"https://images.prismic.io/riot-website/aFlUpnfc4bHWing1_sonar-bento-easy-integration.png?auto=format,compress","aFlUpnfc4bHWing1",{"x":32,"y":32,"zoom":33,"background":34},[1653],{"type":65,"text":1654,"spans":1655,"direction":76},"Easy integration. In as few as 6 clicks, Google and Microsoft integrations that just work.",[1656],{"start":32,"end":1657,"type":85},16,{"variation":59,"version":60,"items":1659,"primary":1660,"id":1360,"slice_type":966,"slice_label":6},[],{"title":1661,"questions":1664},[1662],{"type":65,"text":1305,"spans":1663,"direction":76},[],[1665,1674,1683,1692],{"question":1666,"answer":1670},[1667],{"type":65,"text":1668,"spans":1669,"direction":76},"What is it?",[],[1671],{"type":65,"text":1672,"spans":1673,"direction":76},"Sonar is a Data Loss Prevention (DLP) solution. It helps you audit the data being shared via your Microsoft or Google workspace, so that you can spot and remedy mistakes or abuses.",[],{"question":1675,"answer":1679},[1676],{"type":65,"text":1677,"spans":1678,"direction":76},"What data sharing apps do you support?",[],[1680],{"type":65,"text":1681,"spans":1682,"direction":76},"We have integrations to monitor Microsoft’s OneDrive and Sharepoint, as well as Google’s My Drive and Shared Drives products.",[],{"question":1684,"answer":1688},[1685],{"type":65,"text":1686,"spans":1687,"direction":76},"What can we configure?",[],[1689],{"type":65,"text":1690,"spans":1691,"direction":76},"You can configure Sonar so that it matches your data sharing policies - or Sonar can suggest one if you don’t have any. \nThis typically includes how often partnerships need to be reviewed, how publicly-accessible links should be managed, or what data should be considered sensitive.",[],{"question":1693,"answer":1697},[1694],{"type":65,"text":1695,"spans":1696,"direction":76},"How do the roles of the admin and employees differ?",[],[1698],{"type":65,"text":1699,"spans":1700,"direction":76},"Sonar allows for simple management of partners by employees themselves, as they have the required context and domain knowledge. However, admins can override decisions made by employees, as well as ensure audits follow the required schedule (if any).",[],{"variation":59,"version":60,"items":1702,"primary":1703,"id":1382,"slice_type":1383,"slice_label":6},[],{"image":1704,"title":1709,"description":1713,"cta_information":1717,"withcta":613},{"dimensions":1705,"alt":6,"copyright":6,"url":1706,"id":1707,"edit":1708},{"width":1366,"height":1367},"https://images.prismic.io/riot-website/aFlVSnfc4bHWinhc_Frame1948763051.png?auto=format,compress","aFlVSnfc4bHWinhc",{"x":32,"y":32,"zoom":33,"background":34},[1710],{"type":65,"text":1711,"spans":1712,"direction":76},"Check your own files for free",[],[1714],{"type":65,"text":1715,"spans":1716,"direction":76},"Use Sonar to audit and fix what you share!",[],[1718],{"type":65,"text":895,"spans":1719,"direction":76},[],{"variation":59,"version":60,"items":1721,"primary":1722,"id":1387,"slice_type":971,"slice_label":6},[],{},{},{"id":1725,"uid":1726,"url":6,"type":572,"href":1727,"tags":1728,"first_publication_date":1729,"last_publication_date":1730,"slugs":1731,"linked_documents":1732,"lang":16,"alternate_languages":1733,"data":1740},"Z5zEABIAACYALX9s","breaches","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Z5zEABIAACYALX9s%22%29+%5D%5D",[575],"2025-01-31T14:25:45+0000","2026-01-29T08:39:30+0000",[1726],[],[1734,1736,1738],{"id":1735,"type":572,"lang":486,"uid":1726},"Z5_SzBIAACcAMg7H",{"id":1737,"type":572,"lang":20,"uid":1726},"Z5_fqxIAACYAMiag",{"id":1739,"type":572,"lang":514,"uid":1726},"Z6OF7RIAACgAN_KJ",{"logo":1741,"link_name":1750,"link_description":1751,"slices":1752,"meta_title":1758,"meta_description":1762,"meta_image":1995},{"dimensions":1742,"alt":6,"copyright":6,"url":1743,"id":1744,"edit":1745,"large":1746},{"width":590,"height":590},"https://images.prismic.io/riot-website/Z5zDUJbqstJ9-FnE_icon-breaches.png?auto=format,compress&rect=0,0,112,112&w=56&h=56","Z5zDUJbqstJ9-FnE",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1747,"alt":6,"copyright":6,"url":1748,"id":1744,"edit":1749},{"width":596,"height":596},"https://images.prismic.io/riot-website/Z5zDUJbqstJ9-FnE_icon-breaches.png?auto=format,compress&rect=0,0,112,112&w=112&h=112",{"x":32,"y":32,"zoom":33,"background":34},"Breaches","Real-time data breach detection",[1753,1774,1783,1854,1916,1970,1991],{"variation":59,"version":60,"items":1754,"primary":1755,"id":1773,"slice_type":624,"slice_label":6},[],{"title":1756,"description":1760,"withctas":613,"icon":1764,"module_name":1770},[1757],{"type":65,"text":1758,"spans":1759,"direction":76},"Get the bad news as soon as it happens.",[],[1761],{"type":65,"text":1762,"spans":1763,"direction":76},"Respond to data breaches to contain the damage and prepare your team for fresh scams.",[],{"dimensions":1765,"alt":6,"copyright":6,"url":1743,"id":1744,"edit":1766,"large":1767},{"width":590,"height":590},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1768,"alt":6,"copyright":6,"url":1748,"id":1744,"edit":1769},{"width":596,"height":596},{"x":32,"y":32,"zoom":33,"background":34},[1771],{"type":65,"text":1750,"spans":1772,"direction":76},[],"master_head_v2$797e38cb-60d3-4be2-9825-535635e295de",{"variation":59,"version":60,"items":1775,"primary":1776,"id":1782,"slice_type":636,"slice_label":6},[],{"image":1777},{"dimensions":1778,"alt":6,"copyright":6,"url":1779,"id":1780,"edit":1781},{"width":630,"height":631},"https://images.prismic.io/riot-website/Z5zDT5bqstJ9-FnD_hero-breaches.png?auto=format,compress","Z5zDT5bqstJ9-FnD",{"x":32,"y":32,"zoom":33,"background":34},"hero$11a36e97-6b02-41d3-ae4e-9e8e58fb2f21",{"variation":59,"version":60,"items":1784,"primary":1785,"id":1853,"slice_type":756,"slice_label":6},[],{"title":1786,"logos":1789},[1787],{"type":65,"text":642,"spans":1788,"direction":76},[],[1790,1797,1804,1811,1818,1825,1832,1839,1846],{"logo":1791},{"dimensions":1792,"alt":6,"copyright":6,"url":649,"id":650,"edit":1793,"large":1794},{"width":648,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1795,"alt":6,"copyright":6,"url":656,"id":650,"edit":1796},{"width":654,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1798},{"dimensions":1799,"alt":6,"copyright":6,"url":662,"id":663,"edit":1800,"large":1801},{"width":661,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1802,"alt":6,"copyright":6,"url":668,"id":663,"edit":1803},{"width":667,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1805},{"dimensions":1806,"alt":6,"copyright":6,"url":1183,"id":681,"edit":1807,"large":1808},{"width":1182,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1809,"alt":6,"copyright":6,"url":680,"id":681,"edit":1810},{"width":679,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1812},{"dimensions":1813,"alt":6,"copyright":6,"url":687,"id":688,"edit":1814,"large":1815},{"width":686,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1816,"alt":6,"copyright":6,"url":692,"id":688,"edit":1817},{"width":148,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1819},{"dimensions":1820,"alt":6,"copyright":6,"url":698,"id":699,"edit":1821,"large":1822},{"width":697,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1823,"alt":6,"copyright":6,"url":704,"id":699,"edit":1824},{"width":703,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1826},{"dimensions":1827,"alt":6,"copyright":6,"url":710,"id":711,"edit":1828,"large":1829},{"width":709,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1830,"alt":6,"copyright":6,"url":716,"id":711,"edit":1831},{"width":715,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1833},{"dimensions":1834,"alt":6,"copyright":6,"url":721,"id":722,"edit":1835,"large":1836},{"width":648,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1837,"alt":6,"copyright":6,"url":726,"id":722,"edit":1838},{"width":654,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1840},{"dimensions":1841,"alt":6,"copyright":6,"url":732,"id":733,"edit":1842,"large":1843},{"width":731,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1844,"alt":6,"copyright":6,"url":738,"id":733,"edit":1845},{"width":737,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":1847},{"dimensions":1848,"alt":6,"copyright":6,"url":744,"id":745,"edit":1849,"large":1850},{"width":743,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":1851,"alt":6,"copyright":6,"url":750,"id":745,"edit":1852},{"width":749,"height":655},{"x":32,"y":32,"zoom":33,"background":34},"logo_belt$6e9fc5e8-6727-4d87-bcaf-5cbfe63beb9c",{"variation":59,"version":60,"items":1855,"primary":1856,"id":1915,"slice_type":833,"slice_label":6},[],{"item":1857},[1858,1869,1881,1893,1904],{"image":1859,"description":1864,"size":775},{"dimensions":1860,"alt":6,"copyright":6,"url":1861,"id":1862,"edit":1863},{"width":764,"height":765},"https://images.prismic.io/riot-website/Z5zDB5bqstJ9-Fmz_breaches-bento-breaches.png?auto=format,compress","Z5zDB5bqstJ9-Fmz",{"x":32,"y":32,"zoom":33,"background":34},[1865],{"type":65,"text":1866,"spans":1867,"direction":76},"One step ahead. Detect threats by scanning your digital footprint for breaches and info stealers in real time to defend your teams against new attacks.",[1868],{"start":32,"end":366,"type":85},{"image":1870,"description":1875,"size":787},{"dimensions":1871,"alt":6,"copyright":6,"url":1872,"id":1873,"edit":1874},{"width":764,"height":765},"https://images.prismic.io/riot-website/Z5zDDJbqstJ9-Fm1_breaches-bento-risks.png?auto=format,compress","Z5zDDJbqstJ9-Fm1",{"x":32,"y":32,"zoom":33,"background":34},[1876],{"type":65,"text":1877,"spans":1878,"direction":76},"Measure the impact. Get a clear breakdown of the nature and severity of each breach to understand the impact.",[1879],{"start":32,"end":1880,"type":85},19,{"image":1882,"description":1888,"size":1633},{"dimensions":1883,"alt":6,"copyright":6,"url":1885,"id":1886,"edit":1887},{"width":1637,"height":1884},556,"https://images.prismic.io/riot-website/Z5zDAZbqstJ9-Fmx_breaches-bento-alerts.png?auto=format,compress","Z5zDAZbqstJ9-Fmx",{"x":32,"y":32,"zoom":33,"background":34},[1889],{"type":65,"text":1890,"spans":1891,"direction":76},"Alert your team. Notify employees as soon as a breach is detected, preparing them for a fresh wave of scams.",[1892],{"start":32,"end":1657,"type":85},{"image":1894,"description":1899,"size":1633},{"dimensions":1895,"alt":6,"copyright":6,"url":1896,"id":1897,"edit":1898},{"width":1637,"height":1884},"https://images.prismic.io/riot-website/Z5zDCJbqstJ9-Fm0_breaches-bento-privacy.png?auto=format,compress","Z5zDCJbqstJ9-Fm0",{"x":32,"y":32,"zoom":33,"background":34},[1900],{"type":65,"text":1901,"spans":1902,"direction":76},"Privacy First. Empower your team to securely track breaches affecting their personal email addresses.",[1903],{"start":32,"end":366,"type":85},{"image":1905,"description":1910,"size":1633},{"dimensions":1906,"alt":6,"copyright":6,"url":1907,"id":1908,"edit":1909},{"width":1623,"height":1884},"https://images.prismic.io/riot-website/Z5zDBJbqstJ9-Fmy_breaches-bento-analytics.png?auto=format,compress","Z5zDBJbqstJ9-Fmy",{"x":32,"y":32,"zoom":33,"background":34},[1911],{"type":65,"text":1912,"spans":1913,"direction":76},"Clear analytics. Get actionable breach information and insights with our Advanced Analytics Dashboard.",[1914],{"start":32,"end":1657,"type":85},"bento$ddfdeb37-5545-4a68-a90c-a3cee9f7f1db",{"variation":59,"version":60,"items":1917,"primary":1918,"id":1969,"slice_type":966,"slice_label":6},[],{"title":1919,"questions":1922},[1920],{"type":65,"text":911,"spans":1921,"direction":76},[],[1923,1931,1945,1960],{"question":1924,"answer":1927},[1925],{"type":65,"text":1668,"spans":1926,"direction":76},[],[1928],{"type":65,"text":1929,"spans":1930,"direction":76},"Our Breaches feature gathers all the data leaks that have impacted your employees and classifies them according to the severity of the threat. Albert - your employees' cyber coach - informs them about these breaches, guiding them to take the necessary action by updating their login credentials and other information on the sites concerned.",[],{"question":1932,"answer":1936},[1933],{"type":65,"text":1934,"spans":1935,"direction":76},"Where does the data come from?",[],[1937],{"type":65,"text":1938,"spans":1939,"direction":76},"The data comes from the https://haveibeenpwned.com/ website, which tracks data breaches to identify compromised accounts.",[1940],{"start":1941,"end":1942,"type":71,"data":1943},24,51,{"link_type":73,"url":1944,"target":75},"https://haveibeenpwned.com/",{"question":1946,"answer":1950},[1947],{"type":65,"text":1948,"spans":1949,"direction":76},"How is the employee informed of these data breaches?",[],[1951,1954,1957],{"type":65,"text":1952,"spans":1953,"direction":76},"For past breaches: notification via Albert’s “Data Breaches” course.",[],{"type":65,"text":1955,"spans":1956,"direction":76},"For recent breaches: immediate notification from Albert, the cyber coach, via your chosen company communication channel (Slack, Microsoft Teams, Google Chat, email).",[],{"type":65,"text":1958,"spans":1959,"direction":76},"All alerts are centralized on the employee portal.",[],{"question":1961,"answer":1965},[1962],{"type":65,"text":1963,"spans":1964,"direction":76},"What about personal data?",[],[1966],{"type":65,"text":1967,"spans":1968,"direction":76},"We analyze business e-mail addresses synchronized with the Riot platform. If your employees wish, they can provide us with their personal e-mail addresses via their employee portal, so that we can assess the security of their data. Since these breaches concern the employee's personal life, he or she will of course be the only one informed, and to maintain privacy, these updates are never shared with system administrators.",[],"questions_block$ad03f1a2-ed78-4694-b460-009cffbf7521",{"variation":59,"version":60,"items":1971,"primary":1972,"id":1990,"slice_type":1383,"slice_label":6},[],{"image":1973,"title":1979,"description":1983,"cta_information":1987,"withcta":613},{"dimensions":1974,"alt":6,"copyright":6,"url":1976,"id":1977,"edit":1978},{"width":1366,"height":1975},1593,"https://images.prismic.io/riot-website/Z5zDKpbqstJ9-Fm5_breaches-cta-background.png?auto=format,compress","Z5zDKpbqstJ9-Fm5",{"x":32,"y":32,"zoom":33,"background":34},[1980],{"type":65,"text":1981,"spans":1982,"direction":76},"Breaches don’t wait.",[],[1984],{"type":65,"text":1985,"spans":1986,"direction":76},"And neither should you – try out our solution for free right now.",[],[1988],{"type":65,"text":895,"spans":1989,"direction":76},[],"cta_block$7ca6e8d5-d345-4ef5-a885-55e6cc920a40",{"variation":59,"version":60,"items":1992,"primary":1993,"id":1994,"slice_type":971,"slice_label":6},[],{},"footer$a9c890ec-2f76-4136-b317-0ee759f8a27c",{},{"id":1997,"uid":1998,"url":6,"type":572,"href":1999,"tags":2000,"first_publication_date":1729,"last_publication_date":2001,"slugs":2002,"linked_documents":2003,"lang":16,"alternate_languages":2004,"data":2011},"Z5zAehIAACUALXl5","simulation","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Z5zAehIAACUALXl5%22%29+%5D%5D",[575],"2026-01-29T08:40:45+0000",[1998],[],[2005,2007,2009],{"id":2006,"type":572,"lang":486,"uid":1998},"Z5_SzRIAACUAMg7N",{"id":2008,"type":572,"lang":20,"uid":1998},"Z5_MURIAACgAMgKd",{"id":2010,"type":572,"lang":514,"uid":1998},"Z6N44RIAACUAN9i5",{"logo":2012,"link_name":2022,"link_description":2023,"slices":2024,"meta_title":2267,"meta_description":2034,"meta_image":2268},{"dimensions":2013,"alt":2014,"copyright":6,"url":2015,"id":2016,"edit":2017,"large":2018},{"width":590,"height":590},"Simulation Icon","https://images.prismic.io/riot-website/Z5oaMpbqstJ99_MN_icon-simulation.png?auto=format,compress&rect=0,0,112,112&w=56&h=56","Z5oaMpbqstJ99_MN",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2019,"alt":2014,"copyright":6,"url":2020,"id":2016,"edit":2021},{"width":596,"height":596},"https://images.prismic.io/riot-website/Z5oaMpbqstJ99_MN_icon-simulation.png?auto=format,compress&rect=0,0,112,112&w=112&h=112",{"x":32,"y":32,"zoom":33,"background":34},"Simulation","Practical phishing training",[2025,2046,2055,2126,2187,2243,2263],{"variation":59,"version":60,"items":2026,"primary":2027,"id":2045,"slice_type":624,"slice_label":6},[],{"title":2028,"description":2032,"withctas":613,"icon":2036,"module_name":2042},[2029],{"type":65,"text":2030,"spans":2031,"direction":76},"Practical phishing training, \ndone right.",[],[2033],{"type":65,"text":2034,"spans":2035,"direction":76},"Prepare your team for attacks with exercises as sneaky as the real thing.",[],{"dimensions":2037,"alt":2014,"copyright":6,"url":2015,"id":2016,"edit":2038,"large":2039},{"width":590,"height":590},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2040,"alt":2014,"copyright":6,"url":2020,"id":2016,"edit":2041},{"width":596,"height":596},{"x":32,"y":32,"zoom":33,"background":34},[2043],{"type":65,"text":2022,"spans":2044,"direction":76},[],"master_head_v2$2f98d5d9-8c54-4255-a41e-8112e849f68f",{"variation":59,"version":60,"items":2047,"primary":2048,"id":2054,"slice_type":636,"slice_label":6},[],{"image":2049},{"dimensions":2050,"alt":6,"copyright":6,"url":2051,"id":2052,"edit":2053},{"width":630,"height":631},"https://images.prismic.io/riot-website/Z6CULpbqstJ9-JyI_hero-simulation.png?auto=format,compress","Z6CULpbqstJ9-JyI",{"x":32,"y":32,"zoom":33,"background":34},"hero$ded382ec-bf77-4187-99c5-8c6f14ce252a",{"variation":59,"version":60,"items":2056,"primary":2057,"id":2125,"slice_type":756,"slice_label":6},[],{"title":2058,"logos":2061},[2059],{"type":65,"text":642,"spans":2060,"direction":76},[],[2062,2069,2076,2083,2090,2097,2104,2111,2118],{"logo":2063},{"dimensions":2064,"alt":6,"copyright":6,"url":649,"id":650,"edit":2065,"large":2066},{"width":648,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2067,"alt":6,"copyright":6,"url":656,"id":650,"edit":2068},{"width":654,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2070},{"dimensions":2071,"alt":6,"copyright":6,"url":662,"id":663,"edit":2072,"large":2073},{"width":661,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2074,"alt":6,"copyright":6,"url":668,"id":663,"edit":2075},{"width":667,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2077},{"dimensions":2078,"alt":6,"copyright":6,"url":1183,"id":681,"edit":2079,"large":2080},{"width":1182,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2081,"alt":6,"copyright":6,"url":680,"id":681,"edit":2082},{"width":679,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2084},{"dimensions":2085,"alt":6,"copyright":6,"url":687,"id":688,"edit":2086,"large":2087},{"width":686,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2088,"alt":6,"copyright":6,"url":692,"id":688,"edit":2089},{"width":148,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2091},{"dimensions":2092,"alt":6,"copyright":6,"url":698,"id":699,"edit":2093,"large":2094},{"width":697,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2095,"alt":6,"copyright":6,"url":704,"id":699,"edit":2096},{"width":703,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2098},{"dimensions":2099,"alt":6,"copyright":6,"url":710,"id":711,"edit":2100,"large":2101},{"width":709,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2102,"alt":6,"copyright":6,"url":716,"id":711,"edit":2103},{"width":715,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2105},{"dimensions":2106,"alt":6,"copyright":6,"url":721,"id":722,"edit":2107,"large":2108},{"width":648,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2109,"alt":6,"copyright":6,"url":726,"id":722,"edit":2110},{"width":654,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2112},{"dimensions":2113,"alt":6,"copyright":6,"url":732,"id":733,"edit":2114,"large":2115},{"width":731,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2116,"alt":6,"copyright":6,"url":738,"id":733,"edit":2117},{"width":737,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2119},{"dimensions":2120,"alt":6,"copyright":6,"url":744,"id":745,"edit":2121,"large":2122},{"width":743,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2123,"alt":6,"copyright":6,"url":750,"id":745,"edit":2124},{"width":749,"height":655},{"x":32,"y":32,"zoom":33,"background":34},"logo_belt$6f290ced-47e8-4f35-946a-4f2d16f6bf75",{"variation":59,"version":60,"items":2127,"primary":2128,"id":2186,"slice_type":833,"slice_label":6},[],{"item":2129},[2130,2141,2152,2164,2175],{"image":2131,"description":2136,"size":775},{"dimensions":2132,"alt":6,"copyright":6,"url":2133,"id":2134,"edit":2135},{"width":1254,"height":765},"https://images.prismic.io/riot-website/Z5y_xJbqstJ9-Fic_simulation-bento-first-aid-kit.png?auto=format,compress","Z5y_xJbqstJ9-Fic",{"x":32,"y":32,"zoom":33,"background":34},[2137],{"type":65,"text":2138,"spans":2139,"direction":76},"First aid kit. Direct your at-risk employees to a customized three-minute remedial training session on identifying phishing attacks safely and securely.",[2140],{"start":32,"end":774,"type":85},{"image":2142,"description":2147,"size":787},{"dimensions":2143,"alt":6,"copyright":6,"url":2144,"id":2145,"edit":2146},{"width":1266,"height":1267},"https://images.prismic.io/riot-website/Z6CWxJbqstJ9-J3i_ai-at-work.png?auto=format,compress","Z6CWxJbqstJ9-J3i",{"x":32,"y":32,"zoom":33,"background":34},[2148],{"type":65,"text":2149,"spans":2150,"direction":76},"Put AI to work. Generate new templates with the power of AI by describing your own attack scenarios.",[2151],{"start":32,"end":366,"type":85},{"image":2153,"description":2158,"size":1633},{"dimensions":2154,"alt":6,"copyright":6,"url":2155,"id":2156,"edit":2157},{"width":1637,"height":1624},"https://images.prismic.io/riot-website/Z5y_xpbqstJ9-Fif_simulation-bento-password.png?auto=format,compress","Z5y_xpbqstJ9-Fif",{"x":32,"y":32,"zoom":33,"background":34},[2159],{"type":65,"text":2160,"spans":2161,"direction":76},"Password inspection. Securely analyse the complexity of submitted passwords to detect weak measures.",[2162],{"start":32,"end":2163,"type":85},20,{"image":2165,"description":2170,"size":1633},{"dimensions":2166,"alt":6,"copyright":6,"url":2167,"id":2168,"edit":2169},{"width":1637,"height":1624},"https://images.prismic.io/riot-website/Z5y_x5bqstJ9-Fig_simulation-bento-zero-maintenance.png?auto=format,compress","Z5y_x5bqstJ9-Fig",{"x":32,"y":32,"zoom":33,"background":34},[2171],{"type":65,"text":2172,"spans":2173,"direction":76},"Zero maintenance. Easily program campaigns to run automatically based on smart audience.",[2174],{"start":32,"end":164,"type":85},{"image":2176,"description":2181,"size":1633},{"dimensions":2177,"alt":6,"copyright":6,"url":2178,"id":2179,"edit":2180},{"width":1623,"height":1624},"https://images.prismic.io/riot-website/Z5y_xZbqstJ9-Fid_simulation-bento-level-up.png?auto=format,compress","Z5y_xZbqstJ9-Fid",{"x":32,"y":32,"zoom":33,"background":34},[2182],{"type":65,"text":2183,"spans":2184,"direction":76},"Level up. Create more sophisticated attacks using our library of spoof domains, or add your own.",[2185],{"start":32,"end":294,"type":85},"bento$2bb28ee4-3645-4003-9133-120b46d6cef9",{"variation":59,"version":60,"items":2188,"primary":2189,"id":2242,"slice_type":966,"slice_label":6},[],{"title":2190,"questions":2193},[2191],{"type":65,"text":911,"spans":2192,"direction":76},[],[2194,2203,2215,2224,2233],{"question":2195,"answer":2199},[2196],{"type":65,"text":2197,"spans":2198,"direction":76},"What are the KPIs reported?",[],[2200],{"type":65,"text":2201,"spans":2202,"direction":76},"We collect key phishing metrics in real time, such as open rate, click-through rate, login submission rate, password vulnerability, email reporting rate, and median time to vulnerability. We also analyze the most successful phishing email templates and identify the departments within your organization that are most vulnerable to attack.",[],{"question":2204,"answer":2208},[2205],{"type":65,"text":2206,"spans":2207,"direction":76},"How do I launch a phishing simulation campaign, and how quick is it?",[],[2209,2212],{"type":65,"text":2210,"spans":2211,"direction":76},"How? By configuring three key elements: your target audience, the email templates to be used, and the frequency of email delivery.",[],{"type":65,"text":2213,"spans":2214,"direction":76},"How long does it take? In just five minutes, you can set up and launch your campaign.",[],{"question":2216,"answer":2220},[2217],{"type":65,"text":2218,"spans":2219,"direction":76},"How to automate phishing simulations?",[],[2221],{"type":65,"text":2222,"spans":2223,"direction":76},"You can automate your phishing simulations by using dynamic groups to automatically target your audiences, using AI to personalize scenarios, and planning regular recurring campaign.",[],{"question":2225,"answer":2229},[2226],{"type":65,"text":2227,"spans":2228,"direction":76},"What is the composition of the phishing email template library?",[],[2230],{"type":65,"text":2231,"spans":2232,"direction":76},"Our library offers over 400 phishing email templates, covering a wide variety of scenarios used by malicious actors in real attacks (password reset, document signature, file transfer, etc.), and designed for all levels of difficulty, from beginner to expert.",[],{"question":2234,"answer":2238},[2235],{"type":65,"text":2236,"spans":2237,"direction":76},"How does Riot guarantee email deliverability?",[],[2239],{"type":65,"text":2240,"spans":2241,"direction":76},"By connecting to your API, we insert phishing simulation emails directly into your employees' inboxes, significantly reducing the false positive rate. Alternatively, you can whitelist our IP. In all cases, we provide detailed guides and dedicated support to facilitate configuration.",[],"questions_block$2c72d719-3d67-43c1-89e0-dd601abae520",{"variation":59,"version":60,"items":2244,"primary":2245,"id":2262,"slice_type":1383,"slice_label":6},[],{"image":2246,"title":2251,"description":2255,"cta_information":2259,"withcta":613},{"dimensions":2247,"alt":6,"copyright":6,"url":2248,"id":2249,"edit":2250},{"width":1366,"height":1367},"https://images.prismic.io/riot-website/Z5tNzZbqstJ9-CDx_awareness-cta-banner.png?auto=format,compress","Z5tNzZbqstJ9-CDx",{"x":32,"y":32,"zoom":33,"background":34},[2252],{"type":65,"text":2253,"spans":2254,"direction":76},"The first one is on us.",[],[2256],{"type":65,"text":2257,"spans":2258,"direction":76},"Evaluate your team today by running your first phishing campaign for free!",[],[2260],{"type":65,"text":895,"spans":2261,"direction":76},[],"cta_block$e49dd5ff-1e63-49d3-99bc-32fae4cbe8a0",{"variation":59,"version":60,"items":2264,"primary":2265,"id":2266,"slice_type":971,"slice_label":6},[],{},"footer$3d89d0d3-0122-4bf6-86b4-bcbd9572c72a","Practical phishing training,  done right.",{},{"id":2270,"uid":2271,"url":6,"type":572,"href":2272,"tags":2273,"first_publication_date":1729,"last_publication_date":2274,"slugs":2275,"linked_documents":2276,"lang":16,"alternate_languages":2277,"data":2284},"Z5zFixIAACYALYI5","inbox","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Z5zFixIAACYALYI5%22%29+%5D%5D",[575],"2026-01-29T08:42:43+0000",[2271],[],[2278,2280,2282],{"id":2279,"type":572,"lang":486,"uid":2271},"Z5_SvxIAACUAMg6f",{"id":2281,"type":572,"lang":20,"uid":2271},"Z5_VYxIAACYAMhXH",{"id":2283,"type":572,"lang":514,"uid":2271},"Z6N7-hIAACgAN95J",{"logo":2285,"link_name":2294,"link_description":2295,"slices":2296,"meta_title":2528,"meta_description":2529,"meta_image":2530},{"dimensions":2286,"alt":6,"copyright":6,"url":2287,"id":2288,"edit":2289,"large":2290},{"width":590,"height":590},"https://images.prismic.io/riot-website/Z5zErZbqstJ9-FoI_icon-inbox.png?auto=format,compress&rect=0,0,112,112&w=56&h=56","Z5zErZbqstJ9-FoI",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2291,"alt":6,"copyright":6,"url":2292,"id":2288,"edit":2293},{"width":596,"height":596},"https://images.prismic.io/riot-website/Z5zErZbqstJ9-FoI_icon-inbox.png?auto=format,compress&rect=0,0,112,112&w=112&h=112",{"x":32,"y":32,"zoom":33,"background":34},"Inbox","24/7 cybersecurity hotline",[2297,2321,2330,2401,2461,2504,2524],{"variation":59,"version":60,"items":2298,"primary":2299,"id":2320,"slice_type":624,"slice_label":6},[],{"title":2300,"description":2307,"withctas":613,"icon":2311,"module_name":2317},[2301,2304],{"type":65,"text":2302,"spans":2303,"direction":76},"The 24/7 AI-powered",[],{"type":65,"text":2305,"spans":2306,"direction":76},"cyber hotline for your team.",[],[2308],{"type":65,"text":2309,"spans":2310,"direction":76},"Give your employees the support they need to keep your business secure.",[],{"dimensions":2312,"alt":6,"copyright":6,"url":2287,"id":2288,"edit":2313,"large":2314},{"width":590,"height":590},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2315,"alt":6,"copyright":6,"url":2292,"id":2288,"edit":2316},{"width":596,"height":596},{"x":32,"y":32,"zoom":33,"background":34},[2318],{"type":65,"text":2294,"spans":2319,"direction":76},[],"master_head_v2$b356a47f-a8b2-4eba-9f15-d1daf0158cc1",{"variation":59,"version":60,"items":2322,"primary":2323,"id":2329,"slice_type":636,"slice_label":6},[],{"image":2324},{"dimensions":2325,"alt":6,"copyright":6,"url":2326,"id":2327,"edit":2328},{"width":630,"height":631},"https://images.prismic.io/riot-website/Z5zErJbqstJ9-FoH_hero-inbox.png?auto=format,compress","Z5zErJbqstJ9-FoH",{"x":32,"y":32,"zoom":33,"background":34},"hero$e96cee35-cdc8-4254-a9ea-9946592d2df4",{"variation":59,"version":60,"items":2331,"primary":2332,"id":2400,"slice_type":756,"slice_label":6},[],{"title":2333,"logos":2336},[2334],{"type":65,"text":642,"spans":2335,"direction":76},[],[2337,2344,2351,2358,2365,2372,2379,2386,2393],{"logo":2338},{"dimensions":2339,"alt":6,"copyright":6,"url":649,"id":650,"edit":2340,"large":2341},{"width":648,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2342,"alt":6,"copyright":6,"url":656,"id":650,"edit":2343},{"width":654,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2345},{"dimensions":2346,"alt":6,"copyright":6,"url":662,"id":663,"edit":2347,"large":2348},{"width":661,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2349,"alt":6,"copyright":6,"url":668,"id":663,"edit":2350},{"width":667,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2352},{"dimensions":2353,"alt":6,"copyright":6,"url":1183,"id":681,"edit":2354,"large":2355},{"width":1182,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2356,"alt":6,"copyright":6,"url":680,"id":681,"edit":2357},{"width":679,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2359},{"dimensions":2360,"alt":6,"copyright":6,"url":687,"id":688,"edit":2361,"large":2362},{"width":686,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2363,"alt":6,"copyright":6,"url":692,"id":688,"edit":2364},{"width":148,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2366},{"dimensions":2367,"alt":6,"copyright":6,"url":698,"id":699,"edit":2368,"large":2369},{"width":697,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2370,"alt":6,"copyright":6,"url":704,"id":699,"edit":2371},{"width":703,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2373},{"dimensions":2374,"alt":6,"copyright":6,"url":710,"id":711,"edit":2375,"large":2376},{"width":709,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2377,"alt":6,"copyright":6,"url":716,"id":711,"edit":2378},{"width":715,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2380},{"dimensions":2381,"alt":6,"copyright":6,"url":721,"id":722,"edit":2382,"large":2383},{"width":648,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2384,"alt":6,"copyright":6,"url":726,"id":722,"edit":2385},{"width":654,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2387},{"dimensions":2388,"alt":6,"copyright":6,"url":732,"id":733,"edit":2389,"large":2390},{"width":731,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2391,"alt":6,"copyright":6,"url":738,"id":733,"edit":2392},{"width":737,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2394},{"dimensions":2395,"alt":6,"copyright":6,"url":744,"id":745,"edit":2396,"large":2397},{"width":743,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2398,"alt":6,"copyright":6,"url":750,"id":745,"edit":2399},{"width":749,"height":655},{"x":32,"y":32,"zoom":33,"background":34},"logo_belt$193e9772-411f-4406-aa65-6e3cf2024c27",{"variation":59,"version":60,"items":2402,"primary":2403,"id":2460,"slice_type":833,"slice_label":6},[],{"item":2404},[2405,2416,2427,2438,2449],{"image":2406,"description":2411,"size":775},{"dimensions":2407,"alt":6,"copyright":6,"url":2408,"id":2409,"edit":2410},{"width":764,"height":765},"https://images.prismic.io/riot-website/Z5zEsZbqstJ9-FoM_inbox-bento-threat-detection.png?auto=format,compress","Z5zEsZbqstJ9-FoM",{"x":32,"y":32,"zoom":33,"background":34},[2412],{"type":65,"text":2413,"spans":2414,"direction":76},"Real-time intelligence. Help your teams take charge by identifying and analyzing threats as soon as they emerge, safeguarding your systems and data.",[2415],{"start":32,"end":1298,"type":85},{"image":2417,"description":2422,"size":787},{"dimensions":2418,"alt":6,"copyright":6,"url":2419,"id":2420,"edit":2421},{"width":764,"height":765},"https://images.prismic.io/riot-website/Z5zErpbqstJ9-FoJ_inbox-bento-ai-analysis.png?auto=format,compress","Z5zErpbqstJ9-FoJ",{"x":32,"y":32,"zoom":33,"background":34},[2423],{"type":65,"text":2424,"spans":2425,"direction":76},"Automatic classification. Our advanced AI identifies and classifies threats, helping you take action quickly.",[2426],{"start":32,"end":203,"type":85},{"image":2428,"description":2433,"size":1633},{"dimensions":2429,"alt":6,"copyright":6,"url":2430,"id":2431,"edit":2432},{"width":1637,"height":1624},"https://images.prismic.io/riot-website/Z5zEsJbqstJ9-FoL_inbox-bento-notifications.png?auto=format,compress","Z5zEsJbqstJ9-FoL",{"x":32,"y":32,"zoom":33,"background":34},[2434],{"type":65,"text":2435,"spans":2436,"direction":76},"Tailored alerts. Customize your notifications for specific threats or risks, ensuring you never miss an update.",[2437],{"start":32,"end":1657,"type":85},{"image":2439,"description":2444,"size":1633},{"dimensions":2440,"alt":6,"copyright":6,"url":2441,"id":2442,"edit":2443},{"width":1637,"height":1624},"https://images.prismic.io/riot-website/Z5zEspbqstJ9-FoN_inbox-bento-workflow.png?auto=format,compress","Z5zEspbqstJ9-FoN",{"x":32,"y":32,"zoom":33,"background":34},[2445],{"type":65,"text":2446,"spans":2447,"direction":76},"Smooth workflow. Streamline threat management by integrating our module into the tools you already use.",[2448],{"start":32,"end":1657,"type":85},{"image":2450,"description":2455,"size":1633},{"dimensions":2451,"alt":6,"copyright":6,"url":2452,"id":2453,"edit":2454},{"width":1623,"height":1624},"https://images.prismic.io/riot-website/Z5zEr5bqstJ9-FoK_inbox-bento-monitor.png?auto=format,compress","Z5zEr5bqstJ9-FoK",{"x":32,"y":32,"zoom":33,"background":34},[2456],{"type":65,"text":2457,"spans":2458,"direction":76},"Actionable insights. Track, monitor, and improve your posture with our comprehensive analytics dashboard.",[2459],{"start":32,"end":2163,"type":85},"bento$11ae42f3-2723-4599-a775-7c6231ca839b",{"variation":59,"version":60,"items":2462,"primary":2463,"id":2503,"slice_type":966,"slice_label":6},[],{"title":2464,"questions":2467},[2465],{"type":65,"text":911,"spans":2466,"direction":76},[],[2468,2476,2485,2494],{"question":2469,"answer":2472},[2470],{"type":65,"text":1668,"spans":2471,"direction":76},[],[2473],{"type":65,"text":2474,"spans":2475,"direction":76},"Our Inbox feature is a dedicated inbox for all suspicious emails reported by employees. You can then tag these emails, either manually or using our AI, and inform your employees of the status of the emails they report.",[],{"question":2477,"answer":2481},[2478],{"type":65,"text":2479,"spans":2480,"direction":76},"How do users report emails?",[],[2482],{"type":65,"text":2483,"spans":2484,"direction":76},"Your employees can report suspicious emails either via a dedicated button, compatible with Microsoft, KnowBe4, and Proofpoint, and accessible either on desktop and mobile, or by forwarding them to a specific email address defined by your security team.",[],{"question":2486,"answer":2490},[2487],{"type":65,"text":2488,"spans":2489,"direction":76},"Which KPIs are tracked?",[],[2491],{"type":65,"text":2492,"spans":2493,"direction":76},"We track how frequently your teams are reporting potential threats using the dedicated button. We typically see a significant increase in this usage rate among all our customers, thanks to our awareness training program.",[],{"question":2495,"answer":2499},[2496],{"type":65,"text":2497,"spans":2498,"direction":76},"How are employees informed once they have reported a problem?",[],[2500],{"type":65,"text":2501,"spans":2502,"direction":76},"They receive an e-mail indicating whether the reported e-mail was fraudulent or legitimate.",[],"questions_block$fdb92b9f-894b-416f-b498-e2eefc39d3e2",{"variation":59,"version":60,"items":2505,"primary":2506,"id":2523,"slice_type":1383,"slice_label":6},[],{"image":2507,"title":2512,"description":2516,"cta_information":2520,"withcta":613},{"dimensions":2508,"alt":6,"copyright":6,"url":2509,"id":2510,"edit":2511},{"width":1366,"height":1367},"https://images.prismic.io/riot-website/Z5zEs5bqstJ9-FoO_inbox-cta-background.png?auto=format,compress","Z5zEs5bqstJ9-FoO",{"x":32,"y":32,"zoom":33,"background":34},[2513],{"type":65,"text":2514,"spans":2515,"direction":76},"Get a taste for free.",[],[2517],{"type":65,"text":2518,"spans":2519,"direction":76},"Find out how easy it is to keep your team safe.",[],[2521],{"type":65,"text":895,"spans":2522,"direction":76},[],"cta_block$93875321-4a4d-4533-adb8-fbd29cc297e5",{"variation":59,"version":60,"items":2525,"primary":2526,"id":2527,"slice_type":971,"slice_label":6},[],{},"footer$41e25abf-620b-446e-856c-5f4cb88f5951","Where cybersecurity lives.","Everything you need for a stronger shared defense, all in one place.",{},{"id":2532,"uid":2533,"url":6,"type":572,"href":2534,"tags":2535,"first_publication_date":2536,"last_publication_date":2537,"slugs":2538,"linked_documents":2539,"lang":16,"alternate_languages":2540,"data":2547},"aeXTXBAAACUAQI73","slash","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22aeXTXBAAACUAQI73%22%29+%5D%5D",[575],"2026-04-29T15:47:41+0000","2026-04-30T15:59:48+0000",[2533],[],[2541,2543,2545],{"id":2542,"type":572,"lang":514,"uid":2533},"afmh7RAAACIAYUQW",{"id":2544,"type":572,"lang":20,"uid":2533},"aeXXTRAAACUAQJWH",{"id":2546,"type":572,"lang":486,"uid":2533},"afmd8RAAAPzZYTxK",{"logo":2548,"link_name":2557,"link_description":2558,"slices":2559,"meta_title":2557,"meta_description":2558,"meta_image":2819},{"dimensions":2549,"alt":6,"copyright":6,"url":2550,"id":2551,"edit":2552,"large":2553},{"width":590,"height":590},"https://images.prismic.io/riot-website/aeXUI51ZCF7ETWKG_slash.png?auto=format,compress&rect=0,0,1024,1024&w=56&h=56","aeXUI51ZCF7ETWKG",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2554,"alt":6,"copyright":6,"url":2555,"id":2551,"edit":2556},{"width":596,"height":596},"https://images.prismic.io/riot-website/aeXUI51ZCF7ETWKG_slash.png?auto=format,compress&rect=0,0,1024,1024&w=112&h=112",{"x":32,"y":32,"zoom":33,"background":34},"Slash","Catch the attacks others miss.",[2560,2581,2595,2672,2742,2798,2815],{"variation":59,"version":60,"items":2561,"primary":2562,"id":2580,"slice_type":624,"slice_label":6},[],{"title":2563,"description":2567,"withctas":613,"icon":2571,"module_name":2577},[2564],{"type":65,"text":2565,"spans":2566,"direction":76},"Catch the attacks others miss",[],[2568],{"type":65,"text":2569,"spans":2570,"direction":76},"Your filter can only do so much – Slash detects, alerts, and blocks what slips through.",[],{"dimensions":2572,"alt":6,"copyright":6,"url":2550,"id":2551,"edit":2573,"large":2574},{"width":590,"height":590},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2575,"alt":6,"copyright":6,"url":2555,"id":2551,"edit":2576},{"width":596,"height":596},{"x":32,"y":32,"zoom":33,"background":34},[2578],{"type":65,"text":2557,"spans":2579,"direction":76},[],"master_head_v2$57108198-a633-4383-857f-45d0d5d39979",{"variation":59,"version":60,"items":2582,"primary":2583,"id":2594,"slice_type":636,"slice_label":6},[],{"image":2584},{"dimensions":2585,"alt":6,"copyright":6,"url":2588,"id":2589,"edit":2590},{"width":2586,"height":2587},5184,3691,"https://images.prismic.io/riot-website/afIhFMBOoF08xbG8_slashhero.png?auto=format%2Ccompress&rect=615%2C128%2C3972%2C2828&w=5184&h=3691","afIhFMBOoF08xbG8",{"x":2591,"y":2592,"zoom":2593,"background":34},615,128,1.3051588351238794,"hero$29f95734-9df8-44f9-86a2-85489dc88a69",{"variation":59,"version":60,"items":2596,"primary":2597,"id":2671,"slice_type":756,"slice_label":6},[],{"title":2598,"logos":2601},[2599],{"type":65,"text":642,"spans":2600,"direction":76},[],[2602,2609,2616,2623,2630,2637,2644,2654,2664],{"logo":2603},{"dimensions":2604,"alt":6,"copyright":6,"url":649,"id":650,"edit":2605,"large":2606},{"width":648,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2607,"alt":6,"copyright":6,"url":656,"id":650,"edit":2608},{"width":654,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2610},{"dimensions":2611,"alt":6,"copyright":6,"url":662,"id":663,"edit":2612,"large":2613},{"width":661,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2614,"alt":6,"copyright":6,"url":668,"id":663,"edit":2615},{"width":667,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2617},{"dimensions":2618,"alt":6,"copyright":6,"url":1183,"id":681,"edit":2619,"large":2620},{"width":1182,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2621,"alt":6,"copyright":6,"url":680,"id":681,"edit":2622},{"width":679,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2624},{"dimensions":2625,"alt":6,"copyright":6,"url":687,"id":688,"edit":2626,"large":2627},{"width":686,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2628,"alt":6,"copyright":6,"url":692,"id":688,"edit":2629},{"width":148,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2631},{"dimensions":2632,"alt":6,"copyright":6,"url":698,"id":699,"edit":2633,"large":2634},{"width":697,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2635,"alt":6,"copyright":6,"url":704,"id":699,"edit":2636},{"width":703,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2638},{"dimensions":2639,"alt":6,"copyright":6,"url":710,"id":711,"edit":2640,"large":2641},{"width":709,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2642,"alt":6,"copyright":6,"url":716,"id":711,"edit":2643},{"width":715,"height":655},{"x":32,"y":32,"zoom":33,"background":34},{"logo":2645},{"dimensions":2646,"alt":6,"copyright":6,"url":2647,"id":2648,"edit":2649,"large":2650},{"width":648,"height":439},"https://images.prismic.io/riot-website/Z5s-pZbqstJ9-B2-_icon-deezer.png?auto=format,compress&rect=0,0,296,96&w=148&h=48","Z5s-pZbqstJ9-B2-",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2651,"alt":6,"copyright":6,"url":2652,"id":2648,"edit":2653},{"width":654,"height":655},"https://images.prismic.io/riot-website/Z5s-pZbqstJ9-B2-_icon-deezer.png?auto=format,compress&rect=0,0,296,96&w=296&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":2655},{"dimensions":2656,"alt":6,"copyright":6,"url":2657,"id":2658,"edit":2659,"large":2660},{"width":731,"height":439},"https://images.prismic.io/riot-website/Z5s-q5bqstJ9-B3E_icon-occitane.png?auto=format,compress&rect=0,0,316,96&w=158&h=48","Z5s-q5bqstJ9-B3E",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2661,"alt":6,"copyright":6,"url":2662,"id":2658,"edit":2663},{"width":737,"height":655},"https://images.prismic.io/riot-website/Z5s-q5bqstJ9-B3E_icon-occitane.png?auto=format,compress&rect=0,0,316,96&w=316&h=96",{"x":32,"y":32,"zoom":33,"background":34},{"logo":2665},{"dimensions":2666,"alt":6,"copyright":6,"url":744,"id":745,"edit":2667,"large":2668},{"width":743,"height":439},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2669,"alt":6,"copyright":6,"url":750,"id":745,"edit":2670},{"width":749,"height":655},{"x":32,"y":32,"zoom":33,"background":34},"logo_belt$45f8ae49-2a06-4ff8-afce-1cb9d5a0ce69",{"variation":59,"version":60,"items":2673,"primary":2674,"id":2741,"slice_type":833,"slice_label":6},[],{"item":2675},[2676,2689,2702,2715,2728],{"image":2677,"description":2684,"size":775},{"dimensions":2678,"alt":6,"copyright":6,"url":2681,"id":2682,"edit":2683},{"width":2679,"height":2680},2388,1058,"https://images.prismic.io/riot-website/afIhccBOoF08xbHG_Instantalerts.png?auto=format,compress","afIhccBOoF08xbHG",{"x":32,"y":32,"zoom":33,"background":34},[2685],{"type":65,"text":2686,"spans":2687,"direction":76},"Instant alerts. Albert warns employees directly inside suspicious emails, stopping attacks before anyone clicks.",[2688],{"start":32,"end":366,"type":85},{"image":2690,"description":2697,"size":787},{"dimensions":2691,"alt":6,"copyright":6,"url":2694,"id":2695,"edit":2696},{"width":2692,"height":2693},1440,892,"https://images.prismic.io/riot-website/afIhmMBOoF08xbHL_BeyondSPF.png?auto=format,compress","afIhmMBOoF08xbHL",{"x":32,"y":32,"zoom":33,"background":34},[2698],{"type":65,"text":2699,"spans":2700,"direction":76},"Beyond SPF and DMARC. Slash combines semantic analysis with technical signals to detect the sneakiest attacks.",[2701],{"start":32,"end":103,"type":85},{"image":2703,"description":2710,"size":1633},{"dimensions":2704,"alt":6,"copyright":6,"url":2707,"id":2708,"edit":2709},{"width":2705,"height":2706},1248,777,"https://images.prismic.io/riot-website/afIhvMBOoF08xbHO_Alertsworthreading.png?auto=format,compress","afIhvMBOoF08xbHO",{"x":32,"y":32,"zoom":33,"background":34},[2711],{"type":65,"text":2712,"spans":2713,"direction":76},"Alerts worth reading. Slash only flags what's genuinely suspicious – no banner fatigue, real protection.",[2714],{"start":32,"end":103,"type":85},{"image":2716,"description":2723,"size":1633},{"dimensions":2717,"alt":6,"copyright":6,"url":2720,"id":2721,"edit":2722},{"width":2718,"height":2719},1252,792,"https://images.prismic.io/riot-website/afIh4MBOoF08xbHk_Doublecheck.png?auto=format,compress","afIh4MBOoF08xbHk",{"x":32,"y":32,"zoom":33,"background":34},[2724],{"type":65,"text":2725,"spans":2726,"direction":76},"Double-check. Impersonation detected? Albert instantly verifies with the employee via Slack, Teams or Google Chat.",[2727],{"start":32,"end":774,"type":85},{"image":2729,"description":2736,"size":1633},{"dimensions":2730,"alt":6,"copyright":6,"url":2733,"id":2734,"edit":2735},{"width":2731,"height":2732},1242,819,"https://images.prismic.io/riot-website/afIh-MBOoF08xbHo_Oneclick.png?auto=format,compress","afIh-MBOoF08xbHo",{"x":32,"y":32,"zoom":33,"background":34},[2737],{"type":65,"text":2738,"spans":2739,"direction":76},"One click saves everyone. Confirmed threats are instantly removed from every mailbox of your company.",[2740],{"start":32,"end":203,"type":85},"bento$3828302b-74e6-4d90-a61f-b263f24d8417",{"variation":59,"version":60,"items":2743,"primary":2744,"id":2797,"slice_type":966,"slice_label":6},[],{"title":2745,"questions":2748},[2746],{"type":65,"text":911,"spans":2747,"direction":76},[],[2749,2758,2767,2779,2788],{"question":2750,"answer":2754},[2751],{"type":65,"text":2752,"spans":2753,"direction":76},"What permissions does Slash require?",[],[2755],{"type":65,"text":2756,"spans":2757,"direction":76},"Slash needs read access to analyze emails and write access to add alerts directly in Google and Microsoft mailboxes.",[],{"question":2759,"answer":2763},[2760],{"type":65,"text":2761,"spans":2762,"direction":76},"What if I need to restore an email?",[],[2764],{"type":65,"text":2765,"spans":2766,"direction":76},"Admins can easily restore purged emails directly from Inbox.",[],{"question":2768,"answer":2772},[2769],{"type":65,"text":2770,"spans":2771,"direction":76},"How does Slash interact with Simulation?",[],[2773,2776],{"type":65,"text":2774,"spans":2775,"direction":76},"Slash doesn't analyze simulation emails, preserving their training value.",[],{"type":65,"text":2777,"spans":2778,"direction":76},"While Slash catches sophisticated threats, phishing tactics evolve constantly – Simulation continues to train employees to stay vigilant, as no detection is ever 100% perfect.",[],{"question":2780,"answer":2784},[2781],{"type":65,"text":2782,"spans":2783,"direction":76},"Does Slash slow down email delivery?",[],[2785],{"type":65,"text":2786,"spans":2787,"direction":76},"Emails arrive normally. Slash analyzes them instantly after reception.",[],{"question":2789,"answer":2793},[2790],{"type":65,"text":2791,"spans":2792,"direction":76},"Does it work with other anti-spam tools?",[],[2794],{"type":65,"text":2795,"spans":2796,"direction":76},"Slash works seamlessly alongside existing security tools. While anti-spams filter emails upstream, Slash operates directly in the user's mailbox via APIs – complementing your defenses without interference.",[],"questions_block$cee4d2df-53ec-4579-9146-a6d2f6b5913c",{"variation":59,"version":60,"items":2799,"primary":2800,"id":2814,"slice_type":1383,"slice_label":6},[],{"image":2801,"title":2804,"description":2808,"cta_information":2811,"withcta":613},{"dimensions":2802,"alt":6,"copyright":6,"url":2509,"id":2510,"edit":2803},{"width":1366,"height":1367},{"x":32,"y":32,"zoom":33,"background":34},[2805],{"type":65,"text":2806,"spans":2807,"direction":76},"Get a taste for free",[],[2809],{"type":65,"text":2518,"spans":2810,"direction":76},[],[2812],{"type":65,"text":895,"spans":2813,"direction":76},[],"cta_block$122917e1-d6c5-46b5-b43a-1a188a465eda",{"variation":59,"version":60,"items":2816,"primary":2817,"id":2818,"slice_type":971,"slice_label":6},[],{},"footer$fdcfb1b2-4cc4-4930-aadd-51f483bf2048",{},[2821,3084,3407,3559,3926,4275,4549,4917,5352,5702,6127,6416,6755,7073,7373],{"id":4,"uid":5,"url":6,"type":7,"href":8,"tags":2822,"first_publication_date":11,"last_publication_date":12,"slugs":2823,"linked_documents":2824,"lang":16,"alternate_languages":2825,"data":2827},[10],[14],[],[2826],{"id":19,"type":7,"lang":20,"uid":5},{"date":22,"title":23,"author_name":24,"author_position":25,"author_profile_picture":2828,"thumbnail":2831,"image":2834,"created_at":56,"slices":2840,"meta_description":466,"meta_image":3081,"meta_title":23},{"dimensions":2829,"alt":6,"copyright":6,"url":29,"id":30,"edit":2830},{"width":28,"height":28},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2832,"alt":39,"copyright":6,"url":40,"id":41,"edit":2833},{"width":37,"height":38},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2835,"alt":39,"copyright":6,"url":47,"id":48,"edit":2836,"Large":2837},{"width":45,"height":46},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":2838,"alt":39,"copyright":6,"url":54,"id":48,"edit":2839},{"width":52,"height":53},{"x":32,"y":32,"zoom":33,"background":34},[2841,2856,2876,2907,2935,2983,3001,3031,3047,3075,3078],{"variation":59,"version":60,"items":2842,"primary":2843,"id":89,"slice_type":90,"slice_label":6},[],{"content":2844},[2845,2849,2851,2854],{"type":65,"text":66,"spans":2846,"direction":76},[2847],{"start":69,"end":70,"type":71,"data":2848},{"link_type":73,"url":74,"target":75},{"type":65,"text":78,"spans":2850,"direction":76},[],{"type":65,"text":81,"spans":2852,"direction":76},[2853],{"start":32,"end":84,"type":85},{"type":65,"text":87,"spans":2855,"direction":76},[],{"variation":59,"version":60,"items":2857,"primary":2858,"id":127,"slice_type":90,"slice_label":6},[],{"content":2859},[2860,2862,2865,2868,2871,2873],{"type":96,"text":97,"spans":2861,"direction":76},[],{"type":65,"text":100,"spans":2863,"direction":76},[2864],{"start":103,"end":104,"type":85},{"type":65,"text":106,"spans":2866,"direction":76},[2867],{"start":32,"end":109,"type":85},{"type":65,"text":111,"spans":2869,"direction":76},[2870],{"start":32,"end":114,"type":85},{"type":116,"text":117,"spans":2872,"direction":76},[],{"type":120,"url":121,"alt":6,"copyright":6,"dimensions":2874,"id":125,"edit":2875},{"width":123,"height":124},{"x":32,"y":32,"zoom":33,"background":34},{"variation":59,"version":60,"items":2877,"primary":2878,"id":183,"slice_type":90,"slice_label":6},[],{"content":2879},[2880,2882,2886,2890,2892,2895,2898,2901,2905],{"type":96,"text":133,"spans":2881,"direction":76},[],{"type":65,"text":136,"spans":2883,"direction":76},[2884],{"start":139,"end":140,"type":71,"data":2885},{"link_type":73,"url":142,"target":75},{"type":65,"text":144,"spans":2887,"direction":76},[2888],{"start":147,"end":148,"type":71,"data":2889},{"link_type":73,"url":150,"target":75},{"type":65,"text":152,"spans":2891,"direction":76},[],{"type":65,"text":155,"spans":2893,"direction":76},[2894],{"start":32,"end":158,"type":85},{"type":65,"text":160,"spans":2896,"direction":76},[2897],{"start":163,"end":164,"type":85},{"type":120,"url":166,"alt":6,"copyright":6,"dimensions":2899,"id":170,"edit":2900},{"width":168,"height":169},{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":173,"spans":2902,"direction":76},[2903],{"start":176,"end":177,"type":71,"data":2904},{"link_type":73,"url":179,"target":75},{"type":65,"text":181,"spans":2906,"direction":76},[],{"variation":59,"version":60,"items":2908,"primary":2909,"id":235,"slice_type":90,"slice_label":6},[],{"content":2910},[2911,2913,2917,2920,2927,2929],{"type":96,"text":189,"spans":2912,"direction":76},[],{"type":65,"text":192,"spans":2914,"direction":76},[2915],{"start":195,"end":196,"type":71,"data":2916},{"link_type":73,"url":198,"target":75},{"type":65,"text":200,"spans":2918,"direction":76},[2919],{"start":203,"end":204,"type":85},{"type":65,"text":206,"spans":2921,"direction":76},[2922,2923,2925],{"start":209,"end":210,"type":85},{"start":212,"end":213,"type":71,"data":2924},{"link_type":73,"url":215,"target":75},{"start":217,"end":218,"type":71,"data":2926},{"link_type":73,"url":220,"target":75},{"type":65,"text":222,"spans":2928,"direction":76},[],{"type":65,"text":225,"spans":2930,"direction":76},[2931,2932,2933],{"start":32,"end":228,"type":229},{"start":32,"end":228,"type":85},{"start":232,"end":228,"type":71,"data":2934},{"link_type":73,"url":234,"target":75},{"variation":59,"version":60,"items":2936,"primary":2937,"id":307,"slice_type":90,"slice_label":6},[],{"content":2938},[2939,2941,2943,2946,2948,2950,2952,2955,2960,2965,2970,2975,2977],{"type":96,"text":241,"spans":2940,"direction":76},[],{"type":65,"text":244,"spans":2942,"direction":76},[],{"type":65,"text":247,"spans":2944,"direction":76},[2945],{"start":32,"end":158,"type":85},{"type":251,"text":252,"spans":2947,"direction":76},[],{"type":251,"text":255,"spans":2949,"direction":76},[],{"type":251,"text":258,"spans":2951,"direction":76},[],{"type":65,"text":261,"spans":2953,"direction":76},[2954],{"start":32,"end":109,"type":85},{"type":251,"text":265,"spans":2956,"direction":76},[2957,2959],{"start":32,"end":209,"type":71,"data":2958},{"link_type":73,"url":269,"target":75},{"start":32,"end":271,"type":85},{"type":251,"text":273,"spans":2961,"direction":76},[2962,2964],{"start":32,"end":209,"type":71,"data":2963},{"link_type":73,"url":277,"target":75},{"start":32,"end":271,"type":85},{"type":251,"text":280,"spans":2966,"direction":76},[2967,2969],{"start":32,"end":209,"type":71,"data":2968},{"link_type":73,"url":284,"target":75},{"start":32,"end":271,"type":85},{"type":251,"text":287,"spans":2971,"direction":76},[2972,2974],{"start":32,"end":290,"type":71,"data":2973},{"link_type":73,"url":292,"target":75},{"start":32,"end":294,"type":85},{"type":65,"text":296,"spans":2976,"direction":76},[],{"type":65,"text":299,"spans":2978,"direction":76},[2979,2980,2981],{"start":32,"end":302,"type":229},{"start":32,"end":302,"type":85},{"start":232,"end":302,"type":71,"data":2982},{"link_type":73,"url":306,"target":75},{"variation":59,"version":60,"items":2984,"primary":2985,"id":334,"slice_type":90,"slice_label":6},[],{"content":2986},[2987,2989,2991,2994,2997],{"type":96,"text":313,"spans":2988,"direction":76},[],{"type":65,"text":316,"spans":2990,"direction":76},[],{"type":65,"text":319,"spans":2992,"direction":76},[2993],{"start":32,"end":158,"type":85},{"type":65,"text":323,"spans":2995,"direction":76},[2996],{"start":32,"end":109,"type":85},{"type":65,"text":327,"spans":2998,"direction":76},[2999],{"start":330,"end":331,"type":71,"data":3000},{"link_type":73,"url":333,"target":75},{"variation":59,"version":60,"items":3002,"primary":3003,"id":379,"slice_type":90,"slice_label":6},[],{"content":3004},[3005,3007,3009,3012,3014,3016,3018,3020,3023,3025,3027,3029],{"type":96,"text":340,"spans":3006,"direction":76},[],{"type":65,"text":343,"spans":3008,"direction":76},[],{"type":65,"text":346,"spans":3010,"direction":76},[3011],{"start":32,"end":349,"type":85},{"type":251,"text":351,"spans":3013,"direction":76},[],{"type":251,"text":354,"spans":3015,"direction":76},[],{"type":251,"text":357,"spans":3017,"direction":76},[],{"type":251,"text":360,"spans":3019,"direction":76},[],{"type":65,"text":363,"spans":3021,"direction":76},[3022],{"start":32,"end":366,"type":85},{"type":251,"text":368,"spans":3024,"direction":76},[],{"type":251,"text":371,"spans":3026,"direction":76},[],{"type":251,"text":374,"spans":3028,"direction":76},[],{"type":251,"text":377,"spans":3030,"direction":76},[],{"variation":59,"version":60,"items":3032,"primary":3033,"id":406,"slice_type":90,"slice_label":6},[],{"content":3034},[3035,3037,3040,3042],{"type":96,"text":385,"spans":3036,"direction":76},[],{"type":65,"text":388,"spans":3038,"direction":76},[3039],{"start":391,"end":392,"type":85},{"type":65,"text":394,"spans":3041,"direction":76},[],{"type":65,"text":397,"spans":3043,"direction":76},[3044,3045],{"start":32,"end":400,"type":85},{"start":402,"end":403,"type":71,"data":3046},{"link_type":73,"url":405,"target":75},{"variation":59,"version":60,"items":3048,"primary":3049,"id":455,"slice_type":90,"slice_label":6},[],{"content":3050},[3051,3053,3056,3059,3062,3065,3068],{"type":96,"text":412,"spans":3052,"direction":76},[],{"type":415,"text":416,"spans":3054,"direction":76},[3055],{"start":32,"end":419,"type":85},{"type":415,"text":421,"spans":3057,"direction":76},[3058],{"start":32,"end":424,"type":85},{"type":415,"text":426,"spans":3060,"direction":76},[3061],{"start":32,"end":429,"type":85},{"type":415,"text":431,"spans":3063,"direction":76},[3064],{"start":32,"end":434,"type":85},{"type":415,"text":436,"spans":3066,"direction":76},[3067],{"start":32,"end":439,"type":85},{"type":415,"text":441,"spans":3069,"direction":76},[3070,3071,3073],{"start":32,"end":444,"type":85},{"start":446,"end":447,"type":71,"data":3072},{"link_type":73,"url":449,"target":75},{"start":451,"end":452,"type":71,"data":3074},{"link_type":73,"url":454,"target":75},{"variation":59,"version":60,"items":3076,"primary":3077,"id":459,"slice_type":460,"slice_label":6},[],{},{"variation":59,"version":60,"items":3079,"primary":3080,"id":464,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},{"dimensions":3082,"alt":6,"copyright":6,"url":471,"id":48,"edit":3083},{"width":469,"height":470},{"x":473,"y":32,"zoom":33,"background":34},{"id":3085,"uid":3086,"url":6,"type":7,"href":3087,"tags":3088,"first_publication_date":3089,"last_publication_date":3090,"slugs":3091,"linked_documents":3093,"lang":16,"alternate_languages":3094,"data":3098},"aN-XXhAAACAAMTUH","cybersecurity-awareness-month-ai","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22aN-XXhAAACAAMTUH%22%29+%5D%5D",[599],"2025-10-03T09:31:45+0000","2026-06-09T15:17:27+0000",[3092],"1.-using-ai-tools-to-collect-and-reconcile-data-on-targets",[],[3095],{"id":3096,"type":7,"lang":20,"uid":3097},"aN-aahAAACAAMTu0","cybermois-conseils-ia",{"date":3099,"title":3100,"author_name":24,"author_position":3101,"author_profile_picture":3102,"thumbnail":3106,"image":3112,"created_at":3120,"slices":3121,"meta_description":3400,"meta_image":3401,"meta_title":3100},"October 2025","Cyber Month Spotlight: 5 AI Threats and How to Beat Them","Head of Content",{"dimensions":3103,"alt":3104,"copyright":6,"url":29,"id":30,"edit":3105},{"width":28,"height":28},"Tom Baragwanath Head of Content Riot",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":3107,"alt":3108,"copyright":6,"url":3109,"id":3110,"edit":3111},{"width":37,"height":38},"Cyber Month 2025 AI threats","https://images.prismic.io/riot-website/aN-VKJ5xUNkB1cK4_Blog_Cyber_Month.avif?auto=format%2Ccompress&rect=148%2C0%2C2372%2C1498&w=760&h=480","aN-VKJ5xUNkB1cK4",{"x":648,"y":32,"zoom":33,"background":34},{"dimensions":3113,"alt":3108,"copyright":6,"url":3114,"id":3110,"edit":3115,"Large":3116},{"width":45,"height":46},"https://images.prismic.io/riot-website/aN-VKJ5xUNkB1cK4_Blog_Cyber_Month.avif?auto=format%2Ccompress&rect=0%2C0%2C2668%2C1144&w=1220&h=523",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":3117,"alt":3108,"copyright":6,"url":3118,"id":3110,"edit":3119},{"width":52,"height":53},"https://images.prismic.io/riot-website/aN-VKJ5xUNkB1cK4_Blog_Cyber_Month.avif?auto=format%2Ccompress&rect=0%2C0%2C2668%2C1144&w=2440&h=1046",{"x":32,"y":32,"zoom":33,"background":34},"2025-10-03",[3122,3145,3180,3190,3204,3239,3249,3286,3295,3320,3329,3359,3368,3392,3396],{"variation":59,"version":60,"items":3123,"primary":3124,"id":3144,"slice_type":90,"slice_label":6},[],{"content":3125},[3126,3134,3137,3140],{"type":65,"text":3127,"spans":3128,"direction":76},"It’s Cybersecurity Awareness Month again, and the threats we face have never been more serious. To say a lot has changed since US Cyber Month first launched in 2004 would be an understatement.",[3129],{"start":3130,"end":3131,"type":71,"data":3132},127,141,{"link_type":73,"url":3133,"target":75},"https://www.cisa.gov/cybersecurity-awareness-month",{"type":65,"text":3135,"spans":3136,"direction":76},"Artificial Intelligence tools are now enabling cyber criminals with minimal technical skills to launch highly sophisticated attacks. Since last year, AI technology has grown more powerful and accessible, fueling automated phishing attacks, deepfakes, data poisoning campaigns, and much more.",[],{"type":65,"text":3138,"spans":3139,"direction":76},"The good news? AI also empowers your team to stay ahead. The right tools can help detect risks in advance, identify vulnerabilities before attackers do, and create phishing simulations every bit as convincing as real-world attacks.",[],{"type":65,"text":3141,"spans":3142,"direction":76},"To mark Cybersecurity Awareness Month 2025, we’ll explore five major AI threats organizations face—and show how you can stay safe by strengthening your employee security posture.",[3143],{"start":32,"end":1151,"type":85},"article_content$499d957e-fc97-4d9d-9bb5-455e47a7221d",{"variation":59,"version":60,"items":3146,"primary":3147,"id":3179,"slice_type":90,"slice_label":6},[],{"content":3148},[3149,3152,3155,3160,3172],{"type":96,"text":3150,"spans":3151,"direction":76},"1. Using AI tools to collect and reconcile data on targets",[],{"type":65,"text":3153,"spans":3154,"direction":76},"Once, malicious actors faced serious limitations in crafting attacks tailored to specific individuals or organizations. Put simply, it took time and effort to research targets, cook up a good scam, and find the right angle. But these days, it’s a piece of cake.",[],{"type":65,"text":3156,"spans":3157,"direction":76},"Now, threat actors can scrape our entire digital footprints in seconds, synthesizing the data we willingly share, such as on LinkedIn and other social platforms, as well as data stolen or exposed through breaches. The same goes for company data, too.",[3158],{"start":446,"end":177,"type":71,"data":3159},{"link_type":73,"url":306,"target":75},{"type":65,"text":3161,"spans":3162,"direction":76},"For example, a hacker could create a database of potential high-value targets, then prompt a generative tool (such as ChatGPT) to draft a phishing email designed to hook these targets. And while these tools might include security guardrails preventing this behavior, it’s possible to sidestep these with a jailbreak prompt, for example, tricking a model into answering under the guise of a fictional persona, or responding in ‘development mode’.",[3163,3167],{"start":177,"end":3164,"type":71,"data":3165},77,{"link_type":73,"url":3166,"target":75},"https://www.crowdstrike.com/en-us/cybersecurity-101/cyberattacks/ai-powered-cyberattacks/",{"start":3168,"end":3169,"type":71,"data":3170},306,322,{"link_type":73,"url":3171,"target":75},"https://www.ibm.com/think/topics/prompt-injection#:~:text=%22Jailbreaking%22%20an%20LLM%20means%20writing,DAN%2C%22%20an%20AI%20model%20with",{"type":65,"text":3173,"spans":3174,"direction":76},"Luckily, IT and security teams can also leverage AI tools to help keep their data from falling into the wrong hands. You can help your team stay one step ahead by proactively scanning for data leaks impacting employees, classifying them according to severity, and guiding them on how to prepare for targeted attacks.",[3175],{"start":3176,"end":3177,"type":71,"data":3178},163,198,{"link_type":73,"url":292,"target":75},"article_content$753b6ead-d7f4-4342-a2d7-54bc3a5618da",{"variation":59,"version":60,"items":3181,"primary":3182,"id":3189,"slice_type":90,"slice_label":6},[],{"content":3183},[3184],{"type":65,"text":3185,"spans":3186,"direction":76},"Key cyber month takeaway: Limit what you share online, and scan proactively for breaches affecting your organization.",[3187],{"start":32,"end":3188,"type":229},117,"article_content$9e3ad2d5-4211-4f8f-974f-f7e5ba2a85fe",{"variation":59,"version":60,"items":3191,"primary":3192,"id":3202,"slice_type":3203,"slice_label":6},[],{"title":3193,"hubspot_form_id":3194,"image":3195},"15 Key Cybersecurity Practices for Every Employee","8dfe246c-c8ed-45ad-8bc8-15701e2800dd",{"dimensions":3196,"alt":3198,"copyright":6,"url":3199,"id":3200,"edit":3201},{"width":3197,"height":764},1520,"Riot 15 key cybersecurity practices","https://images.prismic.io/riot-website/ZqEYKh5LeNNTxdp6_Blog_15_practices_thumb.png?auto=format,compress","ZqEYKh5LeNNTxdp6",{"x":32,"y":32,"zoom":33,"background":34},"article_hubspot_form$797205dd-def6-4bfd-9ae7-c8d710868235","article_hubspot_form",{"variation":59,"version":60,"items":3205,"primary":3206,"id":3238,"slice_type":90,"slice_label":6},[],{"content":3207},[3208,3211,3219,3227],{"type":96,"text":3209,"spans":3210,"direction":76},"2. Running automated phishing and social engineering attacks",[],{"type":65,"text":3212,"spans":3213,"direction":76},"In the same way that AI tools have made it quick and easy to gather data on high-value targets, these tools have also automated the phishing and social engineering attacks aimed at these targets, too. These attacks can run around the clock and across time zones, and are customized to target individuals based on their digital footprints. It’s no wonder we’ve seen a 1,265% increase in phishing attacks targeting employees since the launch of ChatGPT in 2022.",[3214],{"start":3215,"end":3216,"type":71,"data":3217},367,402,{"link_type":73,"url":3218,"target":75},"https://spacelift.io/blog/phishing-statistics",{"type":65,"text":3220,"spans":3221,"direction":76},"Advances in AI are also enabling phishing-as-a-service operations, like Raccoon0365, to sell subscription-based phishing kits to unsophisticated cybercriminals to steal data from countries around the globe. In short, generative AI is accelerating all the stages of the social engineering lifecycle, much faster than a real-life hacker.",[3222],{"start":3223,"end":3224,"type":71,"data":3225},72,83,{"link_type":73,"url":3226,"target":75},"https://www.cybersecuritydive.com/news/microsoft-disrupts-global-phishing-credential-theft/760378/?utm_source=Sailthru&utm_medium=email&utm_campaign=Newsletter%20Weekly%20Roundup:%20Cybersecurity%20Dive:%20Daily%20Dive%2009-20-2025&utm_term=Cybersecurity%20Dive%20Weekender",{"type":65,"text":3228,"spans":3229,"direction":76},"To combat this escalation in automated social engineering attacks, AI-powered phishing simulations can help build a stronger shared defence. To try this approach for yourself, we’ve put together a quick-start guide on setting up and launching a phishing training campaign.",[3230,3234],{"start":3231,"end":302,"type":71,"data":3232},67,{"link_type":73,"url":3233,"target":75},"https://tryriot.com/simulation/",{"start":3235,"end":3236,"type":71,"data":3237},218,271,{"link_type":73,"url":234,"target":75},"article_content$05113057-74b2-4f95-92aa-163e9b220b62",{"variation":59,"version":60,"items":3240,"primary":3241,"id":3248,"slice_type":90,"slice_label":6},[],{"content":3242},[3243],{"type":65,"text":3244,"spans":3245,"direction":76},"Key cyber month takeaway: Teach your teams to identify targeted threats through phishing simulations and awareness training.",[3246],{"start":32,"end":3247,"type":229},124,"article_content$8c900a27-c6c9-4a8b-a343-721279a31981",{"variation":59,"version":60,"items":3250,"primary":3251,"id":3285,"slice_type":90,"slice_label":6},[],{"content":3252},[3253,3256,3263,3270,3277],{"type":96,"text":3254,"spans":3255,"direction":76},"3. Creating convincing deepfakes and synthetic media",[],{"type":65,"text":3257,"spans":3258,"direction":76},"While we’re on the topic of social engineering attacks, malicious actors are continuing to find innovative ways to use deepfakes and synthetic media as social proof, giving victims a false sense of security that makes them vulnerable to malicious activity.",[3259],{"start":3260,"end":648,"type":71,"data":3261},119,{"link_type":73,"url":3262,"target":75},"https://tryriot.com/blog/biggest-cyber-threats/",{"type":65,"text":3264,"spans":3265,"direction":76},"And hackers aren’t just targeting newbies, either. In one reported case, fraudsters used a series of AI deepfakes to trick an experienced CFO into thinking he was on a call with senior management, even convincing him to make a ‘routine transfer’ of $25 million.",[3266],{"start":3267,"end":3131,"type":71,"data":3268},101,{"link_type":73,"url":3269,"target":75},"https://www.weforum.org/stories/2025/02/deepfake-ai-cybercrime-arup/",{"type":65,"text":3271,"spans":3272,"direction":76},"Elsewhere, attackers are using AI platforms to create and host fake CAPTCHA pages to trick people into divulging their login credentials, enabling hackers of all levels of ability to launch and operate sophisticated social engineering attacks.",[3273],{"start":419,"end":3274,"type":71,"data":3275},81,{"link_type":73,"url":3276,"target":75},"https://www.infosecurity-magazine.com/news/attackers-abuse-ai-fake-captchas/",{"type":65,"text":3278,"spans":3279,"direction":76},"That’s why employee cybersecurity awareness training should include guidance on how to detect deepfakes and help employees to disrupt common attack types (for example, requests for credit card details or login credentials) with a side-channel verification. If you’re looking for a good place to start, we’ve got five key best practices to help.",[3280],{"start":3281,"end":3282,"type":71,"data":3283},312,335,{"link_type":73,"url":3284,"target":75},"https://tryriot.com/blog/best-practices-employee-cybersecurity-awareness/","article_content$19fe701d-831d-4064-aefb-0af7da2a0c43",{"variation":59,"version":60,"items":3287,"primary":3288,"id":3294,"slice_type":90,"slice_label":6},[],{"content":3289},[3290],{"type":65,"text":3291,"spans":3292,"direction":76},"Key cyber month takeaway: Encourage employees to stay skeptical of what they’re seeing and hearing, and use a side-channel to verify suspicious messages.",[3293],{"start":32,"end":147,"type":229},"article_content$3ec2666e-9067-4060-b130-a63817ed99e0",{"variation":59,"version":60,"items":3296,"primary":3297,"id":3319,"slice_type":90,"slice_label":6},[],{"content":3298},[3299,3302,3305,3313],{"type":96,"text":3300,"spans":3301,"direction":76},"4. Manipulating AI models and running data poisoning attacks",[],{"type":65,"text":3303,"spans":3304,"direction":76},"Attackers aren’t just using AI to target us, either. As more and more organizations increasingly embed AI into their workflows and systems, they’re also targeting the AI tools we use every day.",[],{"type":65,"text":3306,"spans":3307,"direction":76},"For example, using AI model manipulation and data poisoning, hackers can target our AI chatbots and in-house generative models with malicious prompts and jailbreaking. These attacks can cause an AI system to misclassify a threat, downgrade a warning, or even ignore malicious activity completely. They can also force AI models to divulge sensitive information.",[3308],{"start":3309,"end":3310,"type":71,"data":3311},168,181,{"link_type":73,"url":3312,"target":75},"https://www.blackfog.com/data-poisoning-attacks-hackers-target-ai-systems/",{"type":65,"text":3314,"spans":3315,"direction":76},"To insulate your employees and organization from attacks like this, your employee awareness training needs to focus on how to use AI models safely without exposing data. On top of that, regular reviews of AI tool privileges are key to ensuring clear data ownership and responsibility.",[3316],{"start":402,"end":1191,"type":71,"data":3317},{"link_type":73,"url":3318,"target":75},"https://tryriot.com/awareness/","article_content$62d6949e-1e20-4542-af9b-f42f196751f1",{"variation":59,"version":60,"items":3321,"primary":3322,"id":3328,"slice_type":90,"slice_label":6},[],{"content":3323},[3324],{"type":65,"text":3325,"spans":3326,"direction":76},"Key cyber month takeaway: Include the safe use of AI tools in your awareness training, specifically, knowing when to avoid sharing sensitive data with an AI model.",[3327],{"start":32,"end":3176,"type":229},"article_content$33d5a6f3-a9ec-4842-97df-e9c953fd7abe",{"variation":59,"version":60,"items":3330,"primary":3331,"id":3358,"slice_type":90,"slice_label":6},[],{"content":3332},[3333,3336,3339,3351],{"type":96,"text":3334,"spans":3335,"direction":76},"5. Automating malware development and software vulnerability exploitation",[],{"type":65,"text":3337,"spans":3338,"direction":76},"For our fifth and final AI threat, let’s look at malware. AI technology has made it possible for hackers to not only automate the development of bespoke malware, but also to scan for software vulnerabilities to exploit in order to deploy or spread this malware.",[],{"type":65,"text":3340,"spans":3341,"direction":76},"By using AI tools such as WormGPT or FraudGPT, hackers can launch sophisticated, tailor-made attacks that can infect organizational systems, steal data, or even bypass security measures. And even if these tools are taken down by authorities, copycat tools keep on popping up to help malicious actors. This AI-generated malware is also increasingly adaptive, making it harder for traditional defenses to detect in time.",[3342,3346],{"start":3343,"end":1191,"type":71,"data":3344},66,{"link_type":73,"url":3345,"target":75},"https://tyrex-cyber.com/en/ai-malware-understanding-and-preventing/",{"start":3347,"end":3348,"type":71,"data":3349},242,255,{"link_type":73,"url":3350,"target":75},"https://abnormal.ai/blog/what-happened-to-wormgpt-cybercriminal-tools",{"type":65,"text":3352,"spans":3353,"direction":76},"As sophisticated as this attack might be, the solution is simple: we need to educate our teams on detecting and avoiding malware, and knowing how to manage software vulnerabilities proactively and safely. These steps don’t only help to manage risks–they also boost the ROI of the budget we spend on security solutions.",[3354],{"start":3355,"end":1209,"type":71,"data":3356},259,{"link_type":73,"url":3357,"target":75},"https://tryriot.com/blog/cybersecurity-awareness-culture/","article_content$6bdbcc54-9bb4-4e23-8228-f1e2806d3297",{"variation":59,"version":60,"items":3360,"primary":3361,"id":3367,"slice_type":90,"slice_label":6},[],{"content":3362},[3363],{"type":65,"text":3364,"spans":3365,"direction":76},"Key cyber month takeaway: Cover the basics by showing people how to avoid spreading malware and manage their software vulnerabilities proactively.",[3366],{"start":32,"end":661,"type":229},"article_content$9c5bb424-bbd5-4f2a-aa12-af1255a1d8fe",{"variation":59,"version":60,"items":3369,"primary":3370,"id":3391,"slice_type":90,"slice_label":6},[],{"content":3371},[3372,3375,3378,3381,3384],{"type":96,"text":3373,"spans":3374,"direction":76},"Conclusion: Stay on top of AI threats by building a stronger shared security posture",[],{"type":65,"text":3376,"spans":3377,"direction":76},"Cyber Month is the ideal time to make cyber awareness a priority. And with AI threats evolving faster than ever, every employee needs to understand these threats and know how to stay safe.",[],{"type":65,"text":3379,"spans":3380,"direction":76},"To build a strong shared defense, security leaders everywhere need to equip their teams with practical defenses: regular phishing simulations, hands-on AI threat training, and clear procedures for reporting suspicious activity.",[],{"type":65,"text":3382,"spans":3383,"direction":76},"Building a stronger shared security posture means empowering everyone—from executives to front-line staff—to recognize threats and act quickly. The combination of awareness, proactive training, and AI-assisted monitoring creates a resilient defense that stays ahead of attackers.",[],{"type":65,"text":3385,"spans":3386,"direction":76},"To find out how Riot can help you stay on top of the latest threats with unforgettable training, sneaky phishing simulations, and much more, get in touch with one of our experts today.",[3387,3389],{"start":32,"end":3388,"type":85},184,{"start":3131,"end":147,"type":71,"data":3390},{"link_type":73,"url":454,"target":75},"article_content$b13d8c78-0b86-4121-9c63-2954aa1c781a",{"variation":59,"version":60,"items":3393,"primary":3394,"id":3395,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$6949b9f2-e38c-4665-aea9-e803bd18ffc4",{"variation":59,"version":60,"items":3397,"primary":3398,"id":3399,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$14e6b8a4-e8d6-4999-8561-1a2b59677c96","Protect your team this Cyber Month. Learn how to defend against AI threats with training, phishing simulations, and stronger cyber awareness.",{"dimensions":3402,"alt":3403,"copyright":6,"url":3404,"id":3110,"edit":3405},{"width":469,"height":470},"Cyber Month AI Threats","https://images.prismic.io/riot-website/aN-VKJ5xUNkB1cK4_Blog_Cyber_Month.avif?auto=format,compress&rect=0,49,2668,1401&w=2400&h=1260",{"x":32,"y":3406,"zoom":33,"background":34},49,{"id":3408,"uid":3409,"url":6,"type":7,"href":3410,"tags":3411,"first_publication_date":3413,"last_publication_date":3414,"slugs":3415,"linked_documents":3417,"lang":16,"alternate_languages":3418,"data":3421},"Z6CYDBIAACcAMz3o","announcing-series-b","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Z6CYDBIAACcAMz3o%22%29+%5D%5D",[3412],"News","2025-02-03T11:01:50+0000","2025-02-03T15:03:27+0000",[3416],"ai-is-changing-everything-we-knew-about-cybersecurity",[],[3419],{"id":3420,"type":7,"lang":20,"uid":3409},"Z6DVShIAACgAM7WL",{"date":3422,"title":3423,"author_name":3424,"author_position":3425,"author_profile_picture":3426,"thumbnail":3432,"image":3439,"created_at":3447,"slices":3448,"meta_description":3552,"meta_image":3553,"meta_title":3423},"February 3rd, 2025","Riot raises $30 million in Series B funding to champion employee security for the AI era","Benjamin Netter","Founder",{"dimensions":3427,"alt":6,"copyright":6,"url":3428,"id":3429,"edit":3430},{"width":28,"height":28},"https://images.prismic.io/riot-website/Z6CXZ5bqstJ9-J4k_squared-bn.jpg?auto=format,compress&rect=45,0,1278,1278&w=64&h=64","Z6CXZ5bqstJ9-J4k",{"x":3431,"y":32,"zoom":33,"background":34},45,{"dimensions":3433,"alt":3434,"copyright":6,"url":3435,"id":3436,"edit":3437},{"width":37,"height":38},"Team","https://images.prismic.io/riot-website/Z6Cf9pbqstJ9-J_I_0P5A8288-1-.JPG?auto=format,compress&rect=0,118,6720,4244&w=760&h=480","Z6Cf9pbqstJ9-J_I",{"x":32,"y":3438,"zoom":33,"background":34},118,{"dimensions":3440,"alt":3434,"copyright":6,"url":3441,"id":3436,"edit":3442,"Large":3443},{"width":45,"height":46},"https://images.prismic.io/riot-website/Z6Cf9pbqstJ9-J_I_0P5A8288-1-.JPG?auto=format,compress&rect=0,800,6720,2881&w=1220&h=523",{"x":32,"y":1266,"zoom":33,"background":34},{"dimensions":3444,"alt":3434,"copyright":6,"url":3445,"id":3436,"edit":3446},{"width":52,"height":53},"https://images.prismic.io/riot-website/Z6Cf9pbqstJ9-J_I_0P5A8288-1-.JPG?auto=format,compress&rect=0,800,6720,2881&w=2440&h=1046",{"x":32,"y":1266,"zoom":33,"background":34},"2025-02-03",[3449,3544,3548],{"variation":59,"version":60,"items":3450,"primary":3451,"id":3543,"slice_type":90,"slice_label":6},[],{"content":3452},[3453,3457,3460,3475,3480,3483,3486,3489,3492,3495,3498,3504,3507,3510,3513,3517,3520,3525,3528,3531],{"type":65,"text":3454,"spans":3455,"direction":76},"Riot has raised $30M in Series B funding led by Left Lane Capital, following triple-digit growth in 2024 to surpass $10M in annual revenue. From here, we’ll accelerate our international expansion, double our workforce, and scale our vision of employee security for the AI era.",[3456],{"start":32,"end":1182,"type":229},{"type":65,"text":3458,"spans":3459,"direction":76},"Today, Riot turns five. And that isn’t the only reason to celebrate. 🎂",[],{"type":65,"text":3461,"spans":3462,"direction":76},"We’ve raised $30 million in Series B funding to continue championing an employee security solution for the AI era. Led by Left Lane Capital, this round also features support from our existing investors at Y Combinator, Base10, and FundersClub.",[3463,3465,3468,3471,3473],{"start":163,"end":3464,"type":85},44,{"start":3466,"end":3467,"type":85},122,139,{"start":3469,"end":3470,"type":85},205,217,{"start":3472,"end":330,"type":85},219,{"start":3474,"end":3347,"type":85},231,{"type":65,"text":3476,"spans":3477,"direction":76},"I want to share a few words on what this means for the Riot community, and what happens from here. (In short: good things).",[3478],{"start":1215,"end":3479,"type":85},121,{"type":96,"text":3481,"spans":3482,"direction":76},"AI is changing everything we knew about cybersecurity",[],{"type":65,"text":3484,"spans":3485,"direction":76},"Advances in artificial intelligence have helped hackers everywhere level up. When it’s cheap and quick to synthesize publicly available data into a convincing and imaginative attack, any scammer can target anyone – and teams everywhere become much more vulnerable. Essentially, AI tools have made it possible to run unlimited world-class scams on autopilot.",[],{"type":65,"text":3487,"spans":3488,"direction":76},"This explains a lot. It explains the 1,265% increase in phishing attacks we’ve seen over the last two years – and the steady rise of data breaches eroding public trust in all kinds of organizations. It also explains why even mature companies continue to fall victim to these attacks. Even worse, every time one of these breaches happen, it only feeds new scams – which then snowball into even more breaches and scams.",[],{"type":65,"text":3490,"spans":3491,"direction":76},"The solutions we’ve relied on in the past are no match for the scale of this challenge. It’s no longer enough for us to just encourage a culture of cybersecurity awareness, because the threats are evolving faster than we can train people. Sure, we can – and should! – teach our teams to look out for phishing red flags and be responsible with data. But the threats we face now are too constant, personalized, and clever for the old way of doing things.",[],{"type":65,"text":3493,"spans":3494,"direction":76},"We still need awareness training – but we need to go beyond awareness and deliver something better. We need to build and maintain a tight shared security posture automatically. We need to safeguard our systems and data with proactive protections, and choke off potential scams before they get started. We need to stop feeding the hackers.",[],{"type":96,"text":3496,"spans":3497,"direction":76},"How Riot meets this challenge by putting people first",[],{"type":65,"text":3499,"spans":3500,"direction":76},"Over the past five years, the Riot team has grown to support over a million learners to be safer and more secure together. This journey has taught us a lot about what security leaders and their teams want from a cybersecurity solution – and what they don’t want.",[3501],{"start":3502,"end":3503,"type":229},251,256,{"type":65,"text":3505,"spans":3506,"direction":76},"We started Riot because we saw a need for a cybersecurity solution built with employee empowerment in mind. We could see how generic training modules were failing to engage learner curiosity or imagination, and how compliance solutions were taking too much time and effort. That’s why we developed a personalized, interactive solution giving people the support they need to take control of their security both personally and professionally.",[],{"type":65,"text":3508,"spans":3509,"direction":76},"Now, with our real-time employee cybersecurity monitoring solution, we’re helping companies build a better shared security posture. We do this by detecting potential employee vulnerabilities (for example, weak password protections or unsafe file permissions) and guiding people to resolve these weaknesses. We match these gaps with quick, memorable conversations with our cyber coach, Albert, sharing actionable tips and insights. And we do this where people already work, whether it’s Slack, Microsoft Teams, Google Chat or even over email.",[],{"type":65,"text":3511,"spans":3512,"direction":76},"This blend has enabled us to surpass $10 million in annual revenue in 2024, representing another year of triple-digit growth. It’s what’s allowed us to delight every one of the 1,500 organizations we support, including technology leaders like Mistral AI and Modern Treasury, as well as enterprises like L’Occitane, Deel, and Intercom.",[],{"type":65,"text":3514,"spans":3515,"direction":76},"And now, thanks to this round of fundraising, we’re going to do so much more.",[3516],{"start":32,"end":3164,"type":85},{"type":96,"text":3518,"spans":3519,"direction":76},"What happens next – and how you can be part of it",[],{"type":65,"text":3521,"spans":3522,"direction":76},"By 2027, our ambition is to protect more than ten million people around the world with Riot. We’ll be helping companies stay ahead of the latest sophisticated threats, and we’ll be making it easier to take control of the information hackers can find about us.",[3523],{"start":3524,"end":28,"type":85},46,{"type":65,"text":3526,"spans":3527,"direction":76},"To get there, we’ll soon be unveiling our aggregated security dashboard, with enhanced protections against data breaches and exfiltration, infostealers, and oversharing leading to social engineering attacks. We’ll also be announcing a big expansion to our awareness training program, and some even better ways to test our teams with attack simulations.",[],{"type":65,"text":3529,"spans":3530,"direction":76},"I’ll have more to share about these exciting developments soon. In the meantime, I’d like to thank the entire Riot community for helping us get here – and for being part of what’s coming next.",[],{"type":65,"text":3532,"spans":3533,"direction":76},"If you’d like to learn more about how Riot can help your organization stay safe, talk to one of our experts today. Alternatively, if you’re interested in joining the team, take a look at our open roles – we’d love to hear from you.",[3534,3538],{"start":3274,"end":3535,"type":71,"data":3536},113,{"link_type":73,"url":3537,"target":75},"https://tryriot.com/demo",{"start":3539,"end":3540,"type":71,"data":3541},172,201,{"link_type":73,"url":3542,"target":75},"https://jobs.lever.co/tryriot","article_content$ab7960f9-8d5c-406d-9a2d-5767bacfb660",{"variation":59,"version":60,"items":3545,"primary":3546,"id":3547,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$847918e6-6db8-4a57-a1c5-3488db45b4d6",{"variation":59,"version":60,"items":3549,"primary":3550,"id":3551,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":6},"blog_article_list$679f03a2-8394-42a6-8e63-ed175979101b","We’ve raised $30 million in Series B funding to continue championing an employee security solution for the AI era. Here's what happens next.",{"dimensions":3554,"alt":3555,"copyright":6,"url":3556,"id":3436,"edit":3557},{"width":469,"height":470},"Riot Cybersecurity Series B fundraising","https://images.prismic.io/riot-website/Z6Cf9pbqstJ9-J_I_0P5A8288-1-.JPG?auto=format,compress&rect=0,476,6720,3528&w=2400&h=1260",{"x":32,"y":3558,"zoom":33,"background":34},476,{"id":3560,"uid":3561,"url":6,"type":7,"href":3562,"tags":3563,"first_publication_date":3564,"last_publication_date":3565,"slugs":3566,"linked_documents":3568,"lang":16,"alternate_languages":3569,"data":3573},"Z0XDXhMAACEA5e_o","best-practices-employee-cybersecurity-awareness","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Z0XDXhMAACEA5e_o%22%29+%5D%5D",[599],"2024-11-26T13:28:33+0000","2026-06-09T15:22:20+0000",[3567],"best-practice-1-invest-in-unforgettable-cybersecurity-training",[],[3570],{"id":3571,"type":7,"lang":20,"uid":3572},"Z0XJABMAACIA5fmQ","bonnes-pratiques-sensibiliser-employes-cybersecurite",{"date":3574,"title":3575,"author_name":24,"author_position":3101,"author_profile_picture":3576,"thumbnail":3580,"image":3587,"created_at":3596,"slices":3597,"meta_description":3920,"meta_image":3921,"meta_title":3575},"November 2024","5 Best Practices to Increase Your Employees’ Cybersecurity Awareness",{"dimensions":3577,"alt":3578,"copyright":6,"url":29,"id":30,"edit":3579},{"width":28,"height":28},"Tom Baragwanath Riot",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":3581,"alt":3582,"copyright":6,"url":3583,"id":3584,"edit":3585},{"width":37,"height":38},"Best Practices for Employee Cybersecurity Awareness","https://images.prismic.io/riot-website/Z0XC0q8jQArT1UlF_Blog_CS_Awareness_Tips.webp?auto=format,compress&rect=0,39,2250,1421&w=760&h=480","Z0XC0q8jQArT1UlF",{"x":32,"y":3586,"zoom":33,"background":34},39,{"dimensions":3588,"alt":3582,"copyright":6,"url":3589,"id":3584,"edit":3590,"Large":3592},{"width":45,"height":46},"https://images.prismic.io/riot-website/Z0XC0q8jQArT1UlF_Blog_CS_Awareness_Tips.webp?auto=format,compress&rect=0,268,2250,965&w=1220&h=523",{"x":32,"y":3591,"zoom":33,"background":34},268,{"dimensions":3593,"alt":3582,"copyright":6,"url":3594,"id":3584,"edit":3595},{"width":52,"height":53},"https://images.prismic.io/riot-website/Z0XC0q8jQArT1UlF_Blog_CS_Awareness_Tips.webp?auto=format,compress&rect=0,268,2250,965&w=2440&h=1046",{"x":32,"y":3591,"zoom":33,"background":34},"2024-11-26",[3598,3617,3676,3687,3752,3812,3853,3892,3912,3916],{"variation":59,"version":60,"items":3599,"primary":3600,"id":3616,"slice_type":90,"slice_label":6},[],{"content":3601},[3602,3605,3608,3613],{"type":65,"text":3603,"spans":3604,"direction":76},"Today, businesses are facing a greater range of cybersecurity threats than ever. And as the number of threats has grown, so too has the level of risk involved – in fact, some malware attacks and data breaches can cause so much damage that businesses never fully recover.",[],{"type":65,"text":3606,"spans":3607,"direction":76},"A critical step in guarding against these attacks is to ensure every member of your team is equipped with the knowledge and skills required to recognize and respond to cyber threats. But how can you build the right security posture?",[],{"type":65,"text":3609,"spans":3610,"direction":76},"In this article, we explore five key best practices to increase your employees’ cybersecurity awareness and protect your organization from damaging cyber threats. From guiding people with the right policies to running regular phishing simulations, here’s how to get started.",[3611],{"start":32,"end":3612,"type":85},274,{"type":65,"text":3614,"spans":3615,"direction":76},"Let’s begin with a fundamental step: Invest in the right cybersecurity training.",[],"article_content$26c473a5-c035-4d65-bac1-e6db3b0aecae",{"variation":59,"version":60,"items":3618,"primary":3619,"id":3675,"slice_type":90,"slice_label":6},[],{"content":3620},[3621,3624,3634,3637,3646,3656,3663,3666],{"type":96,"text":3622,"spans":3623,"direction":76},"Best practice #1: Invest in unforgettable cybersecurity training",[],{"type":65,"text":3625,"spans":3626,"direction":76},"When building a strong cybersecurity posture, your first step should be to invest in memorable training that empowers employees to be the first line of defense against threats such as phishing, malware attacks, data breaches, and more. But remember, not all training is created equal.",[3627,3630],{"start":1657,"end":3464,"type":71,"data":3628},{"link_type":73,"url":3357,"target":3629},"_self",{"start":3631,"end":3632,"type":71,"data":3633},250,283,{"link_type":73,"url":142,"target":3629},{"type":65,"text":3635,"spans":3636,"direction":76},"Here’s how to elevate your cybersecurity training and ensure people remember what they learn:",[],{"type":251,"text":3638,"spans":3639,"direction":76},"Focus on real-world stories and scenarios: Some cybersecurity training can feel academic and unrelated to the threats people really face every day. Choose a solution that focuses on real-world stories and scenarios, giving people the practical tips and strategies they need to identify and respond to common cyber threats safely.",[3640,3642],{"start":32,"end":3641,"type":85},42,{"start":3643,"end":3644,"type":71,"data":3645},182,214,{"link_type":73,"url":179,"target":3629},{"type":251,"text":3647,"spans":3648,"direction":76},"Bring cybersecurity to life with interactive experiences: We’ve all clicked through boring slides and presentations on cybersecurity threats. But when real-life scams and hacks are so interesting (Mirai Botnet, anyone?), there’s no excuse for dull training – especially when you combine these stories with quizzes, simulations, and gamified experiences.",[3649,3651],{"start":32,"end":3650,"type":85},57,{"start":3652,"end":3653,"type":71,"data":3654},197,209,{"link_type":73,"url":3655,"target":75},"https://blog.cloudflare.com/inside-mirai-the-infamous-iot-botnet-a-retrospective-analysis/",{"type":251,"text":3657,"spans":3658,"direction":76},"Offer regular refreshers: Cybersecurity threats are constantly evolving, with scammers finding scary new ways to target us, including AI audio and video deep fakes. Help your employees keep up by offering refreshers on the latest threats and best practices.",[3659,3660],{"start":32,"end":203,"type":85},{"start":3661,"end":3176,"type":71,"data":3662},134,{"link_type":73,"url":3262,"target":3629},{"type":65,"text":3664,"spans":3665,"direction":76},"By prioritizing high-quality, unforgettable training, organizations can create a culture of vigilance, empowering employees to detect and mitigate cyber threats effectively, safeguard sensitive company data, and avoid scams.",[],{"type":65,"text":3667,"spans":3668,"direction":76},"Want to know if your cybersecurity awareness training is really making the right impact? Take a look at our free checklist on 12 essential cybersecurity metrics.",[3669,3671],{"start":32,"end":3670,"type":85},161,{"start":140,"end":3672,"type":71,"data":3673},160,{"link_type":73,"url":3674,"target":3629},"https://tryriot.com/toolbox/checklist-12-cybersecurity-metrics/","article_content$f4653db7-f48b-4c57-99ef-e359edca0cb8",{"variation":59,"version":60,"items":3677,"primary":3678,"id":3686,"slice_type":3203,"slice_label":6},[],{"title":3679,"hubspot_form_id":3680,"image":3681},"12 Essential Cybersecurity Metrics","144702b6-07ab-431d-bda0-425b8bc72f0e",{"dimensions":3682,"alt":6,"copyright":6,"url":3683,"id":3684,"edit":3685},{"width":3197,"height":764},"https://images.prismic.io/riot-website/ZmhxT5m069VX1pRA_thumbnail.4.png?auto=format,compress","ZmhxT5m069VX1pRA",{"x":32,"y":32,"zoom":33,"background":34},"article_hubspot_form$72b80ab3-1426-455a-aa43-91b10c46808a",{"variation":59,"version":60,"items":3688,"primary":3689,"id":3751,"slice_type":90,"slice_label":6},[],{"content":3690},[3691,3694,3705,3708,3713,3717,3721,3728,3732,3741,3744],{"type":96,"text":3692,"spans":3693,"direction":76},"Best practice #2: Run regular phishing simulations",[],{"type":65,"text":3695,"spans":3696,"direction":76},"Although cyber threats are always evolving, one thing stays the same: Phishing attacks are still the most common method hackers use to target organizations. These attacks rely on human error, tricking targets into clicking on malicious links, divulging sensitive information, or even transferring huge amounts of money under false pretences.",[3697,3700],{"start":3267,"end":709,"type":71,"data":3698},{"link_type":73,"url":3699,"target":75},"https://www.techradar.com/pro/phishing-attacks-surge-in-2024-as-cybercriminals-adopt-ai-tools-and-multi-channel-tactics",{"start":3701,"end":3702,"type":71,"data":3703},297,318,{"link_type":73,"url":3704,"target":75},"https://www.theguardian.com/technology/article/2024/may/17/uk-engineering-arup-deepfake-scam-hong-kong-ai-video",{"type":65,"text":3706,"spans":3707,"direction":76},"To protect your organization against phishing threats, you should run regular simulations to test people and give them the chance to identify and respond to attacks in safety. Here’s how:",[],{"type":251,"text":3709,"spans":3710,"direction":76},"Create realistic attack scenarios: To really test your teams, design phishing emails that mimic authentic tactics, such as urgent payment requests or fake login pages tailored to match someone’s real responsibilities. For example, you could test your accounts team with a late payment warning, or your HR team with a candidate reference check.",[3711],{"start":32,"end":3712,"type":85},34,{"type":251,"text":3714,"spans":3715,"direction":76},"Reward success: To get the best results out of your simulations, be sure to recognize employees who successfully recognize phishing attempts. This helps to build morale, reinforce positive behavior, and make your cybersecurity culture more visible.",[3716],{"start":32,"end":366,"type":85},{"type":251,"text":3718,"spans":3719,"direction":76},"Provide instant feedback: When employees fall for simulated phishing attempts, offer immediate feedback to explain their mistake and how to avoid it in the future. If you don’t follow up promptly enough, people will likely forget what they did wrong.",[3720],{"start":32,"end":203,"type":85},{"type":120,"url":3722,"alt":3723,"copyright":6,"dimensions":3724,"id":3726,"edit":3727},"https://images.prismic.io/riot-website/Zl8grJm069VX1ct6_Blog_Write_Cybersecurity_Courses_6.png?auto=format,compress","Phishing simulation results",{"width":630,"height":3725},1904,"Zl8grJm069VX1ct6",{"x":32,"y":32,"zoom":33,"background":34},{"type":251,"text":3729,"spans":3730,"direction":76},"Track your progress: Use analytics to measure how employees improve over time. A decrease in phishing simulation failures can indicate a stronger security posture and show that your awareness efforts are making the right impact.",[3731],{"start":32,"end":2163,"type":85},{"type":251,"text":3733,"spans":3734,"direction":76},"Know when not to phish: Some situations are a little too sensitive to use in phishing simulations, for example, announcements on workplace restructuring or pay bonuses. Try to avoid causing any unnecessary stress or disappointment when running simulations.",[3735,3736,3737],{"start":32,"end":1298,"type":85},{"start":210,"end":163,"type":229},{"start":596,"end":3738,"type":71,"data":3739},167,{"link_type":73,"url":3740,"target":75},"https://www.theguardian.com/uk-news/2021/may/10/train-firms-worker-bonus-email-is-actually-cyber-security-test",{"type":65,"text":3742,"spans":3743,"direction":76},"And remember, scammers are clever and inventive. So, take the time to craft a simulation that is every bit as sneaky and convincing as the real deal.",[],{"type":65,"text":3745,"spans":3746,"direction":76},"Learn more: How to Run a World-Class Phishing Simulation in 6 Steps",[3747,3748,3749],{"start":32,"end":3231,"type":229},{"start":32,"end":3231,"type":85},{"start":232,"end":3231,"type":71,"data":3750},{"link_type":73,"url":234,"target":3629},"article_content$d20b3d76-ffaa-421d-90c8-c1e967901546",{"variation":59,"version":60,"items":3753,"primary":3754,"id":3811,"slice_type":90,"slice_label":6},[],{"content":3755},[3756,3759,3762,3768,3771,3775,3784,3788,3792,3796,3800,3808],{"type":96,"text":3757,"spans":3758,"direction":76},"Best practice #3: Implement clear cybersecurity policies",[],{"type":65,"text":3760,"spans":3761,"direction":76},"No matter how experienced they may be, every employee needs a clear set of guidelines to understand how cybersecurity works in their organization. A concise, well-documented set of cybersecurity policies can give people a roadmap for safe behavior, ensuring everyone understands their duties and responsibilities.",[],{"type":65,"text":3763,"spans":3764,"direction":76},"A comprehensive set of policies covering best practices around vendor management and data security can also help you comply with regulatory frameworks such as NIS2.",[3765],{"start":1139,"end":3176,"type":71,"data":3766},{"link_type":73,"url":3767,"target":3629},"https://tryriot.com/blog/nis2-compliance-guide/",{"type":65,"text":3769,"spans":3770,"direction":76},"Here are some key cybersecurity policies to get you started:",[],{"type":251,"text":3772,"spans":3773,"direction":76},"Data handling practices: Your employees need guidance on how to handle sensitive data, such as encrypting files, using secure file-sharing platforms, and disposing of confidential documents correctly.",[3774],{"start":32,"end":1941,"type":85},{"type":251,"text":3776,"spans":3777,"direction":76},"Password management: Every organization needs a clear set of rules for creating strong passwords, including the use of multi-factor authentication (MFA) and password managers. This helps avoid common weak practices like password sharing or reusing passwords across platforms. And if you’re still not convinced, remember: The latest password cracking technology can crack many passwords in less than an hour.",[3778,3779],{"start":32,"end":2163,"type":85},{"start":3780,"end":3781,"type":71,"data":3782},365,406,{"link_type":73,"url":3783,"target":75},"https://www.techradar.com/pro/security/bad-news-many-of-todays-top-passwords-can-be-cracked-with-brute-force-in-less-than-an-hour",{"type":251,"text":3785,"spans":3786,"direction":76},"Device security: On top of requiring strong passwords and data handling practices, you should establish protocols for securing work devices, including personal devices used for work under a Bring Your Own Device (BYOD) policy.",[3787],{"start":32,"end":1657,"type":85},{"type":251,"text":3789,"spans":3790,"direction":76},"Third-party management and vendor security: Whenever you work with vendors and third-parties, you need to set clear guidelines around the security audits required for these business partners. You also need to use a rigorous due diligence process to ensure all third parties share your organization’s security posture.",[3791],{"start":32,"end":429,"type":85},{"type":251,"text":3793,"spans":3794,"direction":76},"Acceptable use guidelines: Many cyber attacks start with employees using company tools and systems for improper purposes. You need a policy to specify how company networks, emails, internet access, and company hardware should be used responsibly.",[3795],{"start":32,"end":176,"type":85},{"type":251,"text":3797,"spans":3798,"direction":76},"Incident reporting: It’s crucial to know exactly what to do in the case of a cybersecurity incident. Define clear procedures for reporting potential security breaches, suspicious activity, or threats to company data. Employees should know how and where to report issues without fear of repercussions.",[3799],{"start":32,"end":1880,"type":85},{"type":251,"text":3801,"spans":3802,"direction":76},"Digital footprint management: Your employees should know how to manage and minimize what they share online – including personal and professional updates. Taking control of our digital footprints is a critical step to stopping phishing attacks and other types of social engineering before they start.",[3803,3804],{"start":32,"end":104,"type":85},{"start":3805,"end":3806,"type":71,"data":3807},154,194,{"link_type":73,"url":306,"target":3629},{"type":65,"text":3809,"spans":3810,"direction":76},"And remember, this is a non-exhaustive list. You should give your employees clear and comprehensive guidance on any other subjects they might need to keep your organization safe.",[],"article_content$5acc062c-aff1-4777-b088-c7846ddae1a1",{"variation":59,"version":60,"items":3813,"primary":3814,"id":3852,"slice_type":90,"slice_label":6},[],{"content":3815},[3816,3819,3822,3825,3833,3837,3842,3849],{"type":96,"text":3817,"spans":3818,"direction":76},"Best practice #4: Prove your leadership commitment",[],{"type":65,"text":3820,"spans":3821,"direction":76},"A strong culture of employee cybersecurity awareness starts at the very top. If people see company leadership prioritizing cybersecurity, they’ll be more likely to adopt secure best practices and maintain these over time, rather than viewing them as just a compliance obligation.",[],{"type":65,"text":3823,"spans":3824,"direction":76},"Here’s how you can prove your leadership commitment to cybersecurity:",[],{"type":251,"text":3826,"spans":3827,"direction":76},"Lead by example: Company leaders should model good cybersecurity habits, from using strong passwords and MFA to participating in phishing simulations (more on that below). When employees see leaders prioritizing security, they’re more likely to follow suit.",[3828,3829],{"start":32,"end":1657,"type":85},{"start":164,"end":3830,"type":71,"data":3831},71,{"link_type":73,"url":3832,"target":3629},"https://tryriot.com/blog/cybersecurity-leadership/",{"type":251,"text":3834,"spans":3835,"direction":76},"Include company leadership in phishing simulations: Anyone can fall victim to phishing attacks – including company leadership. You should regularly include senior leaders in your phishing simulations to show your teams how committed they are to staying secure.",[3836],{"start":32,"end":1942,"type":85},{"type":251,"text":3838,"spans":3839,"direction":76},"Communicate clearly and openly: To really build the right culture of cybersecurity, you need to talk about it. This can include taking the time in company forums to highlight the latest threats and celebrate those who have successfully flagged them to your IT or security team.",[3840],{"start":32,"end":3841,"type":85},31,{"type":251,"text":3843,"spans":3844,"direction":76},"Celebrate awareness month: Finally, you should participate in National Cybersecurity Awareness Month by hosting events or challenges every October to reinforce the importance of a shared cybersecurity culture.",[3845,3846],{"start":32,"end":176,"type":85},{"start":673,"end":1191,"type":71,"data":3847},{"link_type":73,"url":3848,"target":3629},"https://tryriot.com/blog/cybersecurity-awareness-month/",{"type":65,"text":3850,"spans":3851,"direction":76},"And finally, let’s focus on choosing the right cybersecurity tools.",[],"article_content$1acdd3a3-3122-4b0c-bf04-40df4c254fd1",{"variation":59,"version":60,"items":3854,"primary":3855,"id":3891,"slice_type":90,"slice_label":6},[],{"content":3856},[3857,3860,3863,3867,3872,3876,3880,3884],{"type":96,"text":3858,"spans":3859,"direction":76},"Best practice #5: Choose cybersecurity tools that work for your team",[],{"type":65,"text":3861,"spans":3862,"direction":76},"Employee awareness training and phishing simulations are essential tools in your toolbox – but they’re not the only ones. Here are some other critical software tools that can help employees develop better cybersecurity habits and minimize disruption in case of an attack:",[],{"type":251,"text":3864,"spans":3865,"direction":76},"Password managers: Developing secure password habits can sometimes be a pain for employees. You can ease the burden by providing people with password management software that generates and stores strong, unique passwords securely.",[3866],{"start":32,"end":349,"type":85},{"type":251,"text":3868,"spans":3869,"direction":76},"Data Loss Prevention (DLP): The right DLP solution can automatically scan and track your data for any exfiltration risks, including alerting your team to unusual or risky behavior with your sensitive information.",[3870],{"start":32,"end":3871,"type":85},27,{"type":251,"text":3873,"spans":3874,"direction":76},"Endpoint protection: Consider using endpoint security software to protect devices from malware, ransomware, and other major cyber threats.",[3875],{"start":32,"end":2163,"type":85},{"type":251,"text":3877,"spans":3878,"direction":76},"Email security solutions: When email remains such a popular point of entry for cyberattacks, consider using tools that filter out phishing attempts, spam, and malware-laden emails before they reach employees’ inboxes.",[3879],{"start":32,"end":203,"type":85},{"type":251,"text":3881,"spans":3882,"direction":76},"Secure collaboration platforms: Ensure collaboration tools like messaging apps and cloud storage services are encrypted and compliant with the latest security standards.",[3883],{"start":32,"end":3841,"type":85},{"type":65,"text":3885,"spans":3886,"direction":76},"Learn more: 6 Warning Signs Your Team May Be Vulnerable to Cyber Attacks – and Our Tips to Stay Safe",[3887,3888],{"start":32,"end":1191,"type":229},{"start":232,"end":1191,"type":71,"data":3889},{"link_type":73,"url":3890,"target":3629},"https://tryriot.com/blog/cybersecurity-vulnerability-signs/","article_content$c34d88b5-6aaa-4600-b761-afff5db7797e",{"variation":59,"version":60,"items":3893,"primary":3894,"id":3911,"slice_type":90,"slice_label":6},[],{"content":3895},[3896,3899,3902,3905],{"type":96,"text":3897,"spans":3898,"direction":76},"Cyber threats are always evolving – stay on top with these 5 best practices",[],{"type":65,"text":3900,"spans":3901,"direction":76},"Building a culture of employee cybersecurity awareness is a continuous effort. It takes commitment from company leadership, as well as the investment of time and money: in the right awareness training, the right simulation platform, and the right software solutions to keep your teams – and your sensitive data – safe.",[],{"type":65,"text":3903,"spans":3904,"direction":76},"As the threat landscape continues to evolve, you can protect your teams by embracing these five best practices and encouraging everyone to make cybersecurity a top priority.",[],{"type":65,"text":3385,"spans":3906,"direction":76},[3907,3908],{"start":32,"end":3388,"type":85},{"start":3131,"end":3909,"type":71,"data":3910},183,{"link_type":73,"url":454,"target":3629},"article_content$4b7f4bae-54c2-4099-bcd3-c96e7f99ae91",{"variation":59,"version":60,"items":3913,"primary":3914,"id":3915,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$7da4c6e1-5674-440c-9e95-7c3d54a12bf9",{"variation":59,"version":60,"items":3917,"primary":3918,"id":3919,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$e74b7632-d9ef-4622-865f-824c5938d529","Adopt these 5 best practices to increase your employees' cybersecurity awareness and secure your data effectively. From phishing simulations to internal cybersecurity policies, we've got you covered.",{"dimensions":3922,"alt":3582,"copyright":6,"url":3923,"id":3584,"edit":3924},{"width":469,"height":470},"https://images.prismic.io/riot-website/Z0XC0q8jQArT1UlF_Blog_CS_Awareness_Tips.webp?auto=format,compress&rect=0,159,2250,1181&w=2400&h=1260",{"x":32,"y":3925,"zoom":33,"background":34},159,{"id":3927,"uid":3928,"url":6,"type":7,"href":3929,"tags":3930,"first_publication_date":3931,"last_publication_date":3932,"slugs":3933,"linked_documents":3935,"lang":16,"alternate_languages":3936,"data":3940},"ZuGt6hEAACIAhDFv","phishing-false-positives","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22ZuGt6hEAACIAhDFv%22%29+%5D%5D",[2022],"2024-09-11T14:51:52+0000","2026-06-09T15:21:16+0000",[3934],"what-are-false-positives-in-phishing-simulations",[],[3937],{"id":3938,"type":7,"lang":20,"uid":3939},"ZuGvDREAACMAhDNb","phishing-faux-positifs",{"date":3941,"title":3942,"author_name":3424,"author_position":3425,"author_profile_picture":3943,"thumbnail":3946,"image":3952,"created_at":3963,"slices":3964,"meta_description":4269,"meta_image":4270,"meta_title":3942},"September 2024","No More False Positives – Our 4-Step Method for Great Phishing Simulation Data",{"dimensions":3944,"alt":6,"copyright":6,"url":3428,"id":3429,"edit":3945},{"width":28,"height":28},{"x":3431,"y":32,"zoom":33,"background":34},{"dimensions":3947,"alt":3948,"copyright":6,"url":3949,"id":3950,"edit":3951},{"width":37,"height":38},"Phishing simulation false positives","https://images.prismic.io/riot-website/ZuGrsRoQrfVKl-nZ_Blog_Phishing_False_Positives.jpg?auto=format%2Ccompress&rect=0%2C101%2C6017%2C3800&w=760&h=480","ZuGrsRoQrfVKl-nZ",{"x":32,"y":3267,"zoom":33,"background":34},{"dimensions":3953,"alt":3948,"copyright":6,"url":3954,"id":3950,"edit":3955,"Large":3957},{"width":45,"height":46},"https://images.prismic.io/riot-website/ZuGrsRoQrfVKl-nZ_Blog_Phishing_False_Positives.jpg?auto=format%2Ccompress&rect=0%2C669%2C6017%2C2579&w=1220&h=523",{"x":32,"y":3956,"zoom":33,"background":34},669,{"dimensions":3958,"alt":3959,"copyright":6,"url":3960,"id":3950,"edit":3961},{"width":52,"height":53},"Phishing false positives","https://images.prismic.io/riot-website/ZuGrsRoQrfVKl-nZ_Blog_Phishing_False_Positives.jpg?auto=format%2Ccompress&rect=0%2C712%2C6017%2C2579&w=2440&h=1046",{"x":32,"y":3962,"zoom":33,"background":34},712,"2024-09-11",[3965,3981,4016,4078,4087,4124,4163,4241,4261,4265],{"variation":59,"version":60,"items":3966,"primary":3967,"id":3980,"slice_type":90,"slice_label":6},[],{"content":3968},[3969,3972,3977],{"type":65,"text":3970,"spans":3971,"direction":76},"We run phishing simulations to protect our teams from real scammers. But to truly keep us safe, we need these simulations to give us dependable data on who is detecting attacks safely, and who is still vulnerable. Unfortunately, false positives can make this a real challenge.",[],{"type":65,"text":3973,"spans":3974,"direction":76},"In this article, we explore the tricky problem of false positives in phishing simulations, and look at why users of platforms like KnowBe4 seem to experience so many of them. We’ll show you our four-step process for solving false positives at Riot – and how it helps our users.",[3975],{"start":32,"end":3976,"type":85},277,{"type":65,"text":3978,"spans":3979,"direction":76},"But first, let’s look at a basic question: what are false positives, and why do some phishing simulation platforms produce so many of them?",[],"article_content$987af8e7-68f8-45e2-91ac-10ccd3fbb50c",{"variation":59,"version":60,"items":3982,"primary":3983,"id":4015,"slice_type":90,"slice_label":6},[],{"content":3984},[3985,3988,3993,3996,3999,4006,4009],{"type":96,"text":3986,"spans":3987,"direction":76},"What are false positives in phishing simulations?",[],{"type":65,"text":3989,"spans":3990,"direction":76},"In phishing simulations, false positives occur when legitimate user actions in response to test emails (or messages) are flagged as failures by mistake.",[3991],{"start":32,"end":3992,"type":85},152,{"type":65,"text":3994,"spans":3995,"direction":76},"For example, let’s say a user has enabled antivirus software which scans all emails received and ‘clicks’ links in advance. In this case, your phishing simulation tool may register these clicks as failures in response to a test, when in reality the user hasn’t interacted with the test email at all.",[],{"type":65,"text":3997,"spans":3998,"direction":76},"When running simulations, there are a few signs you might have a problem with false positives. For example, if you send a phishing test and start getting fail notifications in just a few seconds, it’s highly likely these are false positives. The same goes for campaigns with 100% fail rates.",[],{"type":65,"text":4000,"spans":4001,"direction":76},"False positives might sound like just an occasional inaccuracy – but the problem is much bigger than that. In fact, some studies have found a fifth of all cybersecurity alerts are false positives.",[4002],{"start":1170,"end":4003,"type":71,"data":4004},195,{"link_type":73,"url":4005,"target":75},"https://www.securitymagazine.com/articles/97260-one-fifth-of-cybersecurity-alerts-are-false-positives",{"type":65,"text":4007,"spans":4008,"direction":76},"If you’re running phishing simulations to help you identify the members of your team who are most vulnerable to real attacks, false positives are more than just a bug in the system. In some cases, they can actually increase your risk of getting phished for real.",[],{"type":65,"text":3745,"spans":4010,"direction":76},[4011,4012,4013],{"start":32,"end":3231,"type":229},{"start":32,"end":3231,"type":85},{"start":232,"end":3231,"type":71,"data":4014},{"link_type":73,"url":234,"target":3629},"article_content$32373df1-5f5c-424d-9455-0b9e3f561184",{"variation":59,"version":60,"items":4017,"primary":4018,"id":4077,"slice_type":90,"slice_label":6},[],{"content":4019},[4020,4023,4026,4029,4035,4041,4044,4047,4052,4059,4062,4065,4068],{"type":96,"text":4021,"spans":4022,"direction":76},"The 5 biggest risks of relying on false positives",[],{"type":65,"text":4024,"spans":4025,"direction":76},"False positives might sound like just a minor nuisance, but they’re actually a big deal. Here’s why.",[],{"type":116,"text":4027,"spans":4028,"direction":76},"#1: False positives make it harder to optimise phishing awareness training",[],{"type":65,"text":4030,"spans":4031,"direction":76},"Running consecutive phishing simulations allows you to set a baseline of vulnerability, identify who on your team needs more training to detect attacks safely, and reduce your risks to cyber threats over time. But to do this, you need to be able to trust your results.",[4032],{"start":4033,"end":3177,"type":71,"data":4034},164,{"link_type":73,"url":3262,"target":3629},{"type":120,"url":4036,"alt":4037,"copyright":6,"dimensions":4038,"id":4039,"edit":4040},"https://images.prismic.io/riot-website/Zl8JyZm069VX1cX0_Blog_Boring_Training_3.png?auto=format,compress","Riot phishing simulation results",{"width":630,"height":3725},"Zl8JyZm069VX1cX0",{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":4042,"spans":4043,"direction":76},"If not, it may seem like your teams are more susceptible to phishing attacks than they actually are. You might end up sending subsequent phishing tests or training courses to the wrong cohorts, wasting everyone’s time, energy, and money. And speaking of money…",[],{"type":116,"text":4045,"spans":4046,"direction":76},"#2: False positives make it impossible to allocate resources correctly",[],{"type":65,"text":4048,"spans":4049,"direction":76},"False positives can make it impossible to allocate the right training resources, creating the risk that some of your learners end up completing their phishing awareness training over and over without really needing to. Even worse, those that do need the training might end up missing out.",[4050],{"start":3347,"end":4051,"type":229},244,{"type":65,"text":4053,"spans":4054,"direction":76},"When our cybersecurity budgets are under the microscope, false positives are a mistake we simply can’t afford to make.",[4055],{"start":294,"end":4056,"type":71,"data":4057},55,{"link_type":73,"url":4058,"target":75},"https://www.techtarget.com/searchsecurity/feature/Cybersecurity-budget-trends",{"type":116,"text":4060,"spans":4061,"direction":76},"#3: False positives prevent clear compliance and reporting",[],{"type":65,"text":4063,"spans":4064,"direction":76},"Every successful organization runs on good data – and phishing simulations are no exception. Simply put, if leadership can’t trust your simulation results and track the risks of real attacks, they won’t know whether you’re moving the needle in the right direction.",[],{"type":65,"text":4066,"spans":4067,"direction":76},"Even worse, inaccurate data can also make it much more challenging to confirm your compliance with cybersecurity regulations and report to your stakeholders. In the worst case scenario, this could even have legal implications for your organization.",[],{"type":65,"text":4069,"spans":4070,"direction":76},"Need some help staying on top of your cybersecurity metrics? Check out our free checklist.",[4071,4073,4074],{"start":32,"end":4072,"type":229},90,{"start":32,"end":4072,"type":85},{"start":4075,"end":139,"type":71,"data":4076},75,{"link_type":73,"url":3674,"target":3629},"article_content$ef4738eb-9761-4d8b-9ffa-7b428a1b87c1",{"variation":59,"version":60,"items":4079,"primary":4080,"id":4086,"slice_type":3203,"slice_label":6},[],{"title":3679,"hubspot_form_id":3680,"image":4081},{"dimensions":4082,"alt":6,"copyright":6,"url":4083,"id":4084,"edit":4085},{"width":3197,"height":764},"https://images.prismic.io/riot-website/Zmhr7Jm069VX1pMM_thumbnail.1.png?auto=format,compress","Zmhr7Jm069VX1pMM",{"x":32,"y":32,"zoom":33,"background":34},"article_hubspot_form$a4af2903-47e4-46aa-89d4-cc4aca242154",{"variation":59,"version":60,"items":4088,"primary":4089,"id":4123,"slice_type":90,"slice_label":6},[],{"content":4090},[4091,4094,4101,4108,4111,4114,4117,4120],{"type":116,"text":4092,"spans":4093,"direction":76},"#4: False positives can be a huge drain on employee morale",[],{"type":65,"text":4095,"spans":4096,"direction":76},"Failing a phishing simulation is a stressful experience for anyone. Even worse? Being flagged for a mistake you didn’t even make. In a worst-case scenario, false positives can erode trust in your cybersecurity awareness training, leading to lower engagement and fewer completions.",[4097],{"start":4098,"end":4099,"type":71,"data":4100},196,228,{"link_type":73,"url":3357,"target":3629},{"type":65,"text":4102,"spans":4103,"direction":76},"Not to mention, false positives are a big pain for your security team to have to keep chasing up. In extreme cases, they might even create the risk of burnout for you or your staff.",[4104],{"start":4105,"end":731,"type":71,"data":4106},132,{"link_type":73,"url":4107,"target":75},"https://www.intelligentciso.com/2024/03/07/fighting-back-against-cybersecurity-burnout/",{"type":65,"text":4109,"spans":4110,"direction":76},"And last but not least…",[],{"type":116,"text":4112,"spans":4113,"direction":76},"#5: False positives can make your phishing simulations pointless",[],{"type":65,"text":4115,"spans":4116,"direction":76},"Running phishing simulations involves an investment of time, energy, and relationship capital. Not only do you have to invest in the platform itself, but you have to convince your teams to get on board with being tricked in a safe environment.",[],{"type":65,"text":4118,"spans":4119,"direction":76},"So, if at the end of all that, your simulations aren’t even telling you who is still vulnerable, then why should you run them in the first place?",[],{"type":65,"text":4121,"spans":4122,"direction":76},"Now, let’s look at another big question: Why do some phishing simulation tools produce so many false positives? And more importantly, why are so many users still putting up with it?",[],"article_content$9b028885-3ff0-4e54-b11d-38167bce0ee2",{"variation":59,"version":60,"items":4125,"primary":4126,"id":4162,"slice_type":90,"slice_label":6},[],{"content":4127},[4128,4131,4147,4150,4153,4156,4159],{"type":96,"text":4129,"spans":4130,"direction":76},"Why are users of platforms like KnowBe4 getting so many false positives?",[],{"type":65,"text":4132,"spans":4133,"direction":76},"At Riot, we’re always curious about what’s happening with the competition. And lately, we’ve noticed an uptick in discussion about false positives with other simulation tools, with KnowBe4, Proofpoint, and even Microsoft users flagging issues.",[4134,4136,4139,4143],{"start":32,"end":4135,"type":85},243,{"start":3310,"end":195,"type":71,"data":4137},{"link_type":73,"url":4138,"target":75},"https://www.reddit.com/r/sysadmin/comments/1cgv5h2/recent_false_positives_with_knowbe4_campaign/",{"start":4140,"end":1197,"type":71,"data":4141},190,{"link_type":73,"url":4142,"target":75},"https://www.reddit.com/r/proofpoint/comments/1ertc3a/proofpoint_false_positive_block_ip_and_no/",{"start":4144,"end":1221,"type":71,"data":4145},211,{"link_type":73,"url":4146,"target":75},"https://www.channele2e.com/brief/microsoft-resolves-widespread-false-positive-malware-email-issue",{"type":65,"text":4148,"spans":4149,"direction":76},"There are a few reasons as to why this might be happening:",[],{"type":251,"text":4151,"spans":4152,"direction":76},"Every great phishing platform needs great user onboarding. If user organizations aren’t getting the right guidance on how to avoid false positives safely and efficiently, it’s no wonder they’re running into trouble.",[],{"type":251,"text":4154,"spans":4155,"direction":76},"Some phishing platforms may not be paying close enough attention to the latest developments in automated security solutions, meaning their simulations aren’t capable of detecting legitimate responses to phishing tests and sorting these from the real fails.",[],{"type":251,"text":4157,"spans":4158,"direction":76},"Some platforms may not give users the ability to perform manual reviews of failures in response to phishing tests, making it harder for system admins to investigate and resolve false positives.",[],{"type":65,"text":4160,"spans":4161,"direction":76},"Fortunately for our users, we’re fighting the good fight against false positives.",[],"article_content$0134e040-21da-4912-845a-5f056e39fbfc",{"variation":59,"version":60,"items":4164,"primary":4165,"id":4240,"slice_type":90,"slice_label":6},[],{"content":4166},[4167,4170,4173,4178,4181,4189,4192,4195,4198,4201,4207,4215,4218,4221,4224,4231,4234,4237],{"type":96,"text":4168,"spans":4169,"direction":76},"How Riot fights false positives in 4 steps",[],{"type":65,"text":4171,"spans":4172,"direction":76},"We know how important it is for our users to have clear, dependable data when it comes to their phishing simulations. After all, you’re putting in the time and effort to craft something sneaky enough to test your team – the least we can do is make sure you only count the true fails!",[],{"type":65,"text":4174,"spans":4175,"direction":76},"Here’s how we fight false positives in four steps at Riot.",[4176],{"start":32,"end":4177,"type":85},58,{"type":116,"text":4179,"spans":4180,"direction":76},"Step 1: Build a detailed profile of how real users behave",[],{"type":65,"text":4182,"spans":4183,"direction":76},"Most false positives start when security systems automatically scan or check phishing simulation emails and the links they contain. To solve for this, we’ve built a detailed profile of how our real users behave, which we use to filter out behavior that doesn’t originate from real users.",[4184,4186],{"start":4185,"end":3652,"type":229},193,{"start":4187,"end":4188,"type":229},253,260,{"type":65,"text":4190,"spans":4191,"direction":76},"For example, if a user clicks on a test email a hundredth of a second after it was sent, this tells us it’s likely just a headless browser or Chrome extension. Similarly, real users have plugins and browser language preferences – so we screen for users with no plugins or language settings.",[],{"type":65,"text":4193,"spans":4194,"direction":76},"Of course, security systems are evolving every day, becoming more nuanced and sophisticated. That’s why we’re constantly updating our user profile to keep up.",[],{"type":116,"text":4196,"spans":4197,"direction":76},"Step 2: Detect and block thousands (and thousands!) of bots",[],{"type":65,"text":4199,"spans":4200,"direction":76},"Another critical step is to detect and block bots from interfering with our users’ phishing simulation results. And we’re not just talking about a couple of bots here and there – each month, we block between 4,000 and 5,000 bots (and counting). But to do this, we need the right tools.",[],{"type":65,"text":4202,"spans":4203,"direction":76},"At Riot, we use Fingerprint to filter bots from creating inaccurate data. This tool provides accurate insights into user touch points, sorting through unique identifiers for each machine to establish who are the real users.",[4204],{"start":1657,"end":3871,"type":71,"data":4205},{"link_type":73,"url":4206,"target":75},"https://fingerprint.com/",{"type":65,"text":4208,"spans":4209,"direction":76},"We use a variety of backend techniques to prevent false positives, including IP address checks and checking for banned IPs. For example, in our most recent update, we’ve started filtering for users running Chrome DevTools Protocol (CDP), as this tells us a user is probably a bot.",[4210],{"start":4211,"end":4212,"type":71,"data":4213},206,230,{"link_type":73,"url":4214,"target":75},"https://developer.chrome.com/blog/cdp-command-editor",{"type":116,"text":4216,"spans":4217,"direction":76},"Step 3: Work closely with our users to configure simulations correctly",[],{"type":65,"text":4219,"spans":4220,"direction":76},"To avoid false positives in phishing simulations, we also work closely with our users to make sure their campaigns are correctly configured. In practice, this means:",[],{"type":251,"text":4222,"spans":4223,"direction":76},"‘Whitelisting’ (approving in advance) domains used in phishing simulations, meaning user security systems such as firewalls won’t automatically block the test.",[],{"type":251,"text":4225,"spans":4226,"direction":76},"Encouraging users to be aware of how the wider set of tools they use could interfere with their simulations. For example, if users are running Selenium to automate their browsers, this could result in a spike in false positives.",[4227],{"start":697,"end":4228,"type":71,"data":4229},151,{"link_type":73,"url":4230,"target":75},"https://www.selenium.dev/",{"type":251,"text":4232,"spans":4233,"direction":76},"Helping system admins to define the user actions that will be considered as failures in response to phishing tests – and communicating these clearly to their teams.",[],{"type":116,"text":4235,"spans":4236,"direction":76},"Step 4: Rinse and repeat!",[],{"type":65,"text":4238,"spans":4239,"direction":76},"Preventing false positives in phishing is an ongoing project. That’s why we’re constantly repeating these steps to keep phishing simulation data as clear and accurate as possible. And while it’s impossible to prevent 100% of false positives, our goal is to get as close as we can.",[],"article_content$a7bb645b-4f69-40ab-94a9-ef1e870fea26",{"variation":59,"version":60,"items":4242,"primary":4243,"id":4260,"slice_type":90,"slice_label":6},[],{"content":4244},[4245,4248,4251,4254],{"type":96,"text":4246,"spans":4247,"direction":76},"Don’t settle for bad phishing simulation data",[],{"type":65,"text":4249,"spans":4250,"direction":76},"Running great phishing simulations takes time and energy. You need to craft the right hooks, track your campaigns, and follow up with awareness training to improve your security posture.",[],{"type":65,"text":4252,"spans":4253,"direction":76},"One thing you really don’t need? False positives. That’s why we’re working so hard to stop false positives and ensure our users have dependable, accurate, and actionable simulation data.",[],{"type":65,"text":4255,"spans":4256,"direction":76},"To find out how Riot can help you and your team stay on top of the latest cyber threats with fantastic phishing simulations and clear data, get in touch with one of our experts today.",[4257,4258],{"start":32,"end":3909,"type":85},{"start":1170,"end":3643,"type":71,"data":4259},{"link_type":73,"url":454,"target":3629},"article_content$8620c9f2-a018-4ab1-804c-7e1b44d0c031",{"variation":59,"version":60,"items":4262,"primary":4263,"id":4264,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$7aa8bd61-4df0-4b70-8f1e-fb429ee422bd",{"variation":59,"version":60,"items":4266,"primary":4267,"id":4268,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$927d5a1b-c73a-45b4-9544-3ab000694506","We explore the tricky problem of false positives in phishing simulations, and look at why users of platforms like KnowBe4 seem to experience so many of them.",{"dimensions":4271,"alt":3948,"copyright":6,"url":4272,"id":3950,"edit":4273},{"width":469,"height":470},"https://images.prismic.io/riot-website/ZuGrsRoQrfVKl-nZ_Blog_Phishing_False_Positives.jpg?auto=format%2Ccompress&rect=0%2C422%2C6017%2C3159&w=2400&h=1260",{"x":32,"y":4274,"zoom":33,"background":34},422,{"id":4276,"uid":4277,"url":6,"type":7,"href":4278,"tags":4279,"first_publication_date":4281,"last_publication_date":4282,"slugs":4283,"linked_documents":4285,"lang":16,"alternate_languages":4286,"data":4290},"Zs8z2xEAAB8AzuTS","cybersecurity-leadership","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Zs8z2xEAAB8AzuTS%22%29+%5D%5D",[4280],"Leadership","2024-08-28T14:30:01+0000","2026-06-09T15:20:37+0000",[4284],"cybersecurity-is-crucial--but-do-companies-actually-care",[],[4287],{"id":4288,"type":7,"lang":20,"uid":4289},"Zs822xEAACAAzx_Q","direction-cybersecurite",{"date":4291,"title":4292,"author_name":3424,"author_position":3425,"author_profile_picture":4293,"thumbnail":4296,"image":4302,"created_at":4312,"slices":4313,"meta_description":4544,"meta_image":4545,"meta_title":4292},"August 2024","Cybersecurity Leadership is Crucial – So Where Are All the C-Suite CISOs?",{"dimensions":4294,"alt":6,"copyright":6,"url":3428,"id":3429,"edit":4295},{"width":28,"height":28},{"x":3431,"y":32,"zoom":33,"background":34},{"dimensions":4297,"alt":4298,"copyright":6,"url":4299,"id":4300,"edit":4301},{"width":37,"height":38},"Cybersecurity leadership","https://images.prismic.io/riot-website/Zs8yN0aF0TcGJeeU_Blog_leadership.avif?auto=format%2Ccompress&rect=0%2C66%2C2971%2C1876&w=760&h=480","Zs8yN0aF0TcGJeeU",{"x":32,"y":3343,"zoom":33,"background":34},{"dimensions":4303,"alt":4298,"copyright":6,"url":4304,"id":4300,"edit":4305,"Large":4307},{"width":45,"height":46},"https://images.prismic.io/riot-website/Zs8yN0aF0TcGJeeU_Blog_leadership.avif?auto=format%2Ccompress&rect=0%2C468%2C2971%2C1274&w=1220&h=523",{"x":32,"y":4306,"zoom":33,"background":34},468,{"dimensions":4308,"alt":4298,"copyright":6,"url":4309,"id":4300,"edit":4310},{"width":52,"height":53},"https://images.prismic.io/riot-website/Zs8yN0aF0TcGJeeU_Blog_leadership.avif?auto=format%2Ccompress&rect=0%2C464%2C2971%2C1274&w=2440&h=1046",{"x":32,"y":4311,"zoom":33,"background":34},464,"2024-08-28",[4314,4339,4385,4393,4441,4516,4536,4540],{"variation":59,"version":60,"items":4315,"primary":4316,"id":4338,"slice_type":90,"slice_label":6},[],{"content":4317},[4318,4321,4328,4335],{"type":65,"text":4319,"spans":4320,"direction":76},"If we take companies at their word, they’re more committed to cybersecurity than ever. And so they should be – cyber attacks have never been so sophisticated or potentially damaging.",[],{"type":65,"text":4322,"spans":4323,"direction":76},"But beyond all the platitudes, are companies actually committed to cybersecurity? If so, why do only 5% of the latest Fortune 100 companies feature a security professional in their executive leadership? And what does this lack of boardroom or C-suite representation tell us?",[4324,4325],{"start":3431,"end":424,"type":229},{"start":3267,"end":3467,"type":71,"data":4326},{"link_type":73,"url":4327,"target":75},"https://krebsonsecurity.com/2023/07/few-fortune-100-firms-list-security-pros-in-their-executive-ranks/",{"type":65,"text":4329,"spans":4330,"direction":76},"In this article, we’ll explore the gap between what companies say about their cybersecurity commitments, and what they actually do in practice. Then, we’ll offer practical suggestions on how to champion a culture of cybersecurity no matter who has a seat at the table.",[4331,4332,4333],{"start":32,"end":3591,"type":85},{"start":673,"end":451,"type":229},{"start":2592,"end":4334,"type":229},130,{"type":65,"text":4336,"spans":4337,"direction":76},"Let’s start with a fundamental question.",[],"article_content$227c3d79-67ff-41af-a6e5-aae9a19cf0f5",{"variation":59,"version":60,"items":4340,"primary":4341,"id":4384,"slice_type":90,"slice_label":6},[],{"content":4342},[4343,4346,4349,4354,4360,4366,4372,4379],{"type":96,"text":4344,"spans":4345,"direction":76},"Cybersecurity is crucial – but do companies actually care?",[],{"type":65,"text":4347,"spans":4348,"direction":76},"‘We remain committed to customer privacy and security.’ Every time companies announce a security incident, they say these words.",[],{"type":65,"text":4350,"spans":4351,"direction":76},"But if companies are so committed to cybersecurity, why are they always getting scammed?",[4352],{"start":32,"end":4353,"type":85},88,{"type":65,"text":4355,"spans":4356,"direction":76},"In 2023, for example, there were 3,122 major reported data breaches in the US alone, affecting the data of an estimated 353 million users in total. That’s a lot of successful cyber attacks for such a security-conscious group of organizations.",[4357],{"start":444,"end":3224,"type":71,"data":4358},{"link_type":73,"url":4359,"target":75},"https://www.idtheftcenter.org/publication/2023-data-breach-report/",{"type":65,"text":4361,"spans":4362,"direction":76},"Of course, companies saying one thing and doing another is hardly new. What makes this situation different is the scale of the threat of phishing, data breaches, and other cyber attacks – and the grave consequences of these attacks for customers and shareholders.",[4363],{"start":69,"end":4364,"type":71,"data":4365},145,{"link_type":73,"url":3262,"target":75},{"type":65,"text":4367,"spans":4368,"direction":76},"Let’s stick with the data breach example. Each year, 83% of US organizations report being the victims of at least one breach, with each breach costing an average of $9.44 million USD. For publicly-traded companies, these breaches also wipe out an average of 7.5% in stock value. In competitive markets, these consequences aren’t just serious – they’re existential.",[4369],{"start":424,"end":452,"type":71,"data":4370},{"link_type":73,"url":4371,"target":75},"https://hbr.org/2023/05/the-devastating-business-impacts-of-a-cyber-breach?ab=at_art_art_1x4_s01",{"type":65,"text":4373,"spans":4374,"direction":76},"There are, however, positive signs in how leaders now view cybersecurity. Whereas company boards might once have viewed the threat of data breaches and other cyber attacks as something for IT to deal with, 88% of boards today consider cybersecurity to be a broader business risk. This means they’re more likely to give these threats the time and attention they deserve.",[4375,4376],{"start":32,"end":402,"type":85},{"start":4211,"end":3472,"type":71,"data":4377},{"link_type":73,"url":4378,"target":75},"https://www.gartner.com/en/newsroom/press-releases/2022-02-24-gartner-says-the-cybersecurity-leader-s-role-needs-to",{"type":65,"text":4380,"spans":4381,"direction":76},"Unfortunately, there’s one cybersecurity metric that still refuses to budge.",[4382],{"start":3871,"end":854,"type":71,"data":4383},{"link_type":73,"url":3674,"target":75},"article_content$c16dc951-c6c7-4509-b3a4-6345f1e745bf",{"variation":59,"version":60,"items":4386,"primary":4387,"id":4392,"slice_type":3203,"slice_label":6},[],{"title":3679,"hubspot_form_id":3680,"image":4388},{"dimensions":4389,"alt":4390,"copyright":6,"url":4083,"id":4084,"edit":4391},{"width":3197,"height":764},"12 key cybersecurity metrics",{"x":32,"y":32,"zoom":33,"background":34},"article_hubspot_form$f1f4b9eb-ff8f-41a5-88cf-0fdd2b963e2a",{"variation":59,"version":60,"items":4394,"primary":4395,"id":4440,"slice_type":90,"slice_label":6},[],{"content":4396},[4397,4400,4411,4422,4426,4437],{"type":96,"text":4398,"spans":4399,"direction":76},"Why are so many security leaders still shut out of the C-suite?",[],{"type":65,"text":4401,"spans":4402,"direction":76},"Despite increased awareness of the importance of cybersecurity, the majority of companies still don’t feature security professionals (Chief Security Officers or Chief Information Security Officers) in their C-suites or boards of directors. According to a 2022 study, just 12% of all CISOs have a company board seat.",[4403,4407],{"start":3177,"end":4404,"type":71,"data":4405},215,{"link_type":73,"url":4406,"target":75},"https://www.investopedia.com/terms/c/c-suite.asp",{"start":1209,"end":4408,"type":71,"data":4409},288,{"link_type":73,"url":4410,"target":75},"https://techmonitor.ai/technology/cybersecurity/ciso-on-the-board",{"type":65,"text":4412,"spans":4413,"direction":76},"But the situation could be worse – some estimates suggest 45% of companies don’t have a CISO at all. In fact, the smaller the organization, the more likely it is to operate without a CISO or CSO: While only 10% of organizations with 5,000+ employees are operating without these roles, this figure is 52% for mid-sized organizations, and 64% for small organizations.",[4414,4418],{"start":4177,"end":4415,"type":71,"data":4416},74,{"link_type":73,"url":4417,"target":75},"https://securityintelligence.com/articles/do-you-really-need-a-ciso/",{"start":4419,"end":3806,"type":71,"data":4420},165,{"link_type":73,"url":4421,"target":75},"https://venturebeat.com/datadecisionmakers/startups-without-a-ciso-youre-losing-out-on-a-big-business-opportunity/",{"type":65,"text":4423,"spans":4424,"direction":76},"So, when companies are touting their commitment to cybersecurity in public statements and charters, why are so few security leaders given a seat at the table? Is it because executives don’t value security as much as other functions, such as finance or HR?",[4425],{"start":32,"end":731,"type":85},{"type":65,"text":4427,"spans":4428,"direction":76},"This might be one factor – but there’s also the question of aptitude: according to some assessments, only one in ten CISOs are actually board-ready. And with the average board size of S&P 500 companies being around 11 people, there are only so many seats to go around.",[4429,4433],{"start":3267,"end":4430,"type":71,"data":4431},147,{"link_type":73,"url":4432,"target":75},"https://www.csoonline.com/article/575461/only-one-in-10-cisos-today-are-board-ready-study-says.html",{"start":4434,"end":3540,"type":71,"data":4435},162,{"link_type":73,"url":4436,"target":75},"https://www.bloomberg.com/news/articles/2022-06-29/s-p-500-boards-have-100-seats-open-to-add-diverse-candidates#xj4y7vzkg",{"type":65,"text":4438,"spans":4439,"direction":76},"This is why it’s so important for companies to support CISOs and CSOs in their ongoing professional development. This way, when the time comes for them to take a seat at the C-suite or boardroom table, they’ll be ready to champion great cybersecurity leadership.",[],"article_content$a2f12ced-23fa-4ea3-b524-b02b1c1b978d",{"variation":59,"version":60,"items":4442,"primary":4443,"id":4515,"slice_type":90,"slice_label":6},[],{"content":4444},[4445,4448,4455,4458,4471,4474,4477,4483,4486,4489,4496,4506],{"type":96,"text":4446,"spans":4447,"direction":76},"C-Suite or not, CISOs need to champion great cybersecurity leadership",[],{"type":65,"text":4449,"spans":4450,"direction":76},"As with every aspect of company operations, people look to leadership for guidance on cybersecurity. And that includes CISOs and CSOs, whether they’re on your board or not. Here are three key steps to champion a great culture of cybersecurity awareness.",[4451],{"start":177,"end":4452,"type":71,"data":4453},99,{"link_type":73,"url":4454,"target":75},"https://www.darkreading.com/risk/when-leadership-style-is-a-security-risk",{"type":116,"text":4456,"spans":4457,"direction":76},"Step #1: Champion your cybersecurity strategy",[],{"type":65,"text":4459,"spans":4460,"direction":76},"CISOs and CSOs set the tone when it comes to cybersecurity awareness and education, ensuring basic practices (such as compliance with NIS2 requirements) are reflected in core systems and processes. That’s why it’s crucial for them to own the development of cybersecurity strategies – especially when studies suggest only 40% of strategies are developed by security professionals.",[4461,4464,4466],{"start":32,"end":3871,"type":71,"data":4462},{"link_type":73,"url":4463,"target":75},"https://www.entrepreneur.com/leadership/how-leaders-can-create-a-strong-cybersecurity-culture/453044",{"start":3661,"end":4228,"type":71,"data":4465},{"link_type":73,"url":3767,"target":3629},{"start":4467,"end":4468,"type":71,"data":4469},321,338,{"link_type":73,"url":4470,"target":75},"https://www.securitymagazine.com/articles/96597-45-of-companies-do-not-employ-a-ciso",{"type":65,"text":4472,"spans":4473,"direction":76},"So, own your cybersecurity strategy, and make sure company leadership gets behind it too.",[],{"type":116,"text":4475,"spans":4476,"direction":76},"Step #2: Demonstrate your ability to manage a crisis",[],{"type":65,"text":4478,"spans":4479,"direction":76},"Unfortunately, a lot of people don’t have a lot of confidence in company executives when it comes to managing cybersecurity risks: for example, one study shows only 30% of directors trust their board’s ability to oversee a crisis. And who can blame them? Board members and C-suite members don’t always have the expertise necessary to respond to cyber attacks – which helps explain why it can take so long for companies to publicly acknowledge data breaches.",[4480],{"start":4419,"end":3310,"type":71,"data":4481},{"link_type":73,"url":4482,"target":75},"https://www.kornferry.com/insights/featured-topics/leadership/welcome-to-the-board-chief-information-security-officer",{"type":65,"text":4484,"spans":4485,"direction":76},"CISOs and CSOs can build confidence in company cybersecurity leadership by taking accountability for managing risks and visibly promoting incident response plans. They can also help to put a face on cybersecurity culture by being contact points for questions or concerns.",[],{"type":116,"text":4487,"spans":4488,"direction":76},"Step #3: Prove the true ROI of a great cybersecurity culture",[],{"type":65,"text":4490,"spans":4491,"direction":76},"Despite changing attitudes, many company leaders still see cybersecurity protections as an unnecessary drain on budgets, or a blocker to the speed of business. Unfortunately, this is one of the biggest factors holding companies back from building the right cybersecurity culture.",[4492],{"start":4493,"end":3260,"type":71,"data":4494},91,{"link_type":73,"url":4495,"target":75},"https://www.ey.com/en_it/cybersecurity/cybersecurity-how-do-you-rise-above-the-waves-of-a-perfect-storm",{"type":65,"text":4497,"spans":4498,"direction":76},"In reality, staying secure against cyber attacks is a profit driver – and it’s up to CISOs and CSOs to prove it. By avoiding the significant negative impacts associated with cyber attacks, including financial loss, reputation damage, and disruptions to services and production, security leaders can demonstrate how committing resources to cybersecurity can ultimately pay dividends.",[4499,4501],{"start":232,"end":3231,"type":71,"data":4500},{"link_type":73,"url":4421,"target":75},{"start":4502,"end":4503,"type":71,"data":4504},315,352,{"link_type":73,"url":4505,"target":75},"https://www.mckinsey.com/capabilities/risk-and-resilience/our-insights/cybersecurity/new-survey-reveals-2-trillion-dollar-market-opportunity-for-cybersecurity-technology-and-service-providers",{"type":65,"text":4507,"spans":4508,"direction":76},"With these three steps, CISOs and CSOs can champion great cybersecurity leadership – no matter if they have a seat at the C-suite or not.",[4509,4511],{"start":32,"end":4510,"type":85},137,{"start":4512,"end":4513,"type":71,"data":4514},52,82,{"link_type":73,"url":3357,"target":3629},"article_content$6cfbafc2-4acf-4b0f-8281-78df35f09ab2",{"variation":59,"version":60,"items":4517,"primary":4518,"id":4535,"slice_type":90,"slice_label":6},[],{"content":4519},[4520,4523,4526],{"type":96,"text":4521,"spans":4522,"direction":76},"Demonstrate cybersecurity leadership with awareness training people actually love",[],{"type":65,"text":4524,"spans":4525,"direction":76},"Despite executives being more committed to cybersecurity, many CISOs and CSOs still don’t get the recognition they really deserve. By championing a cybersecurity culture, these security leaders can earn trust by keeping their teams safe and showing the real value of cyber safety.",[],{"type":65,"text":4527,"spans":4528,"direction":76},"One crucial step in keeping people safe? Investing in a cybersecurity awareness program people actually love. To find out how Riot can deliver unforgettable training on digital footprints, spear phishing, deepfakes and more, get in touch with one of our experts today.",[4529,4531,4532],{"start":32,"end":4530,"type":85},109,{"start":1215,"end":3591,"type":85},{"start":330,"end":4533,"type":71,"data":4534},267,{"link_type":73,"url":454,"target":3629},"article_content$051e9f0c-bc92-489f-b678-2f5d58266399",{"variation":59,"version":60,"items":4537,"primary":4538,"id":4539,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$29f6a748-0736-45de-adae-b18ae97a6c7c",{"variation":59,"version":60,"items":4541,"primary":4542,"id":4543,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$0647fc4a-0d70-4459-919a-c232a59fccbf","In this article, we offer practical suggestions on how to champion a culture of cybersecurity leadership, no matter who has a seat at the boardroom table.",{"dimensions":4546,"alt":4298,"copyright":6,"url":4547,"id":4300,"edit":4548},{"width":469,"height":470},"https://images.prismic.io/riot-website/Zs8yN0aF0TcGJeeU_Blog_leadership.avif?auto=format%2Ccompress&rect=0%2C196%2C2971%2C1560&w=2400&h=1260",{"x":32,"y":4098,"zoom":33,"background":34},{"id":4550,"uid":4551,"url":6,"type":7,"href":4552,"tags":4553,"first_publication_date":4554,"last_publication_date":4555,"slugs":4556,"linked_documents":4558,"lang":16,"alternate_languages":4559,"data":4563},"ZqDTPxMAACIAFTYP","cybersecurity-vulnerability-signs","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22ZqDTPxMAACIAFTYP%22%29+%5D%5D",[599],"2024-07-24T10:21:50+0000","2026-06-09T15:25:48+0000",[4557],"1-your-team-is-working-remotely",[],[4560],{"id":4561,"type":7,"lang":20,"uid":4562},"ZqDWeRMAACMAFTsr","signes-vulnerabilite-cybersecurite",{"date":4564,"title":4565,"author_name":24,"author_position":3101,"author_profile_picture":4566,"thumbnail":4570,"image":4577,"created_at":4586,"slices":4587,"meta_description":4912,"meta_image":4913,"meta_title":4565},"July 2024","6 Warning Signs Your Team May Be Vulnerable to Cyber Attacks – and Our Tips to Stay Safe",{"dimensions":4567,"alt":3104,"copyright":6,"url":4568,"id":30,"edit":4569},{"width":28,"height":28},"https://images.prismic.io/riot-website/ZlcwXqWtHYXtT5kt_ZlXp3aWtHYXtT28u_Author_Tom-Baragwanath.avif?auto=format%2Ccompress&rect=0%2C0%2C2000%2C2000&w=64&h=64",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":4571,"alt":4572,"copyright":6,"url":4573,"id":4574,"edit":4575},{"width":37,"height":38},"Cybersecurity Vulnerability Signs","https://images.prismic.io/riot-website/ZqDS2R5LeNNTxc7V_Blog_CS_vulnerabilities.jpg?auto=format%2Ccompress&rect=80%2C0%2C3520%2C2223&w=760&h=480","ZqDS2R5LeNNTxc7V",{"x":4576,"y":32,"zoom":33,"background":34},80,{"dimensions":4578,"alt":4572,"copyright":6,"url":4579,"id":4574,"edit":4580,"Large":4581},{"width":45,"height":46},"https://images.prismic.io/riot-website/ZqDS2R5LeNNTxc7V_Blog_CS_vulnerabilities.jpg?auto=format%2Ccompress&rect=0%2C293%2C3600%2C1543&w=1220&h=523",{"x":32,"y":864,"zoom":33,"background":34},{"dimensions":4582,"alt":4572,"copyright":6,"url":4583,"id":4574,"edit":4584},{"width":52,"height":53},"https://images.prismic.io/riot-website/ZqDS2R5LeNNTxc7V_Blog_CS_vulnerabilities.jpg?auto=format%2Ccompress&rect=0%2C305%2C3600%2C1543&w=2440&h=1046",{"x":32,"y":4585,"zoom":33,"background":34},305,"2024-07-24",[4588,4606,4653,4695,4746,4780,4821,4864,4876,4904,4908],{"variation":59,"version":60,"items":4589,"primary":4590,"id":4605,"slice_type":90,"slice_label":6},[],{"content":4591},[4592,4595,4598,4602],{"type":65,"text":4593,"spans":4594,"direction":76},"Right now, scammers around the world are dreaming up new ways to get the better of you. And while you might know how to keep your networks, data, and money safe, cybersecurity is a team sport – you’ll still be at risk unless your colleagues do their part, too.",[],{"type":65,"text":4596,"spans":4597,"direction":76},"So, how can you boost your team’s cybersecurity and stay safe together? You can start by looking at the biggest risk factors and making a plan to keep these under control.",[],{"type":65,"text":4599,"spans":4600,"direction":76},"In this article, we look at six common signs your team may be vulnerable to cyber attacks. We’ll also offer some proven tips for addressing these vulnerabilities and managing your risk, including boosting your cybersecurity with unforgettable awareness training.",[4601],{"start":32,"end":715,"type":85},{"type":65,"text":4603,"spans":4604,"direction":76},"Let’s start with something we’ve all become way too familiar with lately.",[],"article_content$2f2eceb0-e2f6-4488-97ad-a8112163851d",{"variation":59,"version":60,"items":4607,"primary":4608,"id":4652,"slice_type":90,"slice_label":6},[],{"content":4609},[4610,4613,4620,4623,4628,4631,4634,4637,4640,4643,4646],{"type":96,"text":4611,"spans":4612,"direction":76},"#1: Your team is working remotely",[],{"type":65,"text":4614,"spans":4615,"direction":76},"Over recent years, millions of people have shifted into working remotely at least part of the time, including an estimated 60% of knowledge workers. And while this flexibility has been a welcome change for some, it creates a whole new set of cybersecurity risks.",[4616],{"start":4617,"end":4430,"type":71,"data":4618},123,{"link_type":73,"url":4619,"target":75},"https://www.techtarget.com/searchsecurity/tip/Remote-work-cybersecurity-12-risks-and-how-to-prevent-them",{"type":65,"text":4621,"spans":4622,"direction":76},"That’s because working across a range of WiFi networks (especially public networks) increases the attack surface scammers can use to access company systems. A distributed workforce also makes it a lot harder for your IT team to maintain core network protections, and creates the risk that unauthorized people might be accessing sensitive data.",[],{"type":65,"text":4624,"spans":4625,"direction":76},"Given these risks, it’s unsurprising that we’ve seen an estimated 238% increase in cyber attacks coinciding with the shift to remote work over the last few years.",[4626],{"start":3343,"end":655,"type":71,"data":4627},{"link_type":73,"url":4619,"target":75},{"type":116,"text":4629,"spans":4630,"direction":76},"How to help your distributed workforce stay secure",[],{"type":65,"text":4632,"spans":4633,"direction":76},"A distributed workforce presents security challenges, but you can keep your team safe by:",[],{"type":251,"text":4635,"spans":4636,"direction":76},"Encouraging people to use a VPN or secure WiFi network, and to avoid risky public networks (for example, WiFi in airports, libraries, or cafes).",[],{"type":251,"text":4638,"spans":4639,"direction":76},"Teaching people how to identify and report cyber attack attempts targeting remote workers (for example, invoice fraud impersonating managers or accounting teams).",[],{"type":251,"text":4641,"spans":4642,"direction":76},"Mandating the latest antivirus and Data Loss Prevention (DLP) software – and making it easy to report spam emails and attempted data exfiltration.",[],{"type":65,"text":4644,"spans":4645,"direction":76},"And speaking of distributed workforces, here’s another common cybersecurity vulnerability.",[],{"type":65,"text":299,"spans":4647,"direction":76},[4648,4649,4650],{"start":32,"end":302,"type":229},{"start":32,"end":302,"type":85},{"start":232,"end":302,"type":71,"data":4651},{"link_type":73,"url":306,"target":3629},"article_content$99c8f476-6328-480f-adec-60755d11f152",{"variation":59,"version":60,"items":4654,"primary":4655,"id":4694,"slice_type":90,"slice_label":6},[],{"content":4656},[4657,4660,4666,4673,4676,4679,4682,4685,4688,4691],{"type":96,"text":4658,"spans":4659,"direction":76},"#2: People are using their own devices for work",[],{"type":65,"text":4661,"spans":4662,"direction":76},"With the shift to cloud-based systems, the days of working on a single company-owned device are well and truly over. Now, 97% of executives access work accounts on personal devices, with many of us mixing work and personal use across different phones, laptops, and tablets.",[4663],{"start":3466,"end":3467,"type":71,"data":4664},{"link_type":73,"url":4665,"target":75},"https://www.securitymagazine.com/articles/99722-report-97-of-executives-access-work-accounts-on-personal-devices",{"type":65,"text":4667,"spans":4668,"direction":76},"This might be faster and more convenient, but it turns every device into a potential entry point for scammers. And unsurprisingly, scammers have capitalized on this shift, with attacks on mobile devices growing by 50% over recent years – including attempts to access company networks.",[4669],{"start":196,"end":4670,"type":71,"data":4671},235,{"link_type":73,"url":4672,"target":75},"https://www.forbes.com/sites/forbestechcouncil/2023/03/09/addressing-gaps-in-mobile-security-from-hybrid-work-and-byod/?sh=3b71aacaafbb",{"type":116,"text":4674,"spans":4675,"direction":76},"How to turn BYOD into NBD",[],{"type":65,"text":4677,"spans":4678,"direction":76},"If your team works across a mix of personal and company devices, you can encourage them to:",[],{"type":251,"text":4680,"spans":4681,"direction":76},"Keep their operating systems updated, as having out-of-date operating systems increases the risk your team’s devices could be exploited.",[],{"type":251,"text":4683,"spans":4684,"direction":76},"Be extremely cautious about downloading apps, making sure they’re not disguising malware.",[],{"type":251,"text":4686,"spans":4687,"direction":76},"Limit the people with access to their devices, for example, family members and children.",[],{"type":251,"text":4689,"spans":4690,"direction":76},"Set strong passwords and access codes, including using a password manager.",[],{"type":251,"text":4692,"spans":4693,"direction":76},"Follow company guidelines on what happens if a device with work access is lost or stolen.",[],"article_content$a7a962d9-e0bf-4cc0-916e-e06769539029",{"variation":59,"version":60,"items":4696,"primary":4697,"id":4745,"slice_type":90,"slice_label":6},[],{"content":4698},[4699,4702,4708,4711,4714,4719,4725,4728,4731,4734,4739],{"type":96,"text":4700,"spans":4701,"direction":76},"#3: You’re relying on generic cybersecurity awareness training",[],{"type":65,"text":4703,"spans":4704,"direction":76},"A cybersecurity awareness training program is the single most effective step you can take to keep your team safe against potential attacks. This training helps people identify the most common and disruptive scams, and teaches them the techniques they need to stay secure.",[4705],{"start":4706,"end":3641,"type":71,"data":4707},2,{"link_type":73,"url":179,"target":3629},{"type":65,"text":4709,"spans":4710,"direction":76},"But to get this right, you need cybersecurity training tailored to individual needs and work contexts. Unfortunately, a lot of the training organizations provide is still generic and forgettable.",[],{"type":116,"text":4712,"spans":4713,"direction":76},"How to provide the awareness training people deserve",[],{"type":65,"text":4715,"spans":4716,"direction":76},"People are used to boring cybersecurity training that feels just like any other annual compliance exercise. That’s why they switch off, and why scammers win so often. Instead, we need to:",[4717],{"start":1880,"end":439,"type":71,"data":4718},{"link_type":73,"url":142,"target":3629},{"type":251,"text":4720,"spans":4721,"direction":76},"Invest in tailored awareness training to match individual needs and experience levels.",[4722],{"start":210,"end":4723,"type":71,"data":4724},37,{"link_type":73,"url":3357,"target":3629},{"type":251,"text":4726,"spans":4727,"direction":76},"Offer people fun and engaging training experiences based on real stories.",[],{"type":251,"text":4729,"spans":4730,"direction":76},"Let people learn where they already work, for example, in Slack or Teams.",[],{"type":251,"text":4732,"spans":4733,"direction":76},"Cover foundational topics like password best practices and data security alongside advanced subjects like spear phishing, digital footprints, and AI-powered deep fakes.",[],{"type":251,"text":4735,"spans":4736,"direction":76},"Follow up training with phishing simulations to test people on how much they remember.",[4737],{"start":1941,"end":3464,"type":71,"data":4738},{"link_type":73,"url":234,"target":3629},{"type":65,"text":4740,"spans":4741,"direction":76},"At Riot, we make it easy to boost your cybersecurity awareness through tailored training people can’t help but love. Chat to one of our experts to find out more.",[4742,4743],{"start":32,"end":3670,"type":85},{"start":3188,"end":3672,"type":71,"data":4744},{"link_type":73,"url":449,"target":3629},"article_content$c63eb5a4-cc24-47d5-8298-4dce2596ef98",{"variation":59,"version":60,"items":4747,"primary":4748,"id":4779,"slice_type":90,"slice_label":6},[],{"content":4749},[4750,4753,4761,4764,4767,4770,4773,4776],{"type":96,"text":4751,"spans":4752,"direction":76},"#4: You aren’t encrypting or backing up your data",[],{"type":65,"text":4754,"spans":4755,"direction":76},"In 2019, two Facebook app developers accidentally leaked unencrypted records relating to over 540 million users, including names, photos, location check-ins, and passwords. While this wasn’t malicious, it illustrates the risks involved with failing to encrypt and back up data adequately.",[4756],{"start":4757,"end":4758,"type":71,"data":4759},94,111,{"link_type":73,"url":4760,"target":75},"https://www.bbc.com/news/technology-47812470",{"type":65,"text":4762,"spans":4763,"direction":76},"Unprotected data storage and administration is a big sign you and your team might be vulnerable to cyber attacks. Specifically, if you’re failing to encrypt sensitive data, this opens you to the risk of catastrophic breaches should fraudsters access your systems and demand ransom.",[],{"type":116,"text":4765,"spans":4766,"direction":76},"How to take the stress out of data management",[],{"type":65,"text":4768,"spans":4769,"direction":76},"Data management might sound technical, but it doesn’t have to be. You need to:",[],{"type":251,"text":4771,"spans":4772,"direction":76},"Encrypt and protect sensitive data everywhere, and keep keys secure – particularly when sharing data with third-party business partners.",[],{"type":251,"text":4774,"spans":4775,"direction":76},"Make a multi-pronged backup and recovery strategy to spread the risk of data loss.",[],{"type":251,"text":4777,"spans":4778,"direction":76},"Invest in a tool to notify you whenever any company logins are affected by data breaches.",[],"article_content$668338e6-71b2-4989-b271-7f83f304220d",{"variation":59,"version":60,"items":4781,"primary":4782,"id":4820,"slice_type":90,"slice_label":6},[],{"content":4783},[4784,4787,4790,4796,4802,4805,4808,4811,4814,4817],{"type":96,"text":4785,"spans":4786,"direction":76},"#5: Your network isn’t adequately segmented",[],{"type":65,"text":4788,"spans":4789,"direction":76},"Another technical vulnerability relates to network segmentation and user access monitoring. Specifically, users accessing wider parts of your organization’s network with the same login creates a higher risk of cyber attack – and so does failing to actively monitor user access.",[],{"type":65,"text":4791,"spans":4792,"direction":76},"For example, take the Banner Health data breach. In 2016, fraudsters managed to access the company’s databases through its food and beverage payment systems, eventually accessing sensitive health information relating to 2.81 million patients.",[4793],{"start":103,"end":854,"type":71,"data":4794},{"link_type":73,"url":4795,"target":75},"https://eu.azcentral.com/story/money/business/health/2023/02/04/banner-health-paid-1-25-million-to-resolve-federal-data-breach-probe/69871530007/",{"type":65,"text":4797,"spans":4798,"direction":76},"A subsequent investigation found the health provider hadn’t adequately assessed the risk of cyber attacks targeting its single shared network, and hadn’t been actively monitoring user access to identify potential attacks.",[4799],{"start":4706,"end":176,"type":71,"data":4800},{"link_type":73,"url":4801,"target":75},"https://www.hcinnovationgroup.com/cybersecurity/hipaa/news/21294781/banner-health-settles-hipaa-security-investigation-by-ocr",{"type":116,"text":4803,"spans":4804,"direction":76},"How to set access to minimize your risks",[],{"type":65,"text":4806,"spans":4807,"direction":76},"You can address the risks involved with unsegmented network access by:",[],{"type":251,"text":4809,"spans":4810,"direction":76},"Separating the most valuable company assets in separate networks and limiting user access.",[],{"type":251,"text":4812,"spans":4813,"direction":76},"Developing a company-wide policy governing who has access to which parts of the network.",[],{"type":251,"text":4815,"spans":4816,"direction":76},"Adopting the principle of least privilege when it comes to data access.",[],{"type":251,"text":4818,"spans":4819,"direction":76},"Limiting third-party network access – including supply chain partners (see below).",[],"article_content$6cf56f23-1028-49af-af55-a4cd18a86389",{"variation":59,"version":60,"items":4822,"primary":4823,"id":4863,"slice_type":90,"slice_label":6},[],{"content":4824},[4825,4828,4831,4837,4840,4843,4846,4849,4854],{"type":96,"text":4826,"spans":4827,"direction":76},"#6: Your supply chain partners are vulnerable to cyber attacks",[],{"type":65,"text":4829,"spans":4830,"direction":76},"Finally, a word on your supply chain partners. Scammers are now regularly targeting organizations through attacks on their supply chain partners – particularly when these partners have access to sensitive data. That’s why it’s so crucial to ensure a shared commitment to cybersecurity across your business network – especially your supply chain partners.",[],{"type":65,"text":4832,"spans":4833,"direction":76},"For an example of how this can go wrong, let’s look at Okta. In 2021, the company experienced a major data breach as a result of security vulnerabilities on behalf of Sykes, one of its customer support providers. This shows why active third-party cybersecurity management is so crucial.",[4834],{"start":4513,"end":3535,"type":71,"data":4835},{"link_type":73,"url":4836,"target":75},"https://techcrunch.com/2022/03/23/okta-breach-sykes-sitel/",{"type":116,"text":4838,"spans":4839,"direction":76},"How to keep your whole network safe",[],{"type":65,"text":4841,"spans":4842,"direction":76},"You can proactively address the risks involved with third-party cybersecurity practices by:",[],{"type":251,"text":4844,"spans":4845,"direction":76},"Requiring supply chain partners to comply with core cybersecurity and data protection measures.",[],{"type":251,"text":4847,"spans":4848,"direction":76},"Restricting third-party access to systems and data, and actively monitoring access.",[],{"type":251,"text":4850,"spans":4851,"direction":76},"For EU organizations, observing NIS2 requirements to investigate supply chain partner cybersecurity protections and take reasonable steps to address any vulnerabilities.",[4852],{"start":103,"end":3406,"type":71,"data":4853},{"link_type":73,"url":3767,"target":3629},{"type":65,"text":4855,"spans":4856,"direction":76},"Ready to make NIS2 a walk in the park? Download our free six-step compliance checklist.",[4857,4859,4860],{"start":32,"end":4858,"type":229},87,{"start":32,"end":4858,"type":85},{"start":3586,"end":1354,"type":71,"data":4861},{"link_type":73,"url":4862,"target":3629},"https://tryriot.com/toolbox/checklist-nis2/","article_content$b9550717-4f82-49d3-9736-f2d4bcdbf8cf",{"variation":59,"version":60,"items":4865,"primary":4866,"id":4875,"slice_type":3203,"slice_label":6},[],{"title":4867,"hubspot_form_id":4868,"image":4869},"A checklist to make NIS2 compliance simple and easy.","f3af1325-9328-40bc-8979-d95ab93cba25",{"dimensions":4870,"alt":4871,"copyright":6,"url":4872,"id":4873,"edit":4874},{"width":3197,"height":764},"Six-Step NIS2 Compliance Checklist","https://images.prismic.io/riot-website/Zmhr7Zm069VX1pMO_thumbnail.3.png?auto=format,compress","Zmhr7Zm069VX1pMO",{"x":32,"y":32,"zoom":33,"background":34},"article_hubspot_form$5c7b882f-ac77-4105-877e-fd18e73101ef",{"variation":59,"version":60,"items":4877,"primary":4878,"id":4903,"slice_type":90,"slice_label":6},[],{"content":4879},[4880,4883,4890,4894,4897],{"type":96,"text":4881,"spans":4882,"direction":76},"Fight cybersecurity vulnerabilities with great awareness training",[],{"type":65,"text":4884,"spans":4885,"direction":76},"When it comes to stopping cyber attacks, it isn’t enough for you to roll solo – your whole team needs to know how to stay secure. Unfortunately, 85% of all successful data breaches involve human error, meaning your colleagues could end up being the reason you get scammed.",[4886],{"start":4364,"end":4887,"type":71,"data":4888},180,{"link_type":73,"url":4889,"target":75},"https://www.verizon.com/about/news/verizon-2021-data-breach-investigations-report",{"type":65,"text":4891,"spans":4892,"direction":76},"That’s why impactful awareness training can make such a big difference in proactively managing the threat of cyber attacks. With Riot, your whole team can learn about the latest scams, including AI-powered deep fakes, phishing, and much more. This way, they know exactly what to do to reduce the risk of cyber attacks, and what to do in case of real-life scam attempts.",[4893],{"start":32,"end":4617,"type":85},{"type":65,"text":4895,"spans":4896,"direction":76},"Even better, you can test your team with our simple and intuitive phishing simulation platform, crafting the kinds of attacks people are mostly likely to face and teaching them how to stay safe.",[],{"type":65,"text":4898,"spans":4899,"direction":76},"To find out how Riot can help you and your team stay on top of the latest cyber threats, get in touch with one of our experts today.",[4900,4901],{"start":32,"end":4105,"type":85},{"start":139,"end":709,"type":71,"data":4902},{"link_type":73,"url":454,"target":3629},"article_content$1c496795-e83f-4b25-978b-4b8359cd03be",{"variation":59,"version":60,"items":4905,"primary":4906,"id":4907,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$5093466b-72e2-43a5-b710-cd786665fd16",{"variation":59,"version":60,"items":4909,"primary":4910,"id":4911,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$e8670c11-b0e9-465e-916d-de90a7025dbd","Here are six signs your team may be vulnerable to cyber attacks, and some proven tips for managing your risk, including offering great awareness training.",{"dimensions":4914,"alt":4572,"copyright":6,"url":4915,"id":4574,"edit":4916},{"width":469,"height":470},"https://images.prismic.io/riot-website/ZqDS2R5LeNNTxc7V_Blog_CS_vulnerabilities.jpg?auto=format%2Ccompress&rect=0%2C73%2C3600%2C1890&w=2400&h=1260",{"x":32,"y":402,"zoom":33,"background":34},{"id":4918,"uid":4919,"url":6,"type":7,"href":4920,"tags":4921,"first_publication_date":4922,"last_publication_date":4923,"slugs":4924,"linked_documents":4926,"lang":16,"alternate_languages":4927,"data":4931},"ZpeK0hMAACIABy_N","phishing-simulation","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22ZpeK0hMAACIABy_N%22%29+%5D%5D",[2022],"2024-07-17T09:14:34+0000","2025-02-03T15:55:26+0000",[4925],"what-are-phishing-simulations-and-why-should-you-run-them",[],[4928],{"id":4929,"type":7,"lang":20,"uid":4930},"ZpeMghMAACAABzKh","simulation-phishing",{"date":4564,"title":4932,"author_name":3424,"author_position":3425,"author_profile_picture":4933,"thumbnail":4936,"image":4942,"created_at":4951,"slices":4952,"meta_description":5346,"meta_image":5347,"meta_title":4932},"How to Run a World-Class Phishing Simulation in 6 Steps – and 5 Big Mistakes to Avoid",{"dimensions":4934,"alt":6,"copyright":6,"url":3428,"id":3429,"edit":4935},{"width":28,"height":28},{"x":3431,"y":32,"zoom":33,"background":34},{"dimensions":4937,"alt":4938,"copyright":6,"url":4939,"id":4940,"edit":4941},{"width":37,"height":38},"Phishing simulation","https://images.prismic.io/riot-website/ZpeHVB5LeNNTxObR_Blog_phishing_simulation.jpg?auto=format%2Ccompress&rect=0%2C0%2C3600%2C2274&w=760&h=480","ZpeHVB5LeNNTxObR",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":4943,"alt":4938,"copyright":6,"url":4944,"id":4940,"edit":4945,"Large":4946},{"width":45,"height":46},"https://images.prismic.io/riot-website/ZpeHVB5LeNNTxObR_Blog_phishing_simulation.jpg?auto=format%2Ccompress&rect=0%2C313%2C3600%2C1543&w=1220&h=523",{"x":32,"y":749,"zoom":33,"background":34},{"dimensions":4947,"alt":4938,"copyright":6,"url":4948,"id":4940,"edit":4949},{"width":52,"height":53},"https://images.prismic.io/riot-website/ZpeHVB5LeNNTxObR_Blog_phishing_simulation.jpg?auto=format%2Ccompress&rect=0%2C301%2C3600%2C1543&w=2440&h=1046",{"x":32,"y":4950,"zoom":33,"background":34},301,"2024-07-17",[4953,4976,5016,5057,5097,5139,5202,5262,5274,5338,5342],{"variation":59,"version":60,"items":4954,"primary":4955,"id":4975,"slice_type":90,"slice_label":6},[],{"content":4956},[4957,4962,4965,4968,4972],{"type":65,"text":4958,"spans":4959,"direction":76},"“Yes, this will be included in the test.”",[4960],{"start":4961,"end":366,"type":229},11,{"type":65,"text":4963,"spans":4964,"direction":76},"In the classroom, hearing these words means it’s time to listen up. The same rule applies to your cybersecurity awareness training – putting people to the test creates a stronger incentive to pay close attention to your tips and best practices for avoiding harmful scams.",[],{"type":65,"text":4966,"spans":4967,"direction":76},"That’s why phishing simulations are so effective at reducing your vulnerability to cyber attacks and keeping your team safe. But what makes a great simulation, and how can you get started?",[],{"type":65,"text":4969,"spans":4970,"direction":76},"Here, we share our six-step guide to running a world-class phishing simulation, and share five of the biggest mistakes to avoid when testing your team.",[4971],{"start":32,"end":4228,"type":85},{"type":65,"text":4973,"spans":4974,"direction":76},"Let’s dive in by looking at a few basics.",[],"article_content$f348c5f4-6ff5-4970-9a7f-3d8736f62a0e",{"variation":59,"version":60,"items":4977,"primary":4978,"id":5015,"slice_type":90,"slice_label":6},[],{"content":4979},[4980,4983,4990,5003,5007,5011],{"type":96,"text":4981,"spans":4982,"direction":76},"What are phishing simulations, and why should you run them?",[],{"type":65,"text":4984,"spans":4985,"direction":76},"Phishing is the practice of fraudulently impersonating a person or company over emails, text message, or other messaging platforms in order to induce a victim to reveal sensitive information, download malware, or transfer money.",[4986,4988,4989],{"start":32,"end":4987,"type":85},40,{"start":446,"end":4334,"type":85},{"start":709,"end":4099,"type":85},{"type":65,"text":4991,"spans":4992,"direction":76},"These attacks remain one of the most persistent cyber threats, with scammers sending an estimated 3.4 billion phishing emails every day. In fact, 91% of all successful cyber attacks begin with a phishing attempt. Even worse? Successful phishing attacks can cost organizations an average of $4.91 million in disruption, lost revenue, and reputation damage.",[4993,4996,4999],{"start":302,"end":1357,"type":71,"data":4994},{"link_type":73,"url":4995,"target":75},"https://earthweb.com/how-many-phishing-emails-are-sent-daily/",{"start":661,"end":3310,"type":71,"data":4997},{"link_type":73,"url":4998,"target":75},"https://www2.deloitte.com/my/en/pages/risk/articles/91-percent-of-all-cyber-attacks-begin-with-a-phishing-email-to-an-unexpected-victim.html",{"start":1182,"end":5000,"type":71,"data":5001},303,{"link_type":73,"url":5002,"target":75},"https://www.techopedia.com/phishing-statistics",{"type":65,"text":5004,"spans":5005,"direction":76},"But here’s the thing: Because our spam filters have become so good at detecting phishing attempts, these emails don’t make it to our inboxes all that often. That’s why it’s critical to teach your team how to identify those that do make it through, and what they should do in response.",[5006],{"start":4099,"end":4212,"type":229},{"type":65,"text":5008,"spans":5009,"direction":76},"That’s where phishing simulations come in.",[5010],{"start":32,"end":3641,"type":85},{"type":120,"url":4036,"alt":5012,"copyright":6,"dimensions":5013,"id":4039,"edit":5014},"Riot phishing simulation",{"width":630,"height":3725},{"x":32,"y":32,"zoom":33,"background":34},"article_content$e526202e-a647-4544-8c31-269efa4bd7de",{"variation":59,"version":60,"items":5017,"primary":5018,"id":5056,"slice_type":90,"slice_label":6},[],{"content":5019},[5020,5023,5028,5031,5034,5037,5040,5043,5046],{"type":65,"text":5021,"spans":5022,"direction":76},"By giving you the tools to mimic real attacks, a phishing simulation platform lets you evaluate your team’s vulnerability, familiarize them with the range of different scams out there, and reinforce crucial cybersecurity best practices – all in total safety.",[],{"type":65,"text":5024,"spans":5025,"direction":76},"But how can you craft a phishing simulation campaign that really boosts your team’s cybersecurity awareness? It’s all about six simple steps:",[5026,5027],{"start":32,"end":3131,"type":85},{"start":4177,"end":28,"type":229},{"type":415,"text":5029,"spans":5030,"direction":76},"Make a clear set of goals to guide your simulation",[],{"type":415,"text":5032,"spans":5033,"direction":76},"Set your foundation with a simple phishing campaign",[],{"type":415,"text":5035,"spans":5036,"direction":76},"Launch tailored campaigns for different audience segments",[],{"type":415,"text":5038,"spans":5039,"direction":76},"Feed your results into an employee support action plan",[],{"type":415,"text":5041,"spans":5042,"direction":76},"Offer post-simulation training people actually love",[],{"type":415,"text":5044,"spans":5045,"direction":76},"Keep your team sharp with ‘always-on’ phishing simulations",[],{"type":65,"text":5047,"spans":5048,"direction":76},"“Enough with the steps, let’s phish!” Get started here in just minutes. 🎣",[5049,5050,5051],{"start":32,"end":4415,"type":85},{"start":33,"end":3830,"type":229},{"start":5052,"end":5053,"type":71,"data":5054},38,70,{"link_type":73,"url":5055,"target":3629},"https://tryriot.com/simulation","article_content$001f786f-6ef7-42d2-b8b9-72c92868e0d7",{"variation":59,"version":60,"items":5058,"primary":5059,"id":5096,"slice_type":90,"slice_label":6},[],{"content":5060},[5061,5064,5068,5071,5074,5078,5082,5086,5089],{"type":96,"text":5062,"spans":5063,"direction":76},"#1: Make a clear set of goals to guide your simulation",[],{"type":65,"text":5065,"spans":5066,"direction":76},"Before you start designing your phishing simulation, ask yourself: What are you hoping to achieve? Of course, every simulation reduces your exposure to cyber attacks – but being clear about your specific objectives can help you shape a campaign that tests your team the right way.",[5067],{"start":4003,"end":196,"type":229},{"type":65,"text":5069,"spans":5070,"direction":76},"For example, if you’re currently rolling out awareness training, you might want to test how well people are applying what they’ve learned so far. Alternatively, you might be establishing a baseline vulnerability rate to help make a case to leadership for investing in the right training.",[],{"type":65,"text":5072,"spans":5073,"direction":76},"Here are a few other key questions to answer:",[],{"type":251,"text":5075,"spans":5076,"direction":76},"Audience: Who do you intend to target with your test campaign? Front-line staff, managers, senior leadership, or all of the above? Remember, scammers can target anyone within your organization, so selecting a broad audience is a good first step.",[5077],{"start":32,"end":294,"type":85},{"type":251,"text":5079,"spans":5080,"direction":76},"Desired outcome: Are you trying to increase your phishing reporting rates, or show which teams are most at risk? Are there specific weaknesses you’d like to test, such as vulnerability to malware? This will help guide your choice of templates and difficulty levels.",[5081],{"start":32,"end":1657,"type":85},{"type":251,"text":5083,"spans":5084,"direction":76},"Hooks: Are there any social engineering techniques scammers might use to target you right now? For example, if you’re going through a public acquisition, fraudsters might tempt your team with a bogus list of roles to be restructured. You could mimic a campaign like this to show people the kinds of scams they might encounter.",[5085],{"start":32,"end":271,"type":85},{"type":65,"text":5087,"spans":5088,"direction":76},"These factors will help inform the design of your campaign and give you a framework for what a successful simulation looks like. With those details confirmed, it’s time to get started.",[],{"type":65,"text":5090,"spans":5091,"direction":76},"Learn more: A Culture of Cybersecurity Awareness Helps Manage Risk and Boost Your ROI – Here’s How",[5092,5093,5094],{"start":32,"end":302,"type":229},{"start":32,"end":302,"type":85},{"start":232,"end":302,"type":71,"data":5095},{"link_type":73,"url":3357,"target":3629},"article_content$1f574d8f-4fd4-478d-b84e-8f7e723a9753",{"variation":59,"version":60,"items":5098,"primary":5099,"id":5138,"slice_type":90,"slice_label":6},[],{"content":5100},[5101,5104,5107,5110,5114,5118,5122,5126,5133],{"type":96,"text":5102,"spans":5103,"direction":76},"#2: Set your foundation with a simple phishing campaign",[],{"type":65,"text":5105,"spans":5106,"direction":76},"With your foundational goals confirmed, you can now launch your first phishing campaign. Ideally, you should start with something simple to give you a set of results to guide future campaigns, and to boost your team’s level of awareness around the threats they face.",[],{"type":65,"text":5108,"spans":5109,"direction":76},"In addition to confirming the details in step one (intended audience, desired outcome, choice of social engineering hook), consider the following elements:",[],{"type":251,"text":5111,"spans":5112,"direction":76},"Templates: A good phishing simulation platform offers a range of templates, from dummy Salesforce leads through to spoofed Gmail logins and even portals to vote on a new company logo. Which template will you use, and how will you customize it to tempt your team?",[5113],{"start":32,"end":210,"type":85},{"type":251,"text":5115,"spans":5116,"direction":76},"Timing: We recommend sending your first campaign simultaneously to all recipients, as this makes it harder for people to warn each other. However, you might wish to stagger future campaigns across different times to try to catch people out during moments of downtime.",[5117],{"start":32,"end":158,"type":85},{"type":251,"text":5119,"spans":5120,"direction":76},"Awareness training: How will your test campaign reinforce what people are already learning through your cybersecurity awareness training? Based on your course completion rates, are there any specific types of phishing you want to demonstrate in practice?",[5121],{"start":32,"end":1880,"type":85},{"type":65,"text":5123,"spans":5124,"direction":76},"Once you’ve confirmed these details, you’re all set to go ahead with your first campaign!",[5125],{"start":32,"end":139,"type":85},{"type":120,"url":5127,"alt":5128,"copyright":6,"dimensions":5129,"id":5131,"edit":5132},"https://images.prismic.io/riot-website/ZlBGrCol0Zci9adh_phishing_attacks_b3b215790c.png?auto=format,compress","Riot phishing simulation templates",{"width":45,"height":5130},1160,"ZlBGrCol0Zci9adh",{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":5134,"spans":5135,"direction":76},"With Riot, you can automate these steps and launch a great first campaign in just minutes. We make this happen with our wide range of phishing templates, and our ‘smart groups’ feature enabling easy audience segmentation and vulnerability assessment. Our phishing reporter button empowers learners to report test emails, creating a feedback loop with your awareness training.",[5136],{"start":209,"end":294,"type":71,"data":5137},{"link_type":73,"url":5055,"target":3629},"article_content$db451574-3b83-4a72-b26d-2dcecd5ff4ae",{"variation":59,"version":60,"items":5140,"primary":5141,"id":5201,"slice_type":90,"slice_label":6},[],{"content":5142},[5143,5146,5149,5152,5155,5161,5164,5169,5172,5175,5181,5184,5187,5190,5193,5198],{"type":96,"text":5144,"spans":5145,"direction":76},"#3: Launch tailored campaigns for different audience segments",[],{"type":65,"text":5147,"spans":5148,"direction":76},"With your first phishing campaign completed, you now have a set of baseline results and a deeper understanding of how your teams are applying cybersecurity best practices. You know who has a good level of awareness, and who might need some extra help.",[],{"type":65,"text":5150,"spans":5151,"direction":76},"But your work isn’t over. Now, you need to get even more creative – and even more sneaky.",[],{"type":65,"text":5153,"spans":5154,"direction":76},"Imagine the world’s cleverest scammer. How might they target your teams? Would they tempt marketing with a spoofed email about an influencer endorsement, or finance with a fake late invoice alert? Or would they choose a classic, like a bogus list of staff salary adjustments?",[],{"type":65,"text":5156,"spans":5157,"direction":76},"You can also target particular cohorts, for example, new arrivals with a fake onboarding portal, or recently promoted managers with a scam invitation to a leadership strategy meeting. You might also like to read up on recent cybersecurity news to get a sense of the most common threats.",[5158],{"start":3235,"end":4135,"type":71,"data":5159},{"link_type":73,"url":5160,"target":75},"https://www.securityweek.com/",{"type":65,"text":5162,"spans":5163,"direction":76},"Whatever you decide, you should give your learners a better sense of the phishing scams they might encounter in the real world, and strengthen their defenses against them.",[],{"type":65,"text":5165,"spans":5166,"direction":76},"Timing-wise, you can stagger these campaigns to be sent during moments of downtime for the individuals you’re targeting – especially if your teams work across different time zones. Once again, Riot’s phishing simulation platform makes this quick and easy to organize, with hundreds of tailored templates to choose from.",[5167],{"start":4185,"end":4099,"type":71,"data":5168},{"link_type":73,"url":5055,"target":3629},{"type":96,"text":5170,"spans":5171,"direction":76},"#4: Feed your results into an employee support action plan",[],{"type":65,"text":5173,"spans":5174,"direction":76},"Now that you’re running targeted phishing simulations, you can feed your results into an action plan for employee support. In other words, what happens next, and how do you plan to strengthen your defense against phishing attacks over time?",[],{"type":65,"text":5176,"spans":5177,"direction":76},"Be sure to set a baseline of vulnerability, then update this baseline to reflect the results of different campaigns. In particular, you should track a few key cybersecurity metrics:",[5178],{"start":5179,"end":4887,"type":71,"data":5180},155,{"link_type":73,"url":3674,"target":3629},{"type":251,"text":5182,"spans":5183,"direction":76},"The percentage of people clicking on links",[],{"type":251,"text":5185,"spans":5186,"direction":76},"The percentage of people opening attachments",[],{"type":251,"text":5188,"spans":5189,"direction":76},"The percentage of people submitting login credentials",[],{"type":65,"text":5191,"spans":5192,"direction":76},"These metrics should inform your wider cybersecurity strategy and your future awareness training. For example, if your teams are vulnerable to sharing their login credentials, you might want to consider investing in password management software.",[],{"type":120,"url":5194,"alt":4938,"copyright":6,"dimensions":5195,"id":5196,"edit":5197},"https://images.prismic.io/riot-website/ZlBG9iol0Zci9ado_simulation_dashboard_en_fa3e387df1.png?auto=format,compress",{"width":45,"height":5130},"ZlBG9iol0Zci9ado",{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":5199,"spans":5200,"direction":76},"And on the positive side, don’t forget to celebrate people who successfully identified the phishing emails. Positive reinforcement and recognition goes a long way towards building a great culture of cybersecurity awareness.",[],"article_content$7d0938e7-7c47-42cc-8fb7-1f37616586a0",{"variation":59,"version":60,"items":5203,"primary":5204,"id":5261,"slice_type":90,"slice_label":6},[],{"content":5205},[5206,5209,5215,5222,5229,5232,5241,5244,5247,5250,5253],{"type":96,"text":5207,"spans":5208,"direction":76},"#5: Offer post-simulation training people actually love",[],{"type":65,"text":5210,"spans":5211,"direction":76},"These days, most people don’t expect much from cybersecurity training – but you can always surprise them. That’s why you should follow up your tests with the kind of post-simulation cybersecurity training your team won’t just tolerate, but will actually love.",[5212],{"start":1941,"end":5213,"type":71,"data":5214},69,{"link_type":73,"url":142,"target":3629},{"type":65,"text":5216,"spans":5217,"direction":76},"With the results from your initial tests, you can offer additional training on how to identify phishing attempts and respond safely. And remember, we’re all pressed for time these days – so delivering punchy and impactful phishing training is crucial. You want a training solution that can get the critical points across in just minutes with story-driven conversations. ",[5218],{"start":5219,"end":5220,"type":71,"data":5221},342,368,{"link_type":73,"url":179,"target":3629},{"type":120,"url":5223,"alt":5012,"copyright":6,"dimensions":5224,"id":5227,"edit":5228},"https://images.prismic.io/riot-website/Zl8gC5m069VX1ctp_Blog_Write_Cybersecurity_Courses_4.png?auto=format,compress",{"width":5225,"height":5226},3200,3956,"Zl8gC5m069VX1ctp",{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":5230,"spans":5231,"direction":76},"Without this additional training, anyone who has failed a simulation won’t get the chance to improve. This can have a negative impact on team morale, and can even lead people to switch off whenever you mention cybersecurity. So, complete the cycle and help people improve.",[],{"type":65,"text":5233,"spans":5234,"direction":76},"If you’re ready to start offering the kind of cybersecurity training your team deserves, we’d love to chat.",[5235,5237],{"start":32,"end":5236,"type":85},107,{"start":139,"end":5238,"type":71,"data":5239},106,{"link_type":73,"url":5240,"target":3629},"https://tryriot.com/albert/",{"type":96,"text":5242,"spans":5243,"direction":76},"#6: Keep your team sharp with ‘always-on’ phishing simulations",[],{"type":65,"text":5245,"spans":5246,"direction":76},"To finish up, let’s remember one unfortunate fact: Scammers are relentless. Right now, they’re working hard to find clever new ways to trick your team and get access to your sensitive data, login credentials, and money. That’s why you need to be just as relentless with your simulations.",[],{"type":65,"text":5248,"spans":5249,"direction":76},"Now that you’ve launched your first set of phishing simulations and turned your results into an action plan, it’s time to keep the ball rolling with ‘always-on’ phishing simulations.",[],{"type":65,"text":5251,"spans":5252,"direction":76},"By running continuous campaigns, you’ll boost your team’s capability to identify and manage phishing threats. You’ll also see your key metrics start to move in the right direction, with fewer people getting tricked over time thanks to their increased awareness.",[],{"type":65,"text":5254,"spans":5255,"direction":76},"Looking for more guidance on what makes a great simulation? Get our free checklist 🎣",[5256,5257,5258],{"start":32,"end":3224,"type":229},{"start":32,"end":403,"type":85},{"start":5259,"end":4513,"type":71,"data":5260},60,{"link_type":73,"url":234,"target":3629},"article_content$9987d5b6-d01f-43f1-8a93-eae67a620664",{"variation":59,"version":60,"items":5263,"primary":5264,"id":5273,"slice_type":3203,"slice_label":6},[],{"title":5265,"hubspot_form_id":5266,"image":5267},"5 Things all Great Phishing Simulations Get Right","b5ebc786-7404-4b31-b368-ed2c6c9a67fb",{"dimensions":5268,"alt":5269,"copyright":6,"url":5270,"id":5271,"edit":5272},{"width":3197,"height":764},"Riot phishing simulation checklist","https://images.prismic.io/riot-website/Zmhr7Jm069VX1pMN_thumbnail.2.png?auto=format,compress","Zmhr7Jm069VX1pMN",{"x":32,"y":32,"zoom":33,"background":34},"article_hubspot_form$32c301ca-298d-4553-9c29-506aab65ad4b",{"variation":59,"version":60,"items":5275,"primary":5276,"id":5337,"slice_type":90,"slice_label":6},[],{"content":5277},[5278,5281,5284,5288,5295,5299,5311,5315,5321,5324,5328,5331],{"type":96,"text":5279,"spans":5280,"direction":76},"5 common mistakes to avoid with your phishing simulation",[],{"type":65,"text":5282,"spans":5283,"direction":76},"Phishing simulations can be hard to get right, and there are plenty of factors you need to juggle to make your tests as impactful as possible.",[],{"type":65,"text":5285,"spans":5286,"direction":76},"So, now that we’ve covered what to do with your simulations, here’s what not to do:",[5287],{"start":402,"end":452,"type":229},{"type":415,"text":5289,"spans":5290,"direction":76},"Don’t phish in a vacuum: Phishing simulations are an excellent way to reinforce awareness training – but if you run them without this training, you’re missing half of the puzzle. Give them the training they need to respond safely to phishing attempts and other cyber attacks.",[5291,5292],{"start":32,"end":1941,"type":85},{"start":4185,"end":4144,"type":71,"data":5293},{"link_type":73,"url":5294,"target":3629},"https://tryriot.com/albert",{"type":415,"text":5296,"spans":5297,"direction":76},"Don’t let your simulations become predictable: Scammers seldom use the same tactic twice – and you shouldn’t either. Keep people on their toes by running a mix of simulations at different times, using a range of social engineering hooks and templates.",[5298],{"start":32,"end":3524,"type":85},{"type":415,"text":5300,"spans":5301,"direction":76},"Don’t put team morale at risk: Simulations are important, but not important enough to risk causing anger or resentment. For example, if bonuses are a touchy subject, don’t use them as bait – especially if people have been under a lot of pressure lately. And don’t let people panic if they’ve failed a test – they should know right away that it wasn’t a real scam.",[5302,5304,5308],{"start":32,"end":5303,"type":85},30,{"start":5305,"end":195,"type":71,"data":5306},166,{"link_type":73,"url":5307,"target":75},"https://www.wsj.com/tech/cybersecurity/no-you-arent-getting-a-bonus-your-company-is-just-testing-you-2155c3c?st=31b8ofbvt5umpvn&reflink=article_imessage_share",{"start":4212,"end":5309,"type":71,"data":5310},245,{"link_type":73,"url":3740,"target":75},{"type":415,"text":5312,"spans":5313,"direction":76},"Don’t exclude leadership: Leaders and managers hold the keys to some of your most valuable assets and information, making them top targets for phishing scams. Be sure to include them in your simulations – it’s also great for morale to see them getting phished, too.",[5314],{"start":32,"end":203,"type":85},{"type":415,"text":5316,"spans":5317,"direction":76},"Don’t run simulations manually: No matter how many campaigns you run, your phishing simulations shouldn’t take you more than a few hours each week. You can save time and energy by investing in the right automation tool.",[5318,5319],{"start":32,"end":3841,"type":85},{"start":3652,"end":3235,"type":71,"data":5320},{"link_type":73,"url":3233,"target":3629},{"type":96,"text":5322,"spans":5323,"direction":76},"A great phishing simulation shouldn’t be hard to launch",[],{"type":65,"text":5325,"spans":5326,"direction":76},"So, you’ve read our six-step guide, and you’re ready to start crafting phishing simulations sneaky enough to trick your most security-conscious colleagues. Congrats!",[5327],{"start":32,"end":4419,"type":85},{"type":65,"text":5329,"spans":5330,"direction":76},"With these steps, you have a blueprint for getting your first test up and running, iterating over time, and using your results to make a clear action plan for employee support. The most important step of all? Choosing a smart simulation platform that lets you phish with ease.",[],{"type":65,"text":5332,"spans":5333,"direction":76},"Sign up for a free simulation with Riot today, and you could be testing your team with world-class phishing simulations in just minutes.",[5334,5336],{"start":32,"end":3431,"type":71,"data":5335},{"link_type":73,"url":5055,"target":3629},{"start":32,"end":1203,"type":85},"article_content$0e3e4297-4d25-4af7-ae2b-47604b1a15f5",{"variation":59,"version":60,"items":5339,"primary":5340,"id":5341,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$da1e1647-d29d-4d08-97b3-f93a3abab47a",{"variation":59,"version":60,"items":5343,"primary":5344,"id":5345,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$e854ee7a-e36a-4794-af19-16d718f6c9eb","In this article, we share our six-step guide to running a world-class phishing simulation, and share five of the biggest mistakes to avoid when testing your team.",{"dimensions":5348,"alt":4938,"copyright":6,"url":5349,"id":4940,"edit":5350},{"width":469,"height":470},"https://images.prismic.io/riot-website/ZpeHVB5LeNNTxObR_Blog_phishing_simulation.jpg?auto=format%2Ccompress&rect=0%2C234%2C3600%2C1890&w=2400&h=1260",{"x":32,"y":5351,"zoom":33,"background":34},234,{"id":5353,"uid":5354,"url":6,"type":7,"href":5355,"tags":5356,"first_publication_date":5358,"last_publication_date":5359,"slugs":5360,"linked_documents":5362,"lang":16,"alternate_languages":5363,"data":5367},"Zo1ZyxMAACMA94GN","biggest-cyber-threats","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Zo1ZyxMAACMA94GN%22%29+%5D%5D",[5357],"Threats","2024-07-09T15:40:24+0000","2026-06-09T15:25:16+0000",[5361],"1-phishing",[],[5364],{"id":5365,"type":7,"lang":20,"uid":5366},"Zo1cTxMAACAA94Wy","menaces-courantes-cybersecurite",{"date":4564,"title":5368,"author_name":5369,"author_position":5370,"author_profile_picture":5371,"thumbnail":5377,"image":5383,"created_at":5392,"slices":5393,"meta_description":5696,"meta_image":5697,"meta_title":5368},"AI Deep Fakes, WhatsApp Scams, and More: How to Beat 6 of Today’s Biggest Cyber Threats","Sybille d'Hérouville","Head of Marketing",{"dimensions":5372,"alt":5373,"copyright":6,"url":5374,"id":5375,"edit":5376},{"width":28,"height":28},"Sybille D'Hérouville, Head of Marketing, Riot","https://images.prismic.io/riot-website/Zo1WGx5LeNNTw8zB_Sybille_Profile.png?auto=format%2Ccompress&rect=0%2C0%2C512%2C512&w=64&h=64","Zo1WGx5LeNNTw8zB",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":5378,"alt":5379,"copyright":6,"url":5380,"id":5381,"edit":5382},{"width":37,"height":38},"Biggest Cyber Threats","https://images.prismic.io/riot-website/Zo1WWR5LeNNTw8z1_Blog_CS_threats.jpg?auto=format%2Ccompress&rect=0%2C0%2C5760%2C3638&w=760&h=480","Zo1WWR5LeNNTw8z1",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":5384,"alt":5379,"copyright":6,"url":5385,"id":5381,"edit":5386,"Large":5388},{"width":45,"height":46},"https://images.prismic.io/riot-website/Zo1WWR5LeNNTw8z1_Blog_CS_threats.jpg?auto=format%2Ccompress&rect=0%2C103%2C5760%2C2469&w=1220&h=523",{"x":32,"y":5387,"zoom":33,"background":34},103,{"dimensions":5389,"alt":6,"copyright":6,"url":5390,"id":5381,"edit":5391},{"width":52,"height":53},"https://images.prismic.io/riot-website/Zo1WWR5LeNNTw8z1_Blog_CS_threats.jpg?auto=format%2Ccompress&rect=0%2C148%2C5760%2C2469&w=2440&h=1046",{"x":32,"y":648,"zoom":33,"background":34},"2024-07-09",[5394,5657,5665,5688,5692],{"variation":59,"version":60,"items":5395,"primary":5396,"id":5656,"slice_type":90,"slice_label":6},[],{"content":5397},[5398,5404,5409,5412,5415,5422,5425,5428,5431,5434,5439,5443,5448,5457,5460,5474,5481,5483,5486,5490,5494,5500,5503,5509,5512,5518,5520,5523,5527,5531,5535,5542,5545,5552,5555,5558,5560,5563,5567,5571,5575,5578,5584,5590,5592,5595,5599,5603,5607,5611,5614,5620,5623,5626,5631,5634,5637,5641,5645,5649],{"type":65,"text":5399,"spans":5400,"direction":76},"We live in a golden age of cybercrime, with scammers finding new ways to cheat us every day. And we’re not talking about pocket money – fraudsters inflicted $8 trillion USD in damage via cyber attacks in 2023. If cybercrime were an economy, it would be twice the size of Germany’s.",[5401],{"start":743,"end":3539,"type":71,"data":5402},{"link_type":73,"url":5403,"target":75},"https://cybersecurityventures.com/cybersecurity-almanac-2023/#:~:text=If%20it%20were%20measured%20as,the%20wealth%20of%20entire%20nations.",{"type":65,"text":5405,"spans":5406,"direction":76},"So, how can you keep your team safe? What can you do to avoid new threats like AI-powered deepfakes or WhatsApp spimming, as well as classic phishing scams and CEO fraud?",[5407],{"start":32,"end":5408,"type":85},170,{"type":65,"text":5410,"spans":5411,"direction":76},"Join us for a tour of six of today’s biggest cybersecurity threats – and learn how the right cybersecurity awareness platform can help you stay safe.",[],{"type":96,"text":5413,"spans":5414,"direction":76},"#1: Phishing",[],{"type":65,"text":5416,"spans":5417,"direction":76},"Phishing continues to be the foremost cyber threat, with scammers finding new ways to compromise people via email and other platforms in order to access sensitive data or funds. These threats have only grown in recent years, with estimates suggesting attempted phishing attacks have increased in volume by 175% over the 2021-2023 period.",[5418],{"start":3632,"end":5419,"type":71,"data":5420},310,{"link_type":73,"url":5421,"target":75},"https://www.zdnet.com/article/theres-been-a-big-rise-in-phishing-attacks-this-one-worked/",{"type":65,"text":5423,"spans":5424,"direction":76},"Typically, phishing campaigns target a large number of individuals in the hopes of successfully tricking a small percentage of recipients. However, with spear phishing, scammers target high-value individuals with highly tailored (and highly convincing) campaigns designed just for them.",[],{"type":65,"text":5426,"spans":5427,"direction":76},"Examples of common phishing attacks include scammers impersonating tech support members, investment advisors, family members, or even company CEOs (more on that later).",[],{"type":116,"text":5429,"spans":5430,"direction":76},"How to keep your team safe",[],{"type":65,"text":5432,"spans":5433,"direction":76},"Here are some tips to help you and your team avoid phishing scams:",[],{"type":251,"text":5435,"spans":5436,"direction":76},"Look out for weird contact details: Scammers often impersonate people using variations on their legitimate contact details, e.g. Trusted.Person@gmaail.com. Always check the details.",[5437],{"start":32,"end":5438,"type":85},35,{"type":251,"text":5440,"spans":5441,"direction":76},"Never give out sensitive information: Don’t ever divulge login details, passwords, multi-factor authentication codes, or other sensitive information – even to someone you trust.",[5442],{"start":32,"end":4723,"type":85},{"type":251,"text":5444,"spans":5445,"direction":76},"Don’t trust urgent messages: Scammers often try to catch people out with urgent messages during moments of downtime, like evenings or weekends. Stay alert and verify the situation.",[5446],{"start":32,"end":5447,"type":85},28,{"type":65,"text":5449,"spans":5450,"direction":76},"Another way to stay ahead of scammers? Run simulations to test your team with world-class phishing attempts, and make sure they know what to look out for. Then, if anyone fails these tests, you’ll know they need extra help. Get started for free today.",[5451,5452,5455],{"start":32,"end":3502,"type":85},{"start":5453,"end":5236,"type":71,"data":5454},78,{"link_type":73,"url":234,"target":3629},{"start":473,"end":3631,"type":71,"data":5456},{"link_type":73,"url":5055,"target":3629},{"type":96,"text":5458,"spans":5459,"direction":76},"#2: AI-powered deepfakes",[],{"type":65,"text":5461,"spans":5462,"direction":76},"Recently, we’ve seen the rise of some incredible AI tools, including audio and video deepfakes. As impressive as these are, they give rise to a new set of fraud risks, with scammers finding ways to impersonate our colleagues, loved ones, and even our political representatives.",[5463,5466,5471],{"start":3644,"end":473,"type":71,"data":5464},{"link_type":73,"url":5465,"target":75},"https://www.entrepreneur.com/business-news/beware-deepfake-scams-could-target-your-next-zoom-meeting/458414",{"start":5467,"end":5468,"type":71,"data":5469},226,236,{"link_type":73,"url":5470,"target":75},"https://www.euronews.com/next/2023/03/25/audio-deepfake-scams-criminals-are-using-ai-to-sound-like-family-and-people-are-falling-fo",{"start":3347,"end":1182,"type":71,"data":5472},{"link_type":73,"url":5473,"target":75},"https://www.theguardian.com/world/2022/jun/25/european-leaders-deepfake-video-calls-mayor-of-kyiv-vitali-klitschko",{"type":65,"text":5475,"spans":5476,"direction":76},"For example, software platform Retool recently experienced a data breach in which a scammer sent an employee a spoof of the company’s internal ID portal, then called them using a deepfake of an IT team member’s actual voice. They convinced the victim to provide a MFA code, which they then used to access a number of Retool customer accounts. Scary stuff!",[5477,5480],{"start":854,"end":3223,"type":71,"data":5478},{"link_type":73,"url":5479,"target":75},"https://retool.com/blog/mfa-isnt-mfa/",{"start":4144,"end":3470,"type":229},{"type":116,"text":5429,"spans":5482,"direction":76},[],{"type":65,"text":5484,"spans":5485,"direction":76},"AI-powered audio and video deepfakes can be tricky to detect. Here are some ways to stay safe:",[],{"type":251,"text":5487,"spans":5488,"direction":76},"Agree to a safe word or password: You should agree on a safe word or password with your team (and your immediate family, too). That way, if you’re ever in doubt about who you’re talking to, you can verify.",[5489],{"start":32,"end":444,"type":85},{"type":251,"text":5491,"spans":5492,"direction":76},"Beware of cryptocurrency requests: Crypto is harder to recover than regular currency, making it perfect for fraudsters. Any requests for crypto payments should be a big red flag.",[5493],{"start":32,"end":3712,"type":85},{"type":251,"text":5495,"spans":5496,"direction":76},"Manage your digital footprint: Deepfakes are based on sample clips of audio and video, so pay attention to your public digital footprint and be mindful of what you share with strangers.",[5497,5498],{"start":32,"end":5303,"type":85},{"start":596,"end":1203,"type":71,"data":5499},{"link_type":73,"url":306,"target":3629},{"type":96,"text":5501,"spans":5502,"direction":76},"#3: CEO fraud (Business Email Compromise)",[],{"type":65,"text":5504,"spans":5505,"direction":76},"We’ve seen a lot of tech developments lately, but one thing has stayed the same: CEO fraud – also known as Business Email Compromise (BEC) – is still a huge risk. Scammers are finding new ways to pose as company CEOs, pressuring employees to transfer money, pay fake invoices, or hand over sensitive company data.",[5506],{"start":3176,"end":5507,"type":71,"data":5508},192,{"link_type":73,"url":3890,"target":3629},{"type":65,"text":5510,"spans":5511,"direction":76},"These scams often use social engineering to build trust, including monitoring social media activity, spoofing mobile numbers, and even creating elaborate fake email chains.",[],{"type":65,"text":5513,"spans":5514,"direction":76},"For example, in 2023 Europol cracked down on an international syndicate of scammers conducting a sophisticated CEO fraud campaign, alleging that the group had scammed a Parisian real estate developer out of €38 million with a series of bogus acquisition payment requests.",[5515],{"start":439,"end":3224,"type":71,"data":5516},{"link_type":73,"url":5517,"target":75},"https://www.europol.europa.eu/media-press/newsroom/news/franco-israeli-gang-behind-eur-38-million-ceo-fraud-busted",{"type":116,"text":5429,"spans":5519,"direction":76},[],{"type":65,"text":5521,"spans":5522,"direction":76},"CEO fraud is a big deal for companies everywhere. You and your team can lower your risk by:",[],{"type":251,"text":5524,"spans":5525,"direction":76},"Being wary of urgent situations: As with phishing, CEO fraud scams often create urgent situations to pressure people into complying. Take a breath and check the details.",[5526],{"start":32,"end":204,"type":85},{"type":251,"text":5528,"spans":5529,"direction":76},"Treating personal email addresses as a big red flag: If your CEO ever reaches out from what looks like their personal email account, be extra careful – this is a common sign of fraud.",[5530],{"start":32,"end":4512,"type":85},{"type":251,"text":5532,"spans":5533,"direction":76},"Side-channel: If you’re ever in doubt about whether you’re speaking to your actual CEO or a fraudster, get in touch with your CEO via a side-channel. Trust us – they’ll thank you later.",[5534],{"start":32,"end":163,"type":85},{"type":65,"text":5536,"spans":5537,"direction":76},"Learn more: Your Boring Cybersecurity Training is Only Helping Scammers – Here Are 4 Ways We Can Do Better",[5538,5539,5540],{"start":32,"end":5238,"type":229},{"start":32,"end":5238,"type":85},{"start":232,"end":5238,"type":71,"data":5541},{"link_type":73,"url":142,"target":75},{"type":96,"text":5543,"spans":5544,"direction":76},"#4: WhatsApp scams (spimming)",[],{"type":65,"text":5546,"spans":5547,"direction":76},"WhatsApp is now the world’s most popular instant messaging platform, with its two billion users exchanging 100 billion messages every day.",[5548],{"start":5453,"end":5549,"type":71,"data":5550},95,{"link_type":73,"url":5551,"target":75},"https://blog.whatsapp.com/two-billion-users-connecting-the-world-privately",{"type":65,"text":5553,"spans":5554,"direction":76},"Can you guess who else loves WhatsApp? Scammers!",[],{"type":65,"text":5556,"spans":5557,"direction":76},"In 2023, we saw a huge rise in fraudsters using WhatsApp (and other instant messaging platforms) to scam people with bogus crypto investments, phoney job offers, catfishing campaigns, and classic phishing scams. You’ve probably seen some of these yourself – and if your team uses WhatsApp in a professional context, you need to be aware of the risks.",[],{"type":116,"text":5429,"spans":5559,"direction":76},[],{"type":65,"text":5561,"spans":5562,"direction":76},"Before you click that green button, here are some things to remember:",[],{"type":251,"text":5564,"spans":5565,"direction":76},"Check your privacy settings: WhatsApp offers users ways to protect their data, limit the personal information strangers can see, and stay safe on group chats. Be sure to take a look.",[5566],{"start":32,"end":5447,"type":85},{"type":251,"text":5568,"spans":5569,"direction":76},"Be careful with groups: WhatsApp groups are high-trust environments, making them a goldmine for scammers. Keep group invite links private, and monitor your chats to stay safe.",[5570],{"start":32,"end":1298,"type":85},{"type":251,"text":5572,"spans":5573,"direction":76},"Don’t trust strangers – ever: Only connect with people you actually know. If anyone asks you to transfer money or share sensitive information, block them and report the scam. ",[5574],{"start":32,"end":104,"type":85},{"type":96,"text":5576,"spans":5577,"direction":76},"#5: Malware and ransomware",[],{"type":65,"text":5579,"spans":5580,"direction":76},"From the classic ‘ILOVEYOU’ virus through to today’s more sophisticated programs, malware is still a major threat. And while our protective layers of security are already identifying over 300,000 instances of malware every day, there is still a lot more work to do to stay safe.",[5581],{"start":195,"end":5467,"type":71,"data":5582},{"link_type":73,"url":5583,"target":75},"https://www.techopedia.com/cybersecurity-statistics",{"type":65,"text":5585,"spans":5586,"direction":76},"The threat of malware also includes ransomware, like the attack from the ‘Scattered Spider’ network on MGM Resorts hotels and casinos in September 2023. This attack took a number of MGM properties offline for multiple days, causing millions of dollars in damage and disruption.",[5587],{"start":5387,"end":1094,"type":71,"data":5588},{"link_type":73,"url":5589,"target":75},"https://techcrunch.com/2023/09/14/mgm-cyberattack-outage-scattered-spider/",{"type":116,"text":5429,"spans":5591,"direction":76},[],{"type":65,"text":5593,"spans":5594,"direction":76},"Here are a few tips to protect your team against malware or ransomware attacks:",[],{"type":251,"text":5596,"spans":5597,"direction":76},"Use a good virus scanner: Most email platforms now offer automatic virus scanning, so be sure to use it everywhere – and always report scams to help the system improve.",[5598],{"start":32,"end":203,"type":85},{"type":251,"text":5600,"spans":5601,"direction":76},"Don’t open unknown attachments or click on weird links: Even when these come from trusted sources, the risk isn’t worth it. If in doubt, don’t click!",[5602],{"start":32,"end":4056,"type":85},{"type":251,"text":5604,"spans":5605,"direction":76},"Beware of ‘vishing’ attacks: The MGM ransomware attack all started with a ‘vishing’ (voice phishing) attack. Always be wary of attempts to access sensitive information over the phone.",[5606],{"start":32,"end":5447,"type":85},{"type":251,"text":5608,"spans":5609,"direction":76},"Sound the alarm if you’ve been targeted: Cybersecurity is everyone’s business – especially your IT team’s. If you think you’ve been targeted by malware, let them know right away.",[5610],{"start":32,"end":4987,"type":85},{"type":96,"text":5612,"spans":5613,"direction":76},"#6: Third-party vulnerabilities",[],{"type":65,"text":5615,"spans":5616,"direction":76},"To finish our tour, let’s look at an increasingly common threat: third-party cybersecurity vulnerabilities. This isn’t a specific type of scam, but a wider set of threats organizations need to be aware of – especially companies operating under the EU’s NIS2 cybersecurity framework.",[5617],{"start":4187,"end":5618,"type":71,"data":5619},281,{"link_type":73,"url":3767,"target":3629},{"type":65,"text":5621,"spans":5622,"direction":76},"From October 2024, NIS2 will require many EU companies to perform a greater range of due diligence on the cybersecurity practices adopted by their third-party suppliers and service providers. If they fail to do so, they can face fines, legal action, and other penalties.",[],{"type":65,"text":5624,"spans":5625,"direction":76},"Specifically, NIS2 requires companies to assess supply chain partner compliance with baseline cybersecurity requirements, including risk analysis, incident response planning, the use of cryptography and encryption, and other measures. Where companies identify any third-party vulnerabilities, they must address these with appropriate security measures.",[],{"type":65,"text":5627,"spans":5628,"direction":76},"These checks aren’t just about legal compliance – they also ensure a shared commitment to cybersecurity across your business network. For example, the Okta 2021 data breach was ultimately a result of security vulnerabilities on behalf of Sykes, a customer support provider contracted by Okta. This shows why active third-party cybersecurity management is so crucial.",[5629],{"start":4228,"end":3539,"type":71,"data":5630},{"link_type":73,"url":4836,"target":75},{"type":116,"text":5632,"spans":5633,"direction":76},"How to keep your team (and wider business network) safe",[],{"type":65,"text":5635,"spans":5636,"direction":76},"Third-party cybersecurity checks can help keep your business network safe. Be sure to:",[],{"type":251,"text":5638,"spans":5639,"direction":76},"Review third-party protections: Consider the strength of your supplier and service providers’ cybersecurity measures, and whether these could give rise to any vulnerabilities.",[5640],{"start":32,"end":3841,"type":85},{"type":251,"text":5642,"spans":5643,"direction":76},"Take active steps to address these vulnerabilities: If you identify any vulnerabilities, you must take active steps to address these – especially when it involves customer data.",[5644],{"start":32,"end":1942,"type":85},{"type":251,"text":5646,"spans":5647,"direction":76},"Make a NIS2 compliance roadmap: Companies covered by NIS2 may need to expand their risk management systems or expand their processes for managing third-party vulnerabilities.",[5648],{"start":32,"end":3841,"type":85},{"type":65,"text":5650,"spans":5651,"direction":76},"For more guidance, be sure to download our free NIS2 compliance checklist.",[5652,5653,5654],{"start":32,"end":4415,"type":229},{"start":32,"end":4415,"type":85},{"start":5303,"end":402,"type":71,"data":5655},{"link_type":73,"url":4862,"target":75},"article_content$6ad1b9e2-5324-49eb-9c3e-d79027411cfa",{"variation":59,"version":60,"items":5658,"primary":5659,"id":5664,"slice_type":3203,"slice_label":6},[],{"title":4867,"hubspot_form_id":4868,"image":5660},{"dimensions":5661,"alt":5662,"copyright":6,"url":4872,"id":4873,"edit":5663},{"width":3197,"height":764},"NIS2 compliance checklist",{"x":32,"y":32,"zoom":33,"background":34},"article_hubspot_form$1eb8c542-dea4-4f67-8694-f01ac3dc09ce",{"variation":59,"version":60,"items":5666,"primary":5667,"id":5687,"slice_type":90,"slice_label":6},[],{"content":5668},[5669,5672,5677,5680],{"type":96,"text":5670,"spans":5671,"direction":76},"Conquer cyber threats with great awareness training",[],{"type":65,"text":5673,"spans":5674,"direction":76},"Scammers are always trying to get the better of you. And unfortunately, your team is likely the weakest link: studies show that 85% of all successful data breaches involve human error. That’s why it’s so important to build a strong culture of cybersecurity awareness.",[5675],{"start":2592,"end":3176,"type":71,"data":5676},{"link_type":73,"url":4889,"target":75},{"type":65,"text":5678,"spans":5679,"direction":76},"At Riot, we uses conversational training to teach your team about the latest cybersecurity threats, including AI-powered deepfakes, WhatsApp scams, and more. Even better, you can get a clear view of your awareness levels, knowing who your champions are, and who needs more help.",[],{"type":65,"text":5681,"spans":5682,"direction":76},"To find out how Riot can help you and your team stay on top of these six threats with unforgettably fun training, get in touch with one of our experts today.",[5683,5684],{"start":32,"end":743,"type":85},{"start":69,"end":5685,"type":71,"data":5686},156,{"link_type":73,"url":454,"target":75},"article_content$a17b1882-a7ea-4f64-a9fd-d8b517b99fec",{"variation":59,"version":60,"items":5689,"primary":5690,"id":5691,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$ff10a83b-756a-45c4-a9bb-e4171ff20848",{"variation":59,"version":60,"items":5693,"primary":5694,"id":5695,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$0988c2ff-c9bf-433f-b23f-4f12d38e185c","From AI deep fakes to WhatsApp scams and more, come and find out how to keep your team safe from 6 of today's biggest cyber threats.",{"dimensions":5698,"alt":5699,"copyright":6,"url":5700,"id":5381,"edit":5701},{"width":469,"height":470},"Biggest cyber threats","https://images.prismic.io/riot-website/Zo1WWR5LeNNTw8z1_Blog_CS_threats.jpg?auto=format%2Ccompress&rect=0%2C0%2C5760%2C3024&w=2400&h=1260",{"x":32,"y":32,"zoom":33,"background":34},{"id":5703,"uid":5704,"url":6,"type":7,"href":5705,"tags":5706,"first_publication_date":5707,"last_publication_date":5708,"slugs":5709,"linked_documents":5711,"lang":16,"alternate_languages":5712,"data":5716},"ZmltLRAAACEAkK-M","nis2-compliance-guide","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22ZmltLRAAACEAkK-M%22%29+%5D%5D",[3412],"2024-06-12T09:47:35+0000","2026-06-09T15:24:07+0000",[5710],"what-is-nis2-and-why-does-it-matter",[],[5713],{"id":5714,"type":7,"lang":20,"uid":5715},"ZmmxPBAAACIAkSMi","nis2-guide-conformite",{"date":5717,"title":5718,"author_name":24,"author_position":3101,"author_profile_picture":5719,"thumbnail":5723,"image":5729,"created_at":5739,"slices":5740,"meta_description":6120,"meta_image":6121,"meta_title":5718},"June 2024","Your Guide to NIS2 Compliance – And Our Free Cybersecurity Checklist",{"dimensions":5720,"alt":5721,"copyright":6,"url":4568,"id":30,"edit":5722},{"width":28,"height":28},"Tom Baragwanath Head of Content",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":5724,"alt":5725,"copyright":6,"url":5726,"id":5727,"edit":5728},{"width":37,"height":38},"NIS2 Compliance Checklist","https://images.prismic.io/riot-website/ZnqXUpbWFbowe1Q8_Blog_NIS2_Guide_V2.jpg?auto=format%2Ccompress&rect=0%2C101%2C5760%2C3638&w=760&h=480","ZnqXUpbWFbowe1Q8",{"x":32,"y":3267,"zoom":33,"background":34},{"dimensions":5730,"alt":5725,"copyright":6,"url":5731,"id":5727,"edit":5732,"Large":5734},{"width":45,"height":46},"https://images.prismic.io/riot-website/ZnqXUpbWFbowe1Q8_Blog_NIS2_Guide_V2.jpg?auto=format%2Ccompress&rect=0%2C553%2C5760%2C2469&w=1220&h=523",{"x":32,"y":5733,"zoom":33,"background":34},553,{"dimensions":5735,"alt":5725,"copyright":6,"url":5736,"id":5727,"edit":5737},{"width":52,"height":53},"https://images.prismic.io/riot-website/ZnqXUpbWFbowe1Q8_Blog_NIS2_Guide_V2.jpg?auto=format%2Ccompress&rect=0%2C525%2C5760%2C2469&w=2440&h=1046",{"x":32,"y":5738,"zoom":33,"background":34},525,"2024-06-13",[5741,6051,6058,6112,6116],{"variation":59,"version":60,"items":5742,"primary":5743,"id":6050,"slice_type":90,"slice_label":6},[],{"content":5744},[5745,5748,5752,5755,5762,5765,5772,5775,5779,5783,5788,5791,5794,5797,5805,5810,5813,5817,5820,5823,5826,5829,5832,5835,5838,5845,5848,5856,5862,5865,5872,5876,5880,5884,5888,5892,5895,5898,5901,5906,5911,5919,5923,5926,5930,5936,5939,5942,5946,5955,5960,5965,5970,5974,5980,5984,5991,5996,6001,6007,6011,6015,6020,6024,6027,6031,6035,6039,6044],{"type":65,"text":5746,"spans":5747,"direction":76},"Ready or not, NIS2 is here. From October 2024, relevant organizations operating in the EU will need to comply with NIS2’s expanded set of cybersecurity measures, including supply chain checks, enhanced reporting obligations, and more detailed incident response planning.",[],{"type":65,"text":5749,"spans":5750,"direction":76},"If all of this is giving you a headache, don’t worry – we’re here to break down exactly what NIS2 means for you. In this article, we explain the ten baseline NIS2 requirements, and show how the right cybersecurity awareness training can help your team get ready.",[5751],{"start":32,"end":715,"type":85},{"type":65,"text":5753,"spans":5754,"direction":76},"Let’s get started with the basics: what is NIS2, and why does it matter?",[],{"type":65,"text":5756,"spans":5757,"direction":76},"Ready to make NIS2 a walk in the park? Download our free six-step compliance checklist.",[5758,5759,5760],{"start":32,"end":4858,"type":229},{"start":32,"end":4858,"type":85},{"start":4512,"end":1354,"type":71,"data":5761},{"link_type":73,"url":4862,"target":3629},{"type":96,"text":5763,"spans":5764,"direction":76},"What is NIS2, and why does it matter?",[],{"type":65,"text":5766,"spans":5767,"direction":76},"The Network and Information Security Directive (NIS2) is an EU regulatory directive establishing a higher common level of cybersecurity across organizations operating within Member States. It builds upon the 2016 NIS by requiring entities to take extra steps to protect themselves against cyber threats.",[5768,5769],{"start":32,"end":195,"type":85},{"start":109,"end":3524,"type":71,"data":5770},{"link_type":73,"url":5771,"target":75},"https://www.nis-2-directive.com/",{"type":65,"text":5773,"spans":5774,"direction":76},"Specifically, NIS2 aims to:",[],{"type":415,"text":5776,"spans":5777,"direction":76},"Increase cybersecurity resilience by requiring EU entities fulfilling important functions for economy and society to take adequate cybersecurity protection measures;",[5778],{"start":32,"end":444,"type":85},{"type":415,"text":5780,"spans":5781,"direction":76},"Reduce inconsistencies in cybersecurity preparedness by further aligning security and incident reporting and outlining an expanded list of compulsory security measures; and",[5782],{"start":32,"end":4512,"type":85},{"type":415,"text":5784,"spans":5785,"direction":76},"Improve collective capability to respond to threats by building trust between authorities, sharing information, and setting rules to apply in the event of a large-scale security incident.",[5786,5787],{"start":32,"end":104,"type":85},{"start":5303,"end":1942,"type":85},{"type":65,"text":5789,"spans":5790,"direction":76},"Following the EU’s approval of NIS2 in January 2023, Member States have until October 2024 to transpose its measures into national law. At that point, EU entities must comply with NIS2 requirements or risk facing fines or other enforcement measures.",[],{"type":65,"text":5792,"spans":5793,"direction":76},"Now, let’s dig into a related topic: what about the Digital Operational Resilience Act?",[],{"type":96,"text":5795,"spans":5796,"direction":76},"Wait, what about DORA?",[],{"type":65,"text":5798,"spans":5799,"direction":76},"Alongside NIS2, the Digital Operational Resilience Act (DORA) will also come into effect within EU Member States in early 2025. While the NIS2 directive and DORA regulation are distinct texts, in practice they achieve complementary goals.",[5800,5801],{"start":1657,"end":3130,"type":85},{"start":2163,"end":5802,"type":71,"data":5803},54,{"link_type":73,"url":5804,"target":75},"https://eur-lex.europa.eu/eli/reg/2022/2554/oj",{"type":65,"text":5806,"spans":5807,"direction":76},"NIS2 aims to harmonize the global level of cybersecurity across the EU, whereas DORA aims to strengthen the operational resilience of entities within the EU financial sector, ensuring financial systems are able to withstand cyber attacks.",[5808],{"start":3661,"end":5809,"type":85},174,{"type":65,"text":5811,"spans":5812,"direction":76},"Put simply, DORA outlines a specific regulatory framework for EU financial sector entities. If you work within one of the 21 types of entity referred to in Article 2 of DORA (credit institutions, payment institutions, investment firms, and others), or are a critical supplier to these entities, then you may need to expand your cybersecurity measures to keep up.",[],{"type":65,"text":5814,"spans":5815,"direction":76},"Here are the five key DORA requirements and what they mean for affected entities:",[5816],{"start":32,"end":3274,"type":85},{"type":415,"text":5818,"spans":5819,"direction":76},"Entities must have an Information and Communications Technology (ICT) Risk Management Framework in place, and must familiarize all staff with this framework.",[],{"type":415,"text":5821,"spans":5822,"direction":76},"Similarly, entities must have an incident response process in place, including classifying incidents and reporting them correctly.",[],{"type":415,"text":5824,"spans":5825,"direction":76},"Security testing will now be mandatory, and must be carried out more often than before.",[],{"type":415,"text":5827,"spans":5828,"direction":76},"Entities must map out all third-party risks and show how they’re addressing these (for example, risks within key suppliers).",[],{"type":415,"text":5830,"spans":5831,"direction":76},"It will now become mandatory for entities to share threat intelligence within the community of financial entities.",[],{"type":65,"text":5833,"spans":5834,"direction":76},"Many larger organizations within the EU financial sector will likely comply with these elements thanks to their existing cybersecurity systems and protections. However, for smaller entities working within the sector, these elements may require new levels of preparation.",[],{"type":65,"text":5836,"spans":5837,"direction":76},"Now, back to NIS2. How is it different from the 2016 NIS?",[],{"type":65,"text":5839,"spans":5840,"direction":76},"Learn more: A Culture of Cybersecurity Awareness Helps Manage Risk and Boost ROI – Here's How",[5841,5842,5843],{"start":32,"end":686,"type":229},{"start":32,"end":686,"type":85},{"start":232,"end":686,"type":71,"data":5844},{"link_type":73,"url":3357,"target":75},{"type":96,"text":5846,"spans":5847,"direction":76},"How is NIS2 different from the 2016 NIS?",[],{"type":65,"text":5849,"spans":5850,"direction":76},"In the years following NIS coming into force, EU lawmakers identified some challenges with its application. Specifically, NIS standards didn’t reflect the level of interconnectedness between digitized sectors, and didn’t match the growing complexity of cyber threats. They also didn’t anticipate the rapid expansion of online activity due to the COVID-19 pandemic.",[5851],{"start":5852,"end":5853,"type":71,"data":5854},346,363,{"link_type":73,"url":5855,"target":75},"https://digital-strategy.ec.europa.eu/en/faqs/directive-measures-high-common-level-cybersecurity-across-union-nis2-directive-faqs",{"type":65,"text":5857,"spans":5858,"direction":76},"NIS2 addresses these challenges by covering a wider segment of EU industries, including ICT management and manufacturing (we’ve included the full list in the table below). With this expanded coverage, experts estimate NIS2 will apply to around 160,000 entities across 27 Member States, helping to create an enhanced set of shared cybersecurity practices.",[5859],{"start":4051,"end":4188,"type":71,"data":5860},{"link_type":73,"url":5861,"target":75},"https://www.eversheds-sutherland.com/lists/static/uploads/nis2-whitepaper.pdf",{"type":116,"text":5863,"spans":5864,"direction":76},"Five key expansions from NIS to NIS2",[],{"type":65,"text":5866,"spans":5867,"direction":76},"Beyond applying to a greater number of EU entities, NIS2 requires organizations to take additional steps to protect themselves against cybersecurity threats. It does this by expanding upon NIS in five critical ways:",[5868,5869],{"start":5809,"end":4404,"type":85},{"start":4098,"end":3644,"type":71,"data":5870},{"link_type":73,"url":5871,"target":75},"https://www2.deloitte.com/se/sv/pages/risk/articles/key-focus-areas-for-nis2-compliance.html",{"type":415,"text":5873,"spans":5874,"direction":76},"Risk ownership: Management bodies will now have a more central role in owning cybersecurity risks, including approving and implementing risk management measures.",[5875],{"start":32,"end":366,"type":85},{"type":415,"text":5877,"spans":5878,"direction":76},"Enforcement penalties: EU authorities can now impose fines of up to €10 million, or 2% of a company’s global annual turnover, in response to NIS2 breaches. They can also publicly disclose aspects of non-compliance and suspend certifications and authorizations.",[5879],{"start":32,"end":103,"type":85},{"type":415,"text":5881,"spans":5882,"direction":76},"Security requirements: Essential and important entities will be required to take ‘appropriate and proportionate’ technical measures to manage risks to the security of network and information systems (more on this below).",[5883],{"start":32,"end":103,"type":85},{"type":415,"text":5885,"spans":5886,"direction":76},"Supply chain security: Entities will now be required to perform a greater range of due diligence on their supply chain processes, including assessing the cybersecurity practices of their suppliers and service providers, and taking action to address any risks.",[5887],{"start":32,"end":103,"type":85},{"type":415,"text":5889,"spans":5890,"direction":76},"Incident reporting: Entities must report cybersecurity incidents more promptly, submitting initial notifications to competent authorities within 24 hours of significant incidents, followed by a full notification report within 72 hours, and a final report after one month.",[5891],{"start":32,"end":1880,"type":85},{"type":65,"text":5893,"spans":5894,"direction":76},"So, those are the core elements of NIS2. But how do they apply to your organization?",[],{"type":96,"text":5896,"spans":5897,"direction":76},"‘Important’ vs. ‘essential’ entities: How will NIS2 affect you?",[],{"type":65,"text":5899,"spans":5900,"direction":76},"NIS2 makes significant changes to how EU entities are categorized in terms of cybersecurity requirements. This addresses the risk of inconsistent treatment under the 2016 NIS, where Member States had applied divergent definitions of ‘vital organizations’ (covered by the NIS) and ‘non-vital organizations’ (not covered), creating confusion for affected entities.",[],{"type":65,"text":5902,"spans":5903,"direction":76},"To address these inconsistencies, NIS2 outlines a single set of simplified set of cybersecurity requirements covering all ‘essential entities’ and ‘important entities’, and requires Member States to identify and register entities operating within their territories by April 2025.",[5904],{"start":5905,"end":3309,"type":85},50,{"type":65,"text":5907,"spans":5908,"direction":76},"Here’s a quick overview on how entities within the EU will be classified under NIS2:",[5909],{"start":32,"end":5910,"type":85},84,{"type":120,"url":5912,"alt":5913,"copyright":6,"dimensions":5914,"id":5917,"edit":5918},"https://images.prismic.io/riot-website/ZnKs7pm069VX13-P_Blog_NIS2_EN_updated_version.png?auto=format,compress","NIS2 entity classification",{"width":5915,"height":5916},1522,1614,"ZnKs7pm069VX13-P",{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":5920,"spans":5921,"direction":76},"Note: * indicates new sectors added in transition from NIS to NIS2",[5922],{"start":32,"end":3343,"type":229},{"type":116,"text":5924,"spans":5925,"direction":76},"Does NIS2 impact companies outside the EU?",[],{"type":65,"text":5927,"spans":5928,"direction":76},"NIS2 requirements apply only to essential and important entities within EU Member States. However, any companies doing business with EU entities should bear in mind NIS2’s new supply chain security requirements, and how these requirements will also extend to business partners.",[5929],{"start":32,"end":139,"type":85},{"type":65,"text":5931,"spans":5932,"direction":76},"Alongside NIS2, over 40 US states have introduced 250 bills focused on cybersecurity, with more expected to come. This makes it critical for US organizations to examine whether their security policies and systems remain fit-for-purpose in light of these expanding requirements.",[5933],{"start":3586,"end":5910,"type":71,"data":5934},{"link_type":73,"url":5935,"target":75},"https://techcrunch.com/2023/08/24/cypago-compliance-governance-startup-raises-13m/",{"type":65,"text":5937,"spans":5938,"direction":76},"Now, let’s unpack the ten foundational cybersecurity measures required by NIS2.",[],{"type":96,"text":5940,"spans":5941,"direction":76},"The ten baseline cybersecurity measures required by NIS2",[],{"type":65,"text":5943,"spans":5944,"direction":76},"NIS2 requires all essential and important EU entities to take appropriate and proportionate technical, operational, and organizational measures to manage the risks posed to the security of network and information systems.",[5945],{"start":673,"end":697,"type":85},{"type":65,"text":5947,"spans":5948,"direction":76},"Entities must prevent or minimize the impact of any security incidents on their clients, customers, and users. Specifically, Article 21 outlines ten minimum baseline measures all essential and important entities must have in place to manage cybersecurity risks:",[5949,5952,5953],{"start":4364,"end":5809,"type":71,"data":5950},{"link_type":73,"url":5951,"target":75},"https://nis2directive.eu/nis2-requirements/",{"start":4364,"end":4212,"type":85},{"start":3474,"end":5954,"type":85},261,{"type":415,"text":5956,"spans":5957,"direction":76},"Policies on risk analysis and information system security, including guidance for staff members on basic IT security practices and risk management.",[5958,5959],{"start":32,"end":203,"type":85},{"start":176,"end":4177,"type":85},{"type":415,"text":5961,"spans":5962,"direction":76},"A plan for handling security incidents, including reporting, investigating, and resolving incidents, and clarifying the individuals and groups responsible for these actions.",[5963,5964],{"start":32,"end":1880,"type":85},{"start":2163,"end":3586,"type":85},{"type":415,"text":5966,"spans":5967,"direction":76},"Policies to ensure business continuity, including managing operations during and after a security incident. Specifically, this means ensuring backups are up-to-date, and maintaining access to IT systems and their operating functions.",[5968,5969],{"start":32,"end":349,"type":85},{"start":1880,"end":3586,"type":85},{"type":415,"text":5971,"spans":5972,"direction":76},"Supply chain security policies and best practices, including managing any security risks that may arise through the relationship between a company and its direct suppliers. Specifically, companies must assess the security level for all suppliers, identify any potential vulnerabilities, and address these with appropriate security measures.",[5973],{"start":32,"end":5905,"type":85},{"type":415,"text":5975,"spans":5976,"direction":76},"Policies to ensure the secure acquisition, development, and maintenance of networks and information systems. This includes handling and disclosing any security vulnerabilities.",[5977,5978,5979],{"start":32,"end":4961,"type":85},{"start":232,"end":104,"type":85},{"start":5303,"end":140,"type":85},{"type":415,"text":5981,"spans":5982,"direction":76},"Policies and procedures to assess the effectiveness of cybersecurity risk-management measures, including scheduling third-party audits and acting on the results of these audits.",[5983],{"start":32,"end":4757,"type":85},{"type":415,"text":5985,"spans":5986,"direction":76},"Basic cyber hygiene practices and cybersecurity training. This includes training in how to identify the most common cybersecurity threats, what to do in response to these threats, and best practices to keep sensitive data secure.",[5987,5988,5989],{"start":32,"end":444,"type":85},{"start":3712,"end":3650,"type":85},{"start":3223,"end":4510,"type":71,"data":5990},{"link_type":73,"url":142,"target":3629},{"type":415,"text":5992,"spans":5993,"direction":76},"Policies and procedures regarding the use of cryptography and, when relevant, encryption. This includes storing and handling sensitive client and customer information.",[5994,5995],{"start":32,"end":3464,"type":85},{"start":3431,"end":139,"type":85},{"type":415,"text":5997,"spans":5998,"direction":76},"Human resources security policies and procedures covering employees with access to sensitive or important data. Specifically, organizations must have a clear overview of all relevant data assets, and ensure that they are properly utilized and handled.",[5999,6000],{"start":32,"end":439,"type":85},{"start":3406,"end":4758,"type":85},{"type":415,"text":6002,"spans":6003,"direction":76},"The use of multi-factor authentication and continuous authentication solutions, including secured voice, video, and text communications, and where relevant, encrypted internal emergency communication.",[6004,6005],{"start":32,"end":210,"type":85},{"start":4961,"end":6006,"type":85},79,{"type":65,"text":6008,"spans":6009,"direction":76},"So, how can organizations be confident the measures they have in place are ‘appropriate and proportional’ within the meaning of NIS2? This involves considering three factors:",[6010],{"start":3661,"end":5809,"type":85},{"type":415,"text":6012,"spans":6013,"direction":76},"The degree of the entity’s exposure to risks;",[6014],{"start":3871,"end":3464,"type":85},{"type":415,"text":6016,"spans":6017,"direction":76},"The size of the entity and the likelihood of security incidents occurring; and",[6018,6019],{"start":109,"end":103,"type":85},{"start":3841,"end":4415,"type":85},{"type":415,"text":6021,"spans":6022,"direction":76},"The severity of the potential impacts of these security incidents (including their societal and economic impact).",[6023],{"start":109,"end":4723,"type":85},{"type":116,"text":6025,"spans":6026,"direction":76},"What happens if we don’t comply with NIS2 cybersecurity measures?",[],{"type":65,"text":6028,"spans":6029,"direction":76},"Compared with the NIS penalty regime, NIS2 introduces a set of stricter penalties for entities failing to comply with baseline cybersecurity measures:",[6030],{"start":5052,"end":3274,"type":85},{"type":251,"text":6032,"spans":6033,"direction":76},"Essential entities may face fines of up to €10 million, or at least 2% of the total annual global turnover in the previous fiscal year (whichever amount is higher).",[6034],{"start":32,"end":349,"type":85},{"type":251,"text":6036,"spans":6037,"direction":76},"Important entities may face fines of up to €7 million, or at least 1.4% of the total annual global turnover in the previous fiscal year (whichever amount is higher).",[6038],{"start":32,"end":349,"type":85},{"type":65,"text":6040,"spans":6041,"direction":76},"In many cases, these penalties could potentially threaten future business viability, not to mention impacts on company reputation. But beyond these formal consequences, complying with NIS2 requirements is the right thing to do. It reflects a shared commitment to cybersecurity, and is an essential way to keep your customers, clients, and employees safe from cyber threats.",[6042],{"start":709,"end":6043,"type":85},227,{"type":65,"text":5756,"spans":6045,"direction":76},[6046,6047,6048],{"start":32,"end":4858,"type":229},{"start":32,"end":4858,"type":85},{"start":3586,"end":1354,"type":71,"data":6049},{"link_type":73,"url":4862,"target":3629},"article_content$d3c0b9cf-a861-48b8-9202-d7eac0d3e6f1",{"variation":59,"version":60,"items":6052,"primary":6053,"id":6057,"slice_type":3203,"slice_label":6},[],{"title":4867,"hubspot_form_id":4868,"image":6054},{"dimensions":6055,"alt":4871,"copyright":6,"url":4872,"id":4873,"edit":6056},{"width":3197,"height":764},{"x":32,"y":32,"zoom":33,"background":34},"article_hubspot_form$04cc8118-f84c-4114-95c8-409d75bf2178",{"variation":59,"version":60,"items":6059,"primary":6060,"id":6111,"slice_type":90,"slice_label":6},[],{"content":6061},[6062,6065,6068,6076,6083,6087,6091,6095,6099,6103,6107],{"type":96,"text":6063,"spans":6064,"direction":76},"The key to NIS2 compliance? A great cybersecurity culture",[],{"type":65,"text":6066,"spans":6067,"direction":76},"Complying with NIS2’s expanded cybersecurity requirements might seem daunting, but it doesn’t have to be. One of the best ways to prepare? Build a culture of shared cybersecurity awareness.",[],{"type":65,"text":6069,"spans":6070,"direction":76},"You need everyone on your team to be aware of the latest cybersecurity threats (such as spear phishing or AI deepfakes), and how to keep your organization and your clients and customers safe from these threats with the right cybersecurity best practices.",[6071,6074],{"start":4353,"end":6072,"type":71,"data":6073},102,{"link_type":73,"url":234,"target":3629},{"start":5238,"end":3438,"type":71,"data":6075},{"link_type":73,"url":3262,"target":3629},{"type":65,"text":6077,"spans":6078,"direction":76},"To find out how Albert can deliver fun and unforgettable cybersecurity training to help boost your protection and comply with NIS2 requirements, chat to one of our experts today.",[6079,6080],{"start":32,"end":1151,"type":85},{"start":4364,"end":6081,"type":71,"data":6082},177,{"link_type":73,"url":454,"target":3629},{"type":116,"text":6084,"spans":6085,"direction":76},"Frequently Asked Questions:",[6086],{"start":32,"end":3871,"type":85},{"type":251,"text":6088,"spans":6089,"direction":76},"What is the NIS2 Directive? NIS2 is a EU regulatory measure aimed at establishing a higher common level of cybersecurity across organizations operating within the EU. It requires EU Member States to implement a new set of cybersecurity requirements for organizations.",[6090],{"start":32,"end":3871,"type":85},{"type":251,"text":6092,"spans":6093,"direction":76},"Why does NIS2 matter for me? NIS2 prescribes a common set of cybersecurity measures for EU entities, including supply chain security, incident reporting, risk assessment and audit, and other security controls. These requirements come into effect in October 2024.",[6094],{"start":32,"end":5447,"type":85},{"type":251,"text":6096,"spans":6097,"direction":76},"What’s the difference between an ‘essential entity’ and an ‘important entity’? NIS2 distinguishes between these two categories based on industry sector, employee headcount, annual turnover, and asset value, and outlines different sets of penalties. The core cybersecurity requirements for essential and important entities are the same.",[6098],{"start":32,"end":5453,"type":85},{"type":251,"text":6100,"spans":6101,"direction":76},"Does NIS2 affect organizations outside of the EU? NIS2 does not apply to entities outside of the EU. However, companies with business relationships with EU entities will likely face new supply chain cybersecurity checks as a result of NIS2.",[6102],{"start":32,"end":3406,"type":85},{"type":251,"text":6104,"spans":6105,"direction":76},"What do I need to do to become NIS2 compliant? NIS2 compliance requires entities to implement a range of appropriate and proportional cybersecurity measures, outlined in NIS2 article 21. Our six-step compliance checklist can help you get started.",[6106],{"start":32,"end":3524,"type":85},{"type":251,"text":6108,"spans":6109,"direction":76},"What happens if I don’t become NIS2 compliant? Entities failing to comply with NIS2 may face a range of sanctions, including financial penalties and censures. Non-compliance with NIS2 requirements also creates a greater risk of cyber attacks.",[6110],{"start":32,"end":3524,"type":85},"article_content$da71517c-2666-4c99-b0ed-cfe5e25b3e60",{"variation":59,"version":60,"items":6113,"primary":6114,"id":6115,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$6ae425f5-4d9f-4d6b-b999-91b79f743178",{"variation":59,"version":60,"items":6117,"primary":6118,"id":6119,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$2c585f3e-caf4-4e3d-8060-53614e2a8385","NIS2 doesn't have to be confusing. Find out what NIS2 means for your business, and chart a course for cybersecurity compliance with our free checklist.",{"dimensions":6122,"alt":6123,"copyright":6,"url":6124,"id":5727,"edit":6125},{"width":469,"height":470},"NIS2 Cybersecurity Compliance Checklist","https://images.prismic.io/riot-website/ZnqXUpbWFbowe1Q8_Blog_NIS2_Guide_V2.jpg?auto=format%2Ccompress&rect=0%2C408%2C5760%2C3024&w=2400&h=1260",{"x":32,"y":6126,"zoom":33,"background":34},408,{"id":6128,"uid":6129,"url":6,"type":7,"href":6130,"tags":6131,"first_publication_date":6132,"last_publication_date":6133,"slugs":6134,"linked_documents":6136,"lang":16,"alternate_languages":6137,"data":6141},"ZmAcLREAAB4Aw6gF","cybersecurity-awareness-culture","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22ZmAcLREAAB4Aw6gF%22%29+%5D%5D",[599],"2024-06-05T08:16:34+0000","2026-06-09T15:19:02+0000",[6135],"what-do-we-mean-when-we-talk-about-cybersecurity-awareness",[],[6138],{"id":6139,"type":7,"lang":20,"uid":6140},"ZmAexxEAAB8Aw6wN","sensibilisation-cybersecurite-culture",{"date":5717,"title":6142,"author_name":3424,"author_position":3425,"author_profile_picture":6143,"thumbnail":6146,"image":6152,"created_at":6160,"slices":6161,"meta_description":6410,"meta_image":6411,"meta_title":6415},"A Culture of Cybersecurity Awareness Helps Manage Risk and Boost Your ROI – Here’s How",{"dimensions":6144,"alt":6,"copyright":6,"url":3428,"id":3429,"edit":6145},{"width":28,"height":28},{"x":3431,"y":32,"zoom":33,"background":34},{"dimensions":6147,"alt":6148,"copyright":6,"url":6149,"id":6150,"edit":6151},{"width":37,"height":38},"Cybersecurity Awareness ROI","https://images.prismic.io/riot-website/ZnqYAZbWFbowe1RS_Blog_Awareness_ROI_V2.jpg?auto=format%2Ccompress&rect=0%2C107%2C6134%2C3874&w=760&h=480","ZnqYAZbWFbowe1RS",{"x":32,"y":5236,"zoom":33,"background":34},{"dimensions":6153,"alt":6148,"copyright":6,"url":6154,"id":6150,"edit":6155,"Large":6156},{"width":45,"height":46},"https://images.prismic.io/riot-website/ZnqYAZbWFbowe1RS_Blog_Awareness_ROI_V2.jpg?auto=format%2Ccompress&rect=0%2C198%2C6134%2C2630&w=1220&h=523",{"x":32,"y":3177,"zoom":33,"background":34},{"dimensions":6157,"alt":6148,"copyright":6,"url":6158,"id":6150,"edit":6159},{"width":52,"height":53},"https://images.prismic.io/riot-website/ZnqYAZbWFbowe1RS_Blog_Awareness_ROI_V2.jpg?auto=format%2Ccompress&rect=0%2C218%2C6134%2C2630&w=2440&h=1046",{"x":32,"y":3235,"zoom":33,"background":34},"2024-06-12",[6162,6369,6376,6402,6406],{"variation":59,"version":60,"items":6163,"primary":6164,"id":6368,"slice_type":90,"slice_label":6},[],{"content":6165},[6166,6169,6172,6178,6181,6184,6190,6194,6197,6200,6203,6210,6213,6216,6220,6223,6227,6235,6242,6245,6249,6254,6262,6269,6275,6280,6283,6286,6289,6293,6296,6303,6307,6310,6313,6317,6323,6326,6329,6333,6337,6343,6347,6351,6361],{"type":65,"text":6167,"spans":6168,"direction":76},"Not so long ago, people smoked everywhere. They smoked in offices, they smoked in planes. They even smoked in schools. Then, we realized the health impacts, and the culture changed. Just try lighting up on a flight today and see what happens.",[],{"type":65,"text":6170,"spans":6171,"direction":76},"The same kind of shift is underway with cybersecurity – but it isn’t happening fast enough. People might be less likely to use ‘password123’ or give out their login credentials, but they’re still falling for phishing attacks and forgetting to turn on multi-factor authentication.",[],{"type":65,"text":6173,"spans":6174,"direction":76},"So, how can we drive the shift to greater awareness and make cyber vulnerability the new smoking? Here, we’ll look at five reasons why cybersecurity awareness is so crucial for businesses, and offer some tips to build a culture that works for you.",[6175,6176],{"start":32,"end":228,"type":85},{"start":302,"end":6177,"type":85},247,{"type":65,"text":6179,"spans":6180,"direction":76},"But first, a key question: What does the term ‘cybersecurity awareness’ actually mean?",[],{"type":96,"text":6182,"spans":6183,"direction":76},"What do we mean when we talk about cybersecurity awareness?",[],{"type":65,"text":6185,"spans":6186,"direction":76},"These days, we all know cybersecurity is important – or at least we say we do. For example, 88% of company boards now think of cybersecurity as a broader risk to business, rather than just an IT problem. But do we all understand what it means to be aware of these risks?",[6187],{"start":6188,"end":3535,"type":71,"data":6189},92,{"link_type":73,"url":4378,"target":75},{"type":65,"text":6191,"spans":6192,"direction":76},"Broadly, a culture of cybersecurity awareness refers to a workforce’s shared norms, attitudes, and practices when it comes to cybersecurity. It’s the answer to the question of ‘how we do things around here’, but applied to digital technology, online systems, and data.",[6193],{"start":32,"end":1170,"type":85},{"type":65,"text":6195,"spans":6196,"direction":76},"Your organization’s cybersecurity culture is shaped by your leadership, your policies and processes, and your investments in systems and technologies. And with cyberattacks becoming more sophisticated, damaging, and frequent, it’s never been more important to prioritize a culture of cyber awareness.",[],{"type":65,"text":6198,"spans":6199,"direction":76},"Do your teams store sensitive data securely? Can they detect phishing attacks, and do they know what to do if they’re being scammed? Do they know how to flag a potential data breach? These questions will tell you what of cybersecurity culture you have – and where the gaps are.",[],{"type":65,"text":6201,"spans":6202,"direction":76},"Now, let’s take a look at how a culture of cybersecurity awareness helps you boost your tech ROI.",[],{"type":65,"text":6204,"spans":6205,"direction":76},"Learn more: Our Cybersecurity Courses Get 91%+ Completion Rates – Here’s How We Write Them",[6206,6207,6208],{"start":32,"end":4072,"type":229},{"start":32,"end":4072,"type":85},{"start":232,"end":4072,"type":71,"data":6209},{"link_type":73,"url":179,"target":3629},{"type":96,"text":6211,"spans":6212,"direction":76},"5 ways a culture of cybersecurity awareness helps boost ROI",[],{"type":65,"text":6214,"spans":6215,"direction":76},"A culture of cybersecurity awareness is the glue holding your systems and technologies together. You can invest in the most secure network in the world, but if a scammer can access your system just by calling someone in accounts and impersonating your CEO, it’s all for nothing.",[],{"type":65,"text":6217,"spans":6218,"direction":76},"Here are five ways boosting team awareness can help you manage the risk of cyberattacks and get more out of your investments in technology.",[6219],{"start":32,"end":3467,"type":85},{"type":116,"text":6221,"spans":6222,"direction":76},"#1: It protects you from human error",[],{"type":65,"text":6224,"spans":6225,"direction":76},"Let’s start with a sobering reminder: Human error is the single biggest factor leading to successful cyberattacks. That’s why boosting staff awareness of cybersecurity threats is the best way to stay safe – especially teaching people how to respond to these threats.",[6226],{"start":32,"end":69,"type":85},{"type":65,"text":6228,"spans":6229,"direction":76},"Let’s look at data breaches. In 2023, there were 3,205 major data breaches in the US affecting the data of an estimated 353 million people. Studies suggest 74% of these kinds of breaches involve an element of human error, like granting scammers system access under false pretence.",[6230,6232],{"start":3406,"end":4415,"type":71,"data":6231},{"link_type":73,"url":4359,"target":75},{"start":5685,"end":148,"type":71,"data":6233},{"link_type":73,"url":6234,"target":75},"https://www.verizon.com/business/resources/Ta5b/reports/2023-data-breach-investigations-report-dbir.pdf",{"type":65,"text":6236,"spans":6237,"direction":76},"In other words, cybersecurity awareness can reduce the risk of data breaches by up to three-quarters. And with each of these breaches costing around $4.35 million on average, even a small improvement in your team’s ability to detect attempted scams can pay dividends.",[6238],{"start":6239,"end":4434,"type":71,"data":6240},149,{"link_type":73,"url":6241,"target":75},"https://www.ibm.com/reports/data-breach",{"type":116,"text":6243,"spans":6244,"direction":76},"#2: It keeps your entire business network (including third parties) safe",[],{"type":65,"text":6246,"spans":6247,"direction":76},"A culture of cybersecurity awareness doesn’t just help you manage your own risk, but helps keep your business network safe, too. And with more scammers targeting companies by exploiting third-party systems, it’s never been more important to build this shared culture.",[6248],{"start":1139,"end":4533,"type":85},{"type":65,"text":6250,"spans":6251,"direction":76},"The Okta 2021 data breach offers a practical example of how third-party security failings can threaten your organization. This breach was initially caused by vulnerabilities in Sykes, a company contracted by Okta to provide customer support services – but it allowed scammers to access data from more than 350 of Okta’s corporate customers.",[6252],{"start":109,"end":203,"type":71,"data":6253},{"link_type":73,"url":4836,"target":75},{"type":120,"url":6255,"alt":6256,"copyright":6,"dimensions":6257,"id":6260,"edit":6261},"https://images.prismic.io/riot-website/ZmAbtZm069VX1d6t_Blog_CS_Awareness_2.jpg?auto=format,compress","Okta Cybersecurity Awareness",{"width":6258,"height":6259},1312,731,"ZmAbtZm069VX1d6t",{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":6263,"spans":6264,"direction":76},"Okta experienced significant negative impacts as a result of a third-party breach.",[6265,6266],{"start":32,"end":4513,"type":229},{"start":32,"end":109,"type":71,"data":6267},{"link_type":73,"url":6268,"target":75},"https://appleinsider.com/articles/22/03/22/single-sign-on-provider-okta-data-breach-could-lead-to-further-major-intrusions",{"type":65,"text":6270,"spans":6271,"direction":76},"With a $6 billion drop in Okta’s market capitalization in the weeks following their public disclosure of the breach, this example shows the real risks of third-party security weaknesses. With a stronger shared commitment to cybersecurity awareness, Okta and its business partners might have been able to identify and address vulnerabilities like those giving rise to this breach.",[6272],{"start":158,"end":103,"type":71,"data":6273},{"link_type":73,"url":6274,"target":75},"https://siliconangle.com/2022/04/09/ripple-effects-okta-security-breach-worse-think/",{"type":65,"text":6276,"spans":6277,"direction":76},"For EU organizations, these third-party checks are now even more critical. Under NIS2, affected entities need to assess supply chain partner cybersecurity protections and take active steps to address any vulnerabilities identified as a result.",[6278],{"start":4075,"end":403,"type":71,"data":6279},{"link_type":73,"url":3767,"target":3629},{"type":65,"text":6281,"spans":6282,"direction":76},"And speaking of compliance…",[],{"type":116,"text":6284,"spans":6285,"direction":76},"#3: It helps you comply with regulatory requirements and ace your audits",[],{"type":65,"text":6287,"spans":6288,"direction":76},"As part of your cybersecurity strategy, you should be conducting regular audits to ensure your systems are performing as expected. Your organization will also be subject to regulations such as NIS2, GDPR, and HIPAA, which require you to take steps to keep sensitive data safe, and to adopt wider cybersecurity practices such as risk identification and incident response planning.",[],{"type":65,"text":6290,"spans":6291,"direction":76},"By building a culture of cybersecurity awareness throughout your organization, you make it easier to ace your audits and stop these regulatory requirements from becoming a headache. That’s because you’re helping your teams understand these shared requirements and how they apply to their day-to-day tasks and responsibilities.",[6292],{"start":32,"end":3310,"type":85},{"type":116,"text":6294,"spans":6295,"direction":76},"#4: It gets the most out of your wider tech investments",[],{"type":65,"text":6297,"spans":6298,"direction":76},"Organizations everywhere are already starting to take cybersecurity seriously, and it’s showing in their budgets. For example, one study suggests US enterprise companies are now allocating 9.9% of their total IT spend on cybersecurity. For some, this amounts to millions each year.",[6299],{"start":6300,"end":3470,"type":71,"data":6301},189,{"link_type":73,"url":6302,"target":75},"https://venturebeat.com/security/benchmarking-your-cybersecurity-budget-in-2023/",{"type":65,"text":6304,"spans":6305,"direction":76},"But what good are these investments if you don’t build your cybersecurity awareness? Scammers are always dreaming up new ways to get around your systems, and if your teams don’t know how to identify common cyberattacks like phishing or CEO fraud, you’ll still be exposed. So, invest in awareness training that helps your team get the most out of your tools and systems.",[6306],{"start":32,"end":5910,"type":85},{"type":65,"text":6308,"spans":6309,"direction":76},"Now, let’s finish by looking at the single biggest argument for cybersecurity awareness.",[],{"type":116,"text":6311,"spans":6312,"direction":76},"#5: It’s the single cheapest thing you can do – and the most effective",[],{"type":65,"text":6314,"spans":6315,"direction":76},"Beyond helping you stay audit-ready and preventing scammers from sidestepping your systems, there’s one reason why promoting a culture of cybersecurity awareness helps you to manage your risks. Put simply, it’s the single most effective step you can take – and it’s cheap.",[6316],{"start":3806,"end":1209,"type":85},{"type":65,"text":6318,"spans":6319,"direction":76},"The right cybersecurity awareness training costs a fraction of what it costs to maintain a secure network – and an even smaller fraction of the potential damage and disruption that would arise from a successful data breach or phishing attack. If this training helps you prevent just one scam attempt, it’s already paid for itself.",[6320],{"start":5467,"end":6321,"type":71,"data":6322},241,{"link_type":73,"url":234,"target":3629},{"type":96,"text":6324,"spans":6325,"direction":76},"Some tips to build a great culture of cybersecurity awareness",[],{"type":65,"text":6327,"spans":6328,"direction":76},"So, you’re convinced cybersecurity awareness matters. Great! Now, you might be wondering how to actually build the right culture of awareness within your organization.",[],{"type":65,"text":6330,"spans":6331,"direction":76},"Here are a few steps you can take to help get your teams up to speed:",[6332],{"start":32,"end":5213,"type":85},{"type":251,"text":6334,"spans":6335,"direction":76},"Roll out regular awareness training: Great cybersecurity awareness needs regular training to help everyone stay on top of the latest scams and threats. You need to provide your teams with punchy, memorable training sessions people can complete in five minutes or less.",[6336],{"start":32,"end":434,"type":85},{"type":120,"url":6338,"alt":6339,"copyright":6,"dimensions":6340,"id":6341,"edit":6342},"https://images.prismic.io/riot-website/Zl8gaZm069VX1cty_Blog_Write_Cybersecurity_Courses_5.png?auto=format,compress","Cybersecurity Awareness Courses",{"width":630,"height":3725},"Zl8gaZm069VX1cty",{"x":32,"y":32,"zoom":33,"background":34},{"type":251,"text":6344,"spans":6345,"direction":76},"Develop a cybersecurity strategy: Every organization needs a cybersecurity strategy outlining who leads your security efforts, how you identify and manage risks, what to do in case of a breach or other major incident, and how you comply with data privacy regulations.",[6346],{"start":32,"end":444,"type":85},{"type":251,"text":6348,"spans":6349,"direction":76},"Commit to visible cybersecurity leadership: A great culture of cybersecurity awareness needs a human face, so be sure to make your leadership visible to everyone. People should know exactly who to go to if they have any tricky questions.",[6350],{"start":32,"end":429,"type":85},{"type":251,"text":6352,"spans":6353,"direction":76},"Put your team to the test: Learning about cybersecurity is one thing – but you also need to put this learning to the test by simulating common attacks, such as phishing campaigns. This way, you can find out who’s been paying attention, and who needs some more support.",[6354,6355,6359],{"start":32,"end":176,"type":85},{"start":1357,"end":6356,"type":71,"data":6357},150,{"link_type":73,"url":6358,"target":3629},"https://tryriot.com/toolbox/checklist-phishing-simulation/",{"start":3672,"end":1151,"type":71,"data":6360},{"link_type":73,"url":5055,"target":3629},{"type":65,"text":6362,"spans":6363,"direction":76},"And speaking of phishing, take a look at our free checklist on what makes a great simulation. ",[6364,6365,6366],{"start":32,"end":4757,"type":229},{"start":32,"end":4757,"type":85},{"start":3431,"end":6188,"type":71,"data":6367},{"link_type":73,"url":6358,"target":3629},"article_content$39108709-b628-4bd7-9230-f232b55b2d53",{"variation":59,"version":60,"items":6370,"primary":6371,"id":6375,"slice_type":3203,"slice_label":6},[],{"title":5265,"hubspot_form_id":5266,"image":6372},{"dimensions":6373,"alt":6,"copyright":6,"url":5270,"id":5271,"edit":6374},{"width":3197,"height":764},{"x":32,"y":32,"zoom":33,"background":34},"article_hubspot_form$33eb57af-547d-43b4-b967-fab08d9793a3",{"variation":59,"version":60,"items":6377,"primary":6378,"id":6401,"slice_type":90,"slice_label":6},[],{"content":6379},[6380,6383,6386,6390,6395],{"type":96,"text":6381,"spans":6382,"direction":76},"Cybersecurity awareness is key – so invest in training that works",[],{"type":65,"text":6384,"spans":6385,"direction":76},"Cyber vulnerability is the new smoking. And just like your school, hospital, or even your company offices are now all smoke-free zones, it’s time to make them cyberattack-free zones, too.",[],{"type":65,"text":6387,"spans":6388,"direction":76},"That’s why it’s so important to build a strong culture of cybersecurity awareness, and to actively identify, manage, and address security vulnerabilities wherever we see them. But to do that, you need cybersecurity training people actually love.",[6389],{"start":32,"end":5309,"type":85},{"type":65,"text":6391,"spans":6392,"direction":76},"Albert uses conversational training to teach your team about the latest cybersecurity threats, including AI-powered deepfakes, WhatsApp scams, and more. Even better, you can run phishing simulations to find out who your cyber champions are, and who needs more help with the basics.",[6393],{"start":451,"end":686,"type":71,"data":6394},{"link_type":73,"url":3262,"target":3629},{"type":65,"text":6396,"spans":6397,"direction":76},"To find out how Albert can help you and your team boost your cybersecurity awareness and manage your risks, get in touch with one of our experts today.",[6398,6399],{"start":32,"end":4228,"type":85},{"start":140,"end":6356,"type":71,"data":6400},{"link_type":73,"url":454,"target":3629},"article_content$81370d36-e1c2-44ad-8681-539e9106e475",{"variation":59,"version":60,"items":6403,"primary":6404,"id":6405,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$fa525761-d791-4ae6-bd14-9ef1b44a0c51",{"variation":59,"version":60,"items":6407,"primary":6408,"id":6409,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$33488985-a004-4bfe-8f4e-38855586dd1c","Here, we look at five reasons why cybersecurity awareness is so crucial, and offer some practical tips to build a cybersecurity culture that works for you.",{"dimensions":6412,"alt":6148,"copyright":6,"url":6413,"id":6150,"edit":6414},{"width":469,"height":470},"https://images.prismic.io/riot-website/ZnqYAZbWFbowe1RS_Blog_Awareness_ROI_V2.jpg?auto=format%2Ccompress&rect=0%2C163%2C6134%2C3220&w=2400&h=1260",{"x":32,"y":3176,"zoom":33,"background":34},"How Cybersecurity Awareness Can Help Boost Your Tech ROI",{"id":6417,"uid":6418,"url":6,"type":7,"href":6419,"tags":6420,"first_publication_date":6421,"last_publication_date":6422,"slugs":6423,"linked_documents":6425,"lang":16,"alternate_languages":6426,"data":6430},"Zlcw2REAACMAeGIh","digital-footprint","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Zlcw2REAACMAeGIh%22%29+%5D%5D",[599],"2024-05-29T14:15:37+0000","2026-06-09T15:24:39+0000",[6424],"what-is-your-digital-footprint-and-why-does-it-matter",[],[6427],{"id":6428,"type":7,"lang":20,"uid":6429},"Zl3lqxIAAB8AVS8N","empreinte-numerique",{"date":5717,"title":6431,"author_name":24,"author_position":3101,"author_profile_picture":6432,"thumbnail":6436,"image":6442,"created_at":6452,"slices":6453,"meta_description":6748,"meta_image":6749,"meta_title":6754},"3 Ways to Take Control of Your Digital Footprint and Stop Giving Scammers a Head Start",{"dimensions":6433,"alt":6434,"copyright":6,"url":4568,"id":30,"edit":6435},{"width":28,"height":28},"Author photograph Tom Baragwanath",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":6437,"alt":6438,"copyright":6,"url":6439,"id":6440,"edit":6441},{"width":37,"height":38},"Digital Footprint","https://images.prismic.io/riot-website/ZnqZGJbWFbowe1SC_Blog_Digital_Footprint_V2.jpg?auto=format%2Ccompress&rect=0%2C96%2C5472%2C3456&w=760&h=480","ZnqZGJbWFbowe1SC",{"x":32,"y":655,"zoom":33,"background":34},{"dimensions":6443,"alt":6438,"copyright":6,"url":6444,"id":6440,"edit":6445,"Large":6447},{"width":45,"height":46},"https://images.prismic.io/riot-website/ZnqZGJbWFbowe1SC_Blog_Digital_Footprint_V2.jpg?auto=format%2Ccompress&rect=0%2C857%2C5472%2C2346&w=1220&h=523",{"x":32,"y":6446,"zoom":33,"background":34},857,{"dimensions":6448,"alt":6438,"copyright":6,"url":6449,"id":6440,"edit":6450},{"width":52,"height":53},"https://images.prismic.io/riot-website/ZnqZGJbWFbowe1SC_Blog_Digital_Footprint_V2.jpg?auto=format%2Ccompress&rect=0%2C848%2C5472%2C2346&w=2440&h=1046",{"x":32,"y":6451,"zoom":33,"background":34},848,"2024-06-11",[6454,6586,6594,6740,6744],{"variation":59,"version":60,"items":6455,"primary":6456,"id":6585,"slice_type":90,"slice_label":6},[],{"content":6457},[6458,6461,6464,6467,6471,6475,6483,6486,6490,6495,6498,6501,6504,6507,6510,6514,6517,6520,6527,6531,6543,6549,6552,6555,6558,6564,6567,6570,6578],{"type":65,"text":6459,"spans":6460,"direction":76},"Imagine you’re out walking one day and a stranger hands you a piece of paper. It lists her legal name, work history, and academic transcript. And that’s not all.",[],{"type":65,"text":6462,"spans":6463,"direction":76},"There’s a list of her family members, her workmates, and her favorite stores. Her email address and phone number. Her jogging routes, and her fastest laps. Her food allergies. Her date of birth.",[],{"type":65,"text":6465,"spans":6466,"direction":76},"Sound strange? It should. But alarmingly, when it comes to our digital footprints, a lot of us are just like that stranger, handing out our personal information to anyone who cares to look. And unless we take charge of this data, we put ourselves at serious risk of fraud.",[],{"type":65,"text":6468,"spans":6469,"direction":76},"In this article, we’ll explain what your digital footprint is, and how fraudsters can use it to target you and your organization. Then, we’ll show you how to take control of your data, minimize your footprint, and stay safe if you think someone is trying to scam you.",[6470],{"start":32,"end":4533,"type":85},{"type":96,"text":6472,"spans":6473,"direction":76},"What is your digital footprint, and why does it matter?",[6474],{"start":32,"end":4056,"type":85},{"type":65,"text":6476,"spans":6477,"direction":76},"Your digital footprint is the body of data you leave behind whenever you do anything online. Think of it as a trail of breadcrumbs showing all the sites you’ve visited, and all the interactions you’ve had. Ever.",[6478,6479,6482],{"start":32,"end":104,"type":85},{"start":209,"end":103,"type":71,"data":6480},{"link_type":73,"url":6481,"target":75},"https://www.techtarget.com/whatis/definition/digital-footprint",{"start":5303,"end":177,"type":85},{"type":65,"text":6484,"spans":6485,"direction":76},"This footprint consists of:",[],{"type":251,"text":6487,"spans":6488,"direction":76},"Your active digital footprint: The data you intentionally share with others, for example, your LinkedIn or Facebook profile, your Google reviews, or other public information.",[6489],{"start":32,"end":5303,"type":85},{"type":251,"text":6491,"spans":6492,"direction":76},"Your passive digital footprint: The data others collect about you, often without your knowledge or consent, for example, websites tracking your IP address.",[6493,6494],{"start":32,"end":109,"type":85},{"start":209,"end":3841,"type":85},{"type":65,"text":6496,"spans":6497,"direction":76},"Your footprint offers a detailed picture of who you are and what you care about. Naturally, it’s a goldmine for scammers trying to commit identity theft, spear phishing, and other types of fraud.",[],{"type":65,"text":6499,"spans":6500,"direction":76},"Here’s an example of how fraudsters can leverage your footprint in practice.",[],{"type":116,"text":6502,"spans":6503,"direction":76},"Digital footprint fraud in action: The help desk impersonation",[],{"type":65,"text":6505,"spans":6506,"direction":76},"Let’s say a scammer wants to target you with some good old-fashioned phone fraud. To get started, they need some information, like one of your monthly utility bills. Once upon a time, they would have had to dig through your trash. Now, they can just find you on social media.",[],{"type":65,"text":6508,"spans":6509,"direction":76},"Bingo: they discover your angry posts to internet provider SpeedyWebz about some late fees on your last bill. Then, they find your mobile number on your company staff page, and use a White SIM card to spoof the SpeedyWebz help desk. Soon, you get a call.",[],{"type":65,"text":6511,"spans":6512,"direction":76},"“Hi, it’s Celine from SpeedyWebz. We can offer a 95% discount on your overdue late fees if you settle your account over the phone right now. I just need your credit card details to get started.”",[6513],{"start":33,"end":3806,"type":229},{"type":65,"text":6515,"spans":6516,"direction":76},"Scary, right? Who wouldn’t jump at the offer!",[],{"type":65,"text":6518,"spans":6519,"direction":76},"This example shows just how easy it is for strangers to use our digital footprints against us – including through one of the most destructive scams of all: Spear phishing.",[],{"type":65,"text":6521,"spans":6522,"direction":76},"Learn more: Your Guide to NIS2 Compliance – And Our Free Cybersecurity Checklist",[6523,6524,6525],{"start":32,"end":4576,"type":229},{"start":32,"end":4576,"type":85},{"start":232,"end":4576,"type":71,"data":6526},{"link_type":73,"url":3767,"target":3629},{"type":96,"text":6528,"spans":6529,"direction":76},"Our digital footprints are creating a golden age of spear phishing",[6530],{"start":32,"end":3343,"type":85},{"type":65,"text":6532,"spans":6533,"direction":76},"Spear phishing is a sophisticated type of scam aimed at getting victims to transfer money, download malware, or divulge sensitive information. It’s a major cybersecurity threat, with an estimated 50% of organizations being targeted in 2023. It costs companies millions in disruption, reputation damage, and stolen funds. In some cases, it can even cost executives their jobs.",[6534,6538],{"start":4098,"end":6535,"type":71,"data":6536},239,{"link_type":73,"url":6537,"target":75},"https://assets.barracuda.com/assets/docs/dms/2023-spear-phishing-trends.pdf",{"start":6539,"end":6540,"type":71,"data":6541},348,374,{"link_type":73,"url":6542,"target":75},"https://www.valimail.com/blog/senior-execs-fired-for-spear-phishing-success/",{"type":65,"text":6544,"spans":6545,"direction":76},"Unlike standard phishing attacks targeting a broad range of victims in the hopes that a few people will fall for it, spear phishing attacks are highly researched and customized to target specific individuals. This makes them much harder to detect – and a lot more likely to succeed.",[6546],{"start":3188,"end":3467,"type":71,"data":6547},{"link_type":73,"url":6548,"target":3629},"https://tryriot.com/customers/groupe-le-monde/",{"type":65,"text":6550,"spans":6551,"direction":76},"Unfortunately, our extensive digital footprints are creating a golden age of spear phishing. We’re giving scammers everything they need to craft more effective fraud campaigns – and all for free.",[],{"type":65,"text":6553,"spans":6554,"direction":76},"Let’s look at a real-world example.",[],{"type":116,"text":6556,"spans":6557,"direction":76},"How Mattel almost lost $3 million to a targeted spear phishing campaign",[],{"type":65,"text":6559,"spans":6560,"direction":76},"In 2015, scammers targeted Mattel with a spear phishing campaign impersonating their new CEO, Christopher Sinclair, in a request to the company’s finance team to transfer $3 million USD to a fake vendor based in China. In this case, the scammers really did their homework.",[6561],{"start":446,"end":28,"type":71,"data":6562},{"link_type":73,"url":6563,"target":75},"https://www.csoonline.com/article/555513/chinese-scammers-take-mattel-to-the-bank-phishing-them-for-3-million.html",{"type":65,"text":6565,"spans":6566,"direction":76},"They knew from Sinclair’s public statements that he was focused on expansion in the Chinese market, so the request wouldn’t raise any red flags. They also studied employee LinkedIn profiles to find people to mention in the email to boost legitimacy. Finally, they found examples of Mattel’s internal email format, creating a fake message that looked exactly the real thing.",[],{"type":65,"text":6568,"spans":6569,"direction":76},"The end result? The finance team transferred the $3 million, replying to the fake Christopher Sinclair to confirm payment. Later, one of the executives happened to mention it in passing to the real Sinclair, who raised the alarm. Fortunately, the attack coincided with a banking holiday in China, meaning the authorities could freeze the scammer’s account and recover the funds.",[],{"type":65,"text":6571,"spans":6572,"direction":76},"This example highlights the serious risks to organizations when employees share personal and professional information online. And with the rise of deepfake technology, spear phishing attacks are becoming even harder to detect. That’s why it’s more important than ever to take charge.",[6573,6575],{"start":434,"end":4177,"type":71,"data":6574},{"link_type":73,"url":3890,"target":3629},{"start":4430,"end":5305,"type":71,"data":6576},{"link_type":73,"url":6577,"target":75},"https://www.theguardian.com/technology/2023/jul/12/financial-firms-must-boost-protections-against-ai-scams-uk-regulator-to-warn",{"type":65,"text":6579,"spans":6580,"direction":76},"Speaking of taking charge, check out our free checklist on 12 essential cybersecurity metrics – and how you can really move the needle.",[6581,6582,6583],{"start":32,"end":114,"type":229},{"start":32,"end":114,"type":85},{"start":177,"end":686,"type":71,"data":6584},{"link_type":73,"url":3674,"target":3629},"article_content$9a4f5b11-7ef1-4728-9a90-83beed3488cb",{"variation":59,"version":60,"items":6587,"primary":6588,"id":6593,"slice_type":3203,"slice_label":6},[],{"title":3679,"hubspot_form_id":3680,"image":6589},{"dimensions":6590,"alt":6591,"copyright":6,"url":4083,"id":4084,"edit":6592},{"width":3197,"height":764},"12 essential cybersecurity metrics",{"x":32,"y":32,"zoom":33,"background":34},"article_hubspot_form$b7e082e9-9598-4a69-86f1-e3bc454878cc",{"variation":59,"version":60,"items":6595,"primary":6596,"id":6739,"slice_type":90,"slice_label":6},[],{"content":6597},[6598,6602,6606,6609,6612,6615,6620,6623,6626,6631,6634,6637,6640,6643,6646,6659,6662,6668,6671,6675,6681,6685,6691,6696,6700,6703,6706,6713,6716,6723,6727,6731,6735],{"type":96,"text":6599,"spans":6600,"direction":76},"3 key steps to take charge of your digital footprint",[6601],{"start":32,"end":4512,"type":85},{"type":65,"text":6603,"spans":6604,"direction":76},"So, how can you minimize your digital footprint and stop these types of scams before they start? Here are three key steps to help you get started.",[6605],{"start":655,"end":661,"type":85},{"type":116,"text":6607,"spans":6608,"direction":76},"Step 1: Search",[],{"type":65,"text":6610,"spans":6611,"direction":76},"Start by Googling yourself and seeing what shows up. This will give you a broad overview of the information you’re sharing at present, and what you can remove, delete, or restrict.",[],{"type":65,"text":6613,"spans":6614,"direction":76},"Pay close attention to your social media profiles, and check whether these are publicly accessible. You might see some unexpected pages, for example, staffing lists from old jobs. Put yourself in the mind of a clever scammer: How would you put this information to use?",[],{"type":65,"text":6616,"spans":6617,"direction":76},"You should also check whether any of your usernames and passwords have ever been included in any data breaches, for example, through searching Have I Been Pwned.",[6618],{"start":697,"end":3672,"type":71,"data":6619},{"link_type":73,"url":1944,"target":75},{"type":116,"text":6621,"spans":6622,"direction":76},"Step 2: Minimize",[],{"type":65,"text":6624,"spans":6625,"direction":76},"Next, minimize your digital footprint by deleting as many of the results from step one as you can. Remember: If you wouldn’t feel comfortable sharing it with a stranger in the street, delete it.",[],{"type":65,"text":6627,"spans":6628,"direction":76},"Remove any old social media accounts, and switch any essential profiles to the strictest privacy settings (ideally invite-only, with your full name and photograph hidden). Turn on multi-factor authentication, as this will lower the risk of identity theft if someone does access your login information. Finally, review your contacts and remove anyone you don’t actually know in real life.",[6629],{"start":1100,"end":6630,"type":229},270,{"type":65,"text":6632,"spans":6633,"direction":76},"Then, you’ll need to go one by one through the remaining items in your footprint and either delete these yourself, or ask the host sites to do so. These platforms and services have a duty to maintain your data privacy, so don’t be shy.",[],{"type":116,"text":6635,"spans":6636,"direction":76},"Step 3: Manage",[],{"type":65,"text":6638,"spans":6639,"direction":76},"Every time you share anything online, you add to your digital footprint. That’s why taking charge of your footprint isn’t just a ‘one-and-done’ exercise, but an ongoing job.",[],{"type":65,"text":6641,"spans":6642,"direction":76},"Set yourself a regular reminder to Google yourself every few months and see if any new items pop up that require your attention. Alternatively, you could create a Google alert for your name.",[],{"type":65,"text":6644,"spans":6645,"direction":76},"Be careful with any new social media requests that come your way, particularly from people you don’t know. If in doubt, deny the request – it’s better to risk coming off as rude than to put your personal information in the hands of scammers.",[],{"type":65,"text":6647,"spans":6648,"direction":76},"When it comes to your passive digital footprint, you can use a VPN to mask your IP address and make it harder for sites to track your activity. Finally, a digital footprint management tool such as Mine, Incogni, or DeleteMe can help you stay secure by actively alerting you to data risks.",[6649,6652,6656],{"start":3652,"end":3540,"type":71,"data":6650},{"link_type":73,"url":6651,"target":75},"https://www.saymine.com/digital-footprint-assistant",{"start":196,"end":6653,"type":71,"data":6654},210,{"link_type":73,"url":6655,"target":75},"https://incogni.com/",{"start":4404,"end":1127,"type":71,"data":6657},{"link_type":73,"url":6658,"target":75},"https://joindeleteme.com/",{"type":116,"text":6660,"spans":6661,"direction":76},"What to do if you think you’re being scammed right now",[],{"type":65,"text":6663,"spans":6664,"direction":76},"With these three steps, you can start to take control of your digital footprint. But remember: Fraudsters never stop, and they might still find a way to target you or your team.",[6665],{"start":3467,"end":6666,"type":71,"data":6667},176,{"link_type":73,"url":3262,"target":3629},{"type":65,"text":6669,"spans":6670,"direction":76},"So, before we wrap up, here are a few tips on what to do if you think you’re being scammed:",[],{"type":251,"text":6672,"spans":6673,"direction":76},"Take a deep breath. Most fraud attempts involve a time-sensitive element, such as a bogus overdue invoice or a fake compromised credit card. Whenever you’re dealing with an urgent or stressful situation, take a breath and ask yourself if it might be a scam.",[6674],{"start":32,"end":1880,"type":85},{"type":251,"text":6676,"spans":6677,"direction":76},"Look closely at the details. Fraud attempts such as spear phishing often have tiny details out of place, for example, an email address that isn’t quite right, or a payment portal with a weird URL. Look closely to make sure everything is legitimate.",[6678,6679],{"start":32,"end":5447,"type":85},{"start":4512,"end":3343,"type":71,"data":6680},{"link_type":73,"url":234,"target":3629},{"type":251,"text":6682,"spans":6683,"direction":76},"Use a side-channel. If a situation feels wrong, get in touch with the other party to confirm it’s really them. If your CEO or manager is requesting an urgent payment, contact them separately. The same goes for your bank – if in doubt, hang up and call the help desk directly.",[6684],{"start":32,"end":1880,"type":85},{"type":251,"text":6686,"spans":6687,"direction":76},"Alert your security team. Scams aren’t just your business – they’re a major threat to your wider organization. If you think you’re at risk, report it to your security team as soon as you can – and make sure they follow up on any potential threats.",[6688,6689],{"start":32,"end":203,"type":85},{"start":1354,"end":4530,"type":71,"data":6690},{"link_type":73,"url":3357,"target":3629},{"type":251,"text":6692,"spans":6693,"direction":76},"Call the authorities. Always tell the police if you think you’re being scammed. They have the resources available to assist you.",[6694],{"start":32,"end":6695,"type":85},21,{"type":96,"text":6697,"spans":6698,"direction":76},"Stay safe by taking control of your digital footprint",[6699],{"start":429,"end":424,"type":85},{"type":65,"text":6701,"spans":6702,"direction":76},"Since the 1990s, we’ve gradually shifted more of our lives online. And while it might be more convenient to do our shopping, socializing, and professional networking online, all of this activity adds to our digital footprints, giving scammers more of a head start than ever before.",[],{"type":65,"text":6704,"spans":6705,"direction":76},"We need to take charge by thinking critically about the information we share and how it could be used against us. You can do your part by being aware of the risks involved with online sharing, minimizing your digital footprint, and knowing what to do if you’re being scammed.",[],{"type":65,"text":6707,"spans":6708,"direction":76},"One of the best ways to stay prepared? Invest in cybersecurity awareness training for your whole team. To find out how Albert can deliver fun and unforgettable training on digital footprints, spear phishing, and more, get in touch with one of our experts today.",[6709,6710,6711],{"start":32,"end":6072,"type":85},{"start":5387,"end":5954,"type":85},{"start":3235,"end":4188,"type":71,"data":6712},{"link_type":73,"url":454,"target":3629},{"type":116,"text":6084,"spans":6714,"direction":76},[6715],{"start":32,"end":3871,"type":85},{"type":251,"text":6717,"spans":6718,"direction":76},"What is a digital footprint? Your digital footprint is the body of data you leave behind whenever you do anything online. This includes an active digital footprint consisting of data you share deliberately (e.g. your social media profiles), and a passive digital footprint consisting of data others collect about you (e.g. websites tracking your IP address).",[6719,6720,6721],{"start":32,"end":5447,"type":85},{"start":3467,"end":4364,"type":229},{"start":6177,"end":6722,"type":229},254,{"type":251,"text":6724,"spans":6725,"direction":76},"Why is my digital footprint so important? Your footprint offers a detailed profile of your personal and professional life (e.g. your relationship status), your online habits (e.g. where you shop), and even your physical location. Scammers can use this information against you.",[6726],{"start":32,"end":446,"type":85},{"type":251,"text":6728,"spans":6729,"direction":76},"How can scammers use my digital footprint? Your digital footprint helps scammers personalize fraud attempts. For example, if your social media activity showed you were on holiday in the Bahamas, a scammer could impersonate you in an email to your colleagues and ask them to pay a bogus invoice you’d forgotten to process.",[6730],{"start":32,"end":3641,"type":85},{"type":251,"text":6732,"spans":6733,"direction":76},"What can I do to better manage my digital footprint? Start by Googling yourself, then minimize your footprint by deleting unnecessary information and switching social media profiles to invite-only. Don’t connect with people you don’t know in real life. A VPN or dedicated digital footprint management tool can also help keep your data private.",[6734],{"start":32,"end":4512,"type":85},{"type":251,"text":6736,"spans":6737,"direction":76},"What about my business? Businesses have their own digital footprint, including location and contact details (e.g. a headquarter address or help desk number), as well as customer reviews and rankings (e.g. ratings on sites such as Yelp or Trustpilot). It’s important to actively manage these digital footprints too.",[6738],{"start":32,"end":1298,"type":85},"article_content$e1e4f610-17e9-49b9-82a5-e156de2af039",{"variation":59,"version":60,"items":6741,"primary":6742,"id":6743,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$90a0f5fb-0cb9-4e88-b901-01167766b427",{"variation":59,"version":60,"items":6745,"primary":6746,"id":6747,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$d0e1f098-ec13-4f8e-97d8-dba596420f3a","Fraudsters can use the data you share online to target you. Learn about our three-step process for taking control of your digital footprint.",{"dimensions":6750,"alt":6438,"copyright":6,"url":6751,"id":6440,"edit":6752},{"width":469,"height":470},"https://images.prismic.io/riot-website/ZnqZGJbWFbowe1SC_Blog_Digital_Footprint_V2.jpg?auto=format%2Ccompress&rect=0%2C531%2C5472%2C2873&w=2400&h=1260",{"x":32,"y":6753,"zoom":33,"background":34},531,"3 Ways to Take Control of Your Digital Footprint",{"id":6756,"uid":6757,"url":6,"type":7,"href":6758,"tags":6759,"first_publication_date":6760,"last_publication_date":6761,"slugs":6762,"linked_documents":6764,"lang":16,"alternate_languages":6765,"data":6769},"Zl8iQhEAACAAwiHn","cybersecurity-courses","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Zl8iQhEAACAAwiHn%22%29+%5D%5D",[599],"2024-06-04T14:44:54+0000","2026-06-09T15:18:13+0000",[6763],"1-start-by-telling-a-great-story",[],[6766],{"id":6767,"type":7,"lang":20,"uid":6768},"Zl8oLREAAB4Awi0n","cybersecurite-cours",{"date":5717,"title":6770,"author_name":3424,"author_position":3425,"author_profile_picture":6771,"thumbnail":6774,"image":6780,"created_at":6790,"slices":6791,"meta_description":7066,"meta_image":7067,"meta_title":7072},"Our Cybersecurity Courses Get 91%+ Completion Rates – Here’s How We Write Them",{"dimensions":6772,"alt":6,"copyright":6,"url":3428,"id":3429,"edit":6773},{"width":28,"height":28},{"x":3431,"y":32,"zoom":33,"background":34},{"dimensions":6775,"alt":6776,"copyright":6,"url":6777,"id":6778,"edit":6779},{"width":37,"height":38},"How we write cybersecurity courses","https://images.prismic.io/riot-website/ZnqbQpbWFbowe1Ta_Blog_Writing_Courses_V2.jpg?auto=format%2Ccompress&rect=0%2C219%2C6240%2C3941&w=760&h=480","ZnqbQpbWFbowe1Ta",{"x":32,"y":3472,"zoom":33,"background":34},{"dimensions":6781,"alt":6776,"copyright":6,"url":6782,"id":6778,"edit":6783,"Large":6785},{"width":45,"height":46},"https://images.prismic.io/riot-website/ZnqbQpbWFbowe1Ta_Blog_Writing_Courses_V2.jpg?auto=format%2Ccompress&rect=0%2C1079%2C6240%2C2675&w=1220&h=523",{"x":32,"y":6784,"zoom":33,"background":34},1079,{"dimensions":6786,"alt":6776,"copyright":6,"url":6787,"id":6778,"edit":6788},{"width":52,"height":53},"https://images.prismic.io/riot-website/ZnqbQpbWFbowe1Ta_Blog_Writing_Courses_V2.jpg?auto=format%2Ccompress&rect=0%2C1089%2C6240%2C2675&w=2440&h=1046",{"x":32,"y":6789,"zoom":33,"background":34},1089,"2024-06-10",[6792,7026,7033,7058,7062],{"variation":59,"version":60,"items":6793,"primary":6794,"id":7025,"slice_type":90,"slice_label":6},[],{"content":6795},[6796,6799,6802,6806,6809,6812,6815,6819,6827,6830,6834,6840,6843,6849,6852,6858,6863,6870,6876,6879,6882,6885,6894,6897,6901,6905,6913,6916,6919,6922,6929,6933,6936,6941,6944,6947,6954,6957,6961,6964,6970,6973,6977,6990,6993,7000,7005,7008,7011,7014,7018],{"type":65,"text":6797,"spans":6798,"direction":76},"Ping! That’s the sound of IT enrolling you in some cybersecurity training. So, what do you expect when you click the link? Some slides on avoiding email spam? A video tutorial, if you’re lucky?",[],{"type":65,"text":6800,"spans":6801,"direction":76},"These days, people don’t expect much from cybersecurity training. But we didn’t get the memo.",[],{"type":65,"text":6803,"spans":6804,"direction":76},"At Riot, we’re on a mission to deliver immersive cybersecurity courses people can’t help but love. Here, we share our five-step process for writing courses that get 91%+ completion rates – and take you behind the scenes of our deepfake course.",[6805],{"start":32,"end":4135,"type":85},{"type":65,"text":6807,"spans":6808,"direction":76},"Our first step? Always start with a great story.",[],{"type":96,"text":6810,"spans":6811,"direction":76},"#1: Start by telling a great story",[],{"type":65,"text":6813,"spans":6814,"direction":76},"What comes to mind when you think of Isaac Newton’s discovery of gravitational theory?",[],{"type":65,"text":6816,"spans":6817,"direction":76},"Yep. Apples.",[6818],{"start":32,"end":232,"type":85},{"type":120,"url":6820,"alt":6821,"copyright":6,"dimensions":6822,"id":6825,"edit":6826},"https://images.prismic.io/riot-website/Zl8fipm069VX1ctG_Blog_Write_Cybersecurity_Courses_2.jpg?auto=format,compress","How we write cybersecurity courses Isaac Newton",{"width":6823,"height":6824},2500,1846,"Zl8fipm069VX1ctG",{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":6828,"spans":6829,"direction":76},"Whether the tale of Newton watching an apple fall from a tree is true or not, it tells us something important: Human beings learn through stories. We could just say ‘Newton formulated a theory of universal gravitation’, but the image of a falling apple sticks in our minds much more clearly.",[],{"type":65,"text":6831,"spans":6832,"direction":76},"Understanding how stories like this can help us learn is critical to every great training experience. It’s why we structure every one of our cybersecurity courses around a compelling story.",[6833],{"start":6072,"end":6300,"type":85},{"type":65,"text":6835,"spans":6836,"direction":76},"Take passwords, for example. Instead of just coaching people to set strong passwords, we explore the 2019 SolarWinds incident, where an intern was found to have used ‘solarwinds123’ as a password guarding entry to a critical server – and even made it public on GitHub.",[6837],{"start":3267,"end":1357,"type":71,"data":6838},{"link_type":73,"url":6839,"target":75},"https://www.cnn.com/2021/02/26/politics/solarwinds123-password-intern/index.html",{"type":65,"text":6841,"spans":6842,"direction":76},"Stories like this bring subjects alive. Here, we put the learner in the mind of the SolarWinds IT team, the CEO, and even the poor intern himself. This elevates our guidance and advice into something much more memorable and applicable, helping people to be more secure.",[],{"type":65,"text":5536,"spans":6844,"direction":76},[6845,6846,6847],{"start":32,"end":5238,"type":229},{"start":32,"end":5238,"type":85},{"start":232,"end":5238,"type":71,"data":6848},{"link_type":73,"url":142,"target":3629},{"type":96,"text":6850,"spans":6851,"direction":76},"#2: Focus less on the classroom, more on the conversation",[],{"type":65,"text":6853,"spans":6854,"direction":76},"People learn by doing. Instead of flat one-way classroom-style learning, we respond much more positively when we’re asked to actively engage with the material, testing it from different angles and offering our own thoughts, opinions, and responses.",[6855],{"start":1357,"end":731,"type":71,"data":6856},{"link_type":73,"url":6857,"target":75},"https://teaching.cornell.edu/teaching-resources/active-collaborative-learning/active-learning#:~:text=Active%20learning%20methods%20ask%20students,words%20through%20writing%20and%20discussion.",{"type":65,"text":6859,"spans":6860,"direction":76},"That’s why we make every one of our courses a real conversation. We give learners the chance to consider the stories and techniques presented to them, then suggest the right response to the actual cybersecurity threats and situations they could face every day.",[6861,6862],{"start":32,"end":28,"type":85},{"start":4140,"end":4098,"type":229},{"type":65,"text":6864,"spans":6865,"direction":76},"For example, instead of simply warning learners about scammers using AI-powered deepfakes to generate someone’s voice or likeness and trick their colleagues into handing over sensitive data, we test their ability to distinguish between a real voice sample and a deepfake we generated.",[6866,6868],{"start":5213,"end":139,"type":71,"data":6867},{"link_type":73,"url":3262,"target":3629},{"start":4434,"end":6300,"type":71,"data":6869},{"link_type":73,"url":306,"target":3629},{"type":120,"url":6871,"alt":6872,"copyright":6,"dimensions":6873,"id":6874,"edit":6875},"https://images.prismic.io/riot-website/Zl8f0pm069VX1ctZ_Blog_Write_Cybersecurity_Courses_3.png?auto=format,compress","How we write cybersecurity courses deepfake question",{"width":5225,"height":839},"Zl8f0pm069VX1ctZ",{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":6877,"spans":6878,"direction":76},"And because every great conversation is a two-way street, we craft courses with personality. We want people to feel like they’re engaging with a real person when they chat to Albert – someone interested, interesting, and maybe even annoying from time to time. Just like a real person.",[],{"type":96,"text":6880,"spans":6881,"direction":76},"#3: Make every moment of every course relentlessly relevant",[],{"type":65,"text":6883,"spans":6884,"direction":76},"We’ve all had to deal with boring or generic training at some point. You open up a PDF or a set of slides, start reading, and… ugh, it just goes on and on. Not only is it too long, but there’s no effort to match what you’re learning to the real challenges and problems you’re facing every day.",[],{"type":65,"text":6886,"spans":6887,"direction":76},"We think people deserve better cybersecurity training. That’s why we make every moment of every one of our courses relentlessly relevant to the learner experience, distilling a wide range of information down to punchy five-minute conversations full of practical tips and guidance.",[6888,6889],{"start":32,"end":5802,"type":85},{"start":6890,"end":6891,"type":71,"data":6892},252,279,{"link_type":73,"url":6893,"target":3629},"https://tryriot.com/customers/infologo/",{"type":65,"text":6895,"spans":6896,"direction":76},"This includes our courses tailored to match industry-specific learning topics, such as the application of data privacy frameworks like GDPR and HIPAA. And because the landscape is always changing, we regularly update these courses to feature the latest information.",[],{"type":65,"text":6898,"spans":6899,"direction":76},"We also customize our courses to incorporate specific learner details, making the training experience even more relevant. That’s why our CEO fraud scenarios reflects the name of the learner’s actual CEO, making it easier to visualize what these emails might look like in reality.",[6900],{"start":5507,"end":3177,"type":229},{"type":120,"url":5223,"alt":6902,"copyright":6,"dimensions":6903,"id":5227,"edit":6904},"How we write cybersecurity courses CEO fraud",{"width":5225,"height":5226},{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":6906,"spans":6907,"direction":76},"Our ‘Nudges’ feature also makes it easy to deliver quick refresher courses based on the latest cybersecurity news using generative AI. Just give Albert an article (for example, the MGM ransomware attack) and he’ll turn it into a new conversation offering tips on how your team can stay safe from attacks like these (first tip: Don’t read out login credentials over the phone!).",[6908,6909],{"start":32,"end":3661,"type":85},{"start":3310,"end":6910,"type":71,"data":6911},202,{"link_type":73,"url":6912,"target":75},"https://www.vox.com/technology/2023/9/15/23875113/mgm-hack-casino-vishing-cybersecurity-ransomware",{"type":65,"text":6914,"spans":6915,"direction":76},"And speaking of working as a team…",[],{"type":96,"text":6917,"spans":6918,"direction":76},"#4: Turn cybersecurity into a team sport",[],{"type":65,"text":6920,"spans":6921,"direction":76},"When people think about cybersecurity, they think about tools and systems: Secure networks, data encryption, multi-factor authentication. And while that’s all important, a focus on technology doesn’t paint a full picture of how most cyberattacks actually happen in reality.",[],{"type":65,"text":6923,"spans":6924,"direction":76},"The truth is, people are every organization’s biggest cybersecurity vulnerability. Just consider that 74% of the 5,199 US data breaches in 2023 involved an element of human error. That’s why our courses turn cybersecurity into a team sport, developing a shared level of awareness.",[6925,6928],{"start":6072,"end":114,"type":71,"data":6926},{"link_type":73,"url":6927,"target":75},"https://www.verizon.com/about/news/2023-data-breach-investigations-report",{"start":4887,"end":1176,"type":85},{"type":120,"url":6338,"alt":6930,"copyright":6,"dimensions":6931,"id":6341,"edit":6932},"How we write cybersecurity courses awareness overview",{"width":630,"height":3725},{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":6934,"spans":6935,"direction":76},"The greater your team’s common level of awareness and familiarity with today’s biggest cybersecurity threats, including spear phishing and CEO fraud, the greater chance you’ll have to stay safe together. But to build this familiarity, you need to deliver the right learning experiences.",[],{"type":65,"text":6937,"spans":6938,"direction":76},"That’s why we make it so easy to customize and deploy programs to suit different cohorts, giving you a clear overview of learner progress and highlighting where people need extra support. This helps you make cybersecurity an ongoing habit, rather than another annual compliance training.",[6939],{"start":5387,"end":4510,"type":71,"data":6940},{"link_type":73,"url":3674,"target":3629},{"type":65,"text":6942,"spans":6943,"direction":76},"And now that your team is learning all about cybersecurity, it’s time to put them to the test.",[],{"type":96,"text":6945,"spans":6946,"direction":76},"#5: Test learners with world-class cybersecurity simulations",[],{"type":65,"text":6948,"spans":6949,"direction":76},"Learning about best practices is one thing, but putting them to the test is something else. That’s why we follow up our cybersecurity courses with world-class phishing simulations to find out whether or not learners have actually increased their awareness.",[6950,6951],{"start":6188,"end":3503,"type":85},{"start":4430,"end":6952,"type":71,"data":6953},179,{"link_type":73,"url":234,"target":3629},{"type":65,"text":6955,"spans":6956,"direction":76},"These simulations are just as convincing as the real ones, featuring a range of templates and hooks to test your team in safety. From fake invoices or juicy sales leads through to competitions to design your company’s next logo, we give you plenty of ways to tempt people to click.",[],{"type":120,"url":3722,"alt":6958,"copyright":6,"dimensions":6959,"id":3726,"edit":6960},"How we write cybersecurity courses phishing simulations",{"width":630,"height":3725},{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":6962,"spans":6963,"direction":76},"We make it easy to run these simulations all year long, tracking team responses and pinpointing people who might need extra support. Our ‘smart groups’ feature also lets you run simulations for specific learners and track their progress, letting you see improvements in real time.",[],{"type":65,"text":6965,"spans":6966,"direction":76},"If you’re ready to get started with a simulation of your own, you can do it for free right here. Now, let’s look at how we put these five steps in practice with our course on AI deepfakes.",[6967,6968],{"start":32,"end":655,"type":85},{"start":673,"end":5549,"type":71,"data":6969},{"link_type":73,"url":5055,"target":3629},{"type":96,"text":6971,"spans":6972,"direction":76},"Case study: How we built our course on AI-powered deepfakes",[],{"type":65,"text":6974,"spans":6975,"direction":76},"Like a lot of our cybersecurity courses, our course on AI-powered deepfakes started as a request from a client. We always encourage our customers to let us know whenever they’d like to see a topic added to our library, and we love crafting these new courses.",[6976],{"start":32,"end":4758,"type":85},{"type":65,"text":6978,"spans":6979,"direction":76},"As it turned out, this was a timely request: We’d also noticed an increase in scammers using generative AI models to impersonate victims’ colleagues, family members, or even their bosses, and we wanted to give our learners the tools they need to stay safe from these threats.",[6980,6984,6987],{"start":6981,"end":648,"type":71,"data":6982},138,{"link_type":73,"url":6983,"target":75},"https://www.pcmag.com/news/hacker-deepfakes-employees-voice-in-phone-call-to-breach-it-company",{"start":6356,"end":4033,"type":71,"data":6985},{"link_type":73,"url":6986,"target":75},"https://www.cnn.com/2023/04/29/us/ai-scam-calls-kidnapping-cec/index.html",{"start":4887,"end":148,"type":71,"data":6988},{"link_type":73,"url":6989,"target":75},"https://www.aicpa-cima.com/news/article/deepfakes-emerge-as-real-cybersecurity-threat#:~:text=Real%2Dtime%20voice%20cloning%20allowed,recognized%20it%E2%80%9D%20on%20the%20phone.",{"type":65,"text":6991,"spans":6992,"direction":76},"Before we started writing anything, our course authors Ben (CEO) and Tom (Head of Content) read widely on the topic, gathering everything they could on the history of AI-powered deepfake technology, and understanding the sophisticated ways scammers had been using it.",[],{"type":65,"text":6994,"spans":6995,"direction":76},"Then, we needed to choose a story to kick off the course. And we had the perfect one: The Perkin family, who were scammed in early 2023 by a fraudster impersonating their son with a deepfake call purporting to be from jail, with a request for money ahead of a court appearance.",[6996,6997],{"start":32,"end":3650,"type":85},{"start":1354,"end":5387,"type":71,"data":6998},{"link_type":73,"url":6999,"target":75},"https://www.businessinsider.com/couple-canada-reportedly-lost-21000-in-ai-generated-voice-scam-2023-3?r=US&IR=T",{"type":120,"url":7001,"alt":6872,"copyright":6,"dimensions":7002,"id":7003,"edit":7004},"https://images.prismic.io/riot-website/Zl8hY5m069VX1cum_Blog_Write_Cybersecurity_Courses_7.png?auto=format,compress",{"width":5225,"height":840},"Zl8hY5m069VX1cum",{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":7006,"spans":7007,"direction":76},"From there, we crafted a conversation with Albert covering all the key markers of a deepfake phishing scam, including the biggest red flags to watch out for (urgent scenarios, requests for bitcoin), and tips to stay safe (calling the person via a side-channel, agreeing on a safe word ahead of time). And, of course, we ruthlessly edited it to keep it under the five-minute mark.",[],{"type":65,"text":7009,"spans":7010,"direction":76},"And to really bring our deepfake course to life, we even generated AI voice models for Barack Obama (and for our French learners, Johnny Hallyday) to help test the learner by showing just how convincing these deepfakes can be.",[],{"type":65,"text":7012,"spans":7013,"direction":76},"Once we were ready to move to production, Ben and Tom worked with our Engineering team to get the course flowing seamlessly in Teams, Slack, and our own web interface. We translated the course from English to French, Korean, Italian, German, Chinese, Japanese, Spanish, Dutch, and Portuguese, so learners around the world could enjoy this new conversation with Albert.",[],{"type":65,"text":7015,"spans":7016,"direction":76},"Hey presto: Another addition to our library of fun and memorable cybersecurity courses! Now, we’re helping our 500,000+ learners to be more aware of the dangers of AI-powered deepfakes – and hopefully stopping a few scammers in their tracks.",[7017],{"start":32,"end":4858,"type":85},{"type":65,"text":7019,"spans":7020,"direction":76},"Speaking of stopping scammers, check out our free checklist on 12 cybersecurity metrics that really matter – and how you can move the needle.",[7021,7022,7023],{"start":32,"end":3131,"type":229},{"start":32,"end":3131,"type":85},{"start":419,"end":5238,"type":71,"data":7024},{"link_type":73,"url":3674,"target":3629},"article_content$9c21b9f7-247e-4e3e-be46-cbbe0e6a55d7",{"variation":59,"version":60,"items":7027,"primary":7028,"id":7032,"slice_type":3203,"slice_label":6},[],{"title":3679,"hubspot_form_id":3680,"image":7029},{"dimensions":7030,"alt":6591,"copyright":6,"url":4083,"id":4084,"edit":7031},{"width":3197,"height":764},{"x":32,"y":32,"zoom":33,"background":34},"article_hubspot_form$5aa13d7f-faa4-4d7b-adc0-64a5a14aa978",{"variation":59,"version":60,"items":7034,"primary":7035,"id":7057,"slice_type":90,"slice_label":6},[],{"content":7036},[7037,7040,7043,7047,7050],{"type":96,"text":7038,"spans":7039,"direction":76},"Your team deserves better cybersecurity courses",[],{"type":65,"text":7041,"spans":7042,"direction":76},"For years, people have tolerated generic cybersecurity courses that felt just like any other box-ticking compliance training. In fact, scammers have been counting on it – they know most cybersecurity training is a huge snooze, and they know we’ll never remember it.",[],{"type":65,"text":7044,"spans":7045,"direction":76},"Now, we’re changing all that. With Albert, you can find out what our clients and learners already know: That punchy, conversational cybersecurity courses can not only keep people safe online, but actually be memorable and (dare we say it?) fun at the same time.",[7046],{"start":32,"end":5954,"type":85},{"type":65,"text":7048,"spans":7049,"direction":76},"And because cybersecurity is an ongoing commitment, our platform makes it easy to keep your whole team sharp with quick, news-driven reminders and threat simulations.",[],{"type":65,"text":7051,"spans":7052,"direction":76},"To experience our refreshing take on cybersecurity awareness training for yourself, get in touch with one of our experts today.",[7053,7054],{"start":32,"end":3130,"type":85},{"start":5910,"end":7055,"type":71,"data":7056},126,{"link_type":73,"url":454,"target":75},"article_content$c424bf29-53bc-432d-b502-1be88530a4e0",{"variation":59,"version":60,"items":7059,"primary":7060,"id":7061,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$ea3af05f-cfa4-4c5b-9334-19cbe3321c93",{"variation":59,"version":60,"items":7063,"primary":7064,"id":7065,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$d2ac84c2-2a6e-4b0c-8d98-7a30cdd639e1","We share our five-step process for writing cybersecurity courses that get 91%+ completion rates – and take you behind the scenes of our deepfake course.",{"dimensions":7068,"alt":6776,"copyright":6,"url":7069,"id":6778,"edit":7070},{"width":469,"height":470},"https://images.prismic.io/riot-website/ZnqbQpbWFbowe1Ta_Blog_Writing_Courses_V2.jpg?auto=format%2Ccompress&rect=0%2C636%2C6240%2C3276&w=2400&h=1260",{"x":32,"y":7071,"zoom":33,"background":34},636,"How We Write Cybersecurity Courses That Get 91%+ Completion",{"id":7074,"uid":7075,"url":6,"type":7,"href":7076,"tags":7077,"first_publication_date":7078,"last_publication_date":7079,"slugs":7080,"linked_documents":7082,"lang":16,"alternate_languages":7083,"data":7087},"Zl8KkxIAAB8AVu9G","boring-cybersecurity-training","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22Zl8KkxIAAB8AVu9G%22%29+%5D%5D",[599],"2024-06-04T12:52:13+0000","2026-06-09T15:23:30+0000",[7081],"cybersecurity-is-critical--so-why-is-the-training-so-boring",[],[7084],{"id":7085,"type":7,"lang":20,"uid":7086},"Zl8M8RIAACIAVvMh","formation-cyber-ennuyeuse",{"date":5717,"title":7088,"author_name":24,"author_position":3101,"author_profile_picture":7089,"thumbnail":7092,"image":7098,"created_at":7108,"slices":7109,"meta_description":7366,"meta_image":7367,"meta_title":7372},"Your Boring Cybersecurity Training is Only Helping Scammers – Here Are 4 Ways We Can Do Better",{"dimensions":7090,"alt":5721,"copyright":6,"url":4568,"id":30,"edit":7091},{"width":28,"height":28},{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":7093,"alt":7094,"copyright":6,"url":7095,"id":7096,"edit":7097},{"width":37,"height":38},"Boring Cybersecurity Training","https://images.prismic.io/riot-website/ZnqaM5bWFbowe1So_Blog_Boring_Training_V2.jpg?auto=format%2Ccompress&rect=0%2C193%2C6000%2C3789&w=760&h=480","ZnqaM5bWFbowe1So",{"x":32,"y":4185,"zoom":33,"background":34},{"dimensions":7099,"alt":7094,"copyright":6,"url":7100,"id":7096,"edit":7101,"Large":7103},{"width":45,"height":46},"https://images.prismic.io/riot-website/ZnqaM5bWFbowe1So_Blog_Boring_Training_V2.jpg?auto=format%2Ccompress&rect=0%2C645%2C6000%2C2572&w=1220&h=523",{"x":32,"y":7102,"zoom":33,"background":34},645,{"dimensions":7104,"alt":7094,"copyright":6,"url":7105,"id":7096,"edit":7106},{"width":52,"height":53},"https://images.prismic.io/riot-website/ZnqaM5bWFbowe1So_Blog_Boring_Training_V2.jpg?auto=format%2Ccompress&rect=0%2C616%2C6000%2C2572&w=2440&h=1046",{"x":32,"y":7107,"zoom":33,"background":34},616,"2024-06-09",[7110,7325,7337,7358,7362],{"variation":59,"version":60,"items":7111,"primary":7112,"id":7324,"slice_type":90,"slice_label":6},[],{"content":7113},[7114,7120,7123,7128,7131,7134,7140,7151,7163,7166,7172,7175,7179,7182,7185,7189,7196,7199,7202,7205,7211,7219,7222,7225,7233,7236,7239,7243,7246,7249,7253,7256,7260,7263,7266,7273,7276,7279,7282,7286,7289,7292,7295,7299,7304,7307,7310,7316],{"type":65,"text":7115,"spans":7116,"direction":76},"Close your eyes and picture the last great cybersecurity training you took. Not just fine, but actually great. Are you drawing a blank? Be honest – we won’t judge!",[7117,7118],{"start":5549,"end":5387,"type":229},{"start":7119,"end":4530,"type":229},104,{"type":65,"text":7121,"spans":7122,"direction":76},"The truth is, it would take a miracle for you to actually remember your cybersecurity training. And why would you? Generic courses on data encryption and password best practices aren’t exactly thrilling. But unfortunately, all of this forgettable training only helps one group: scammers.",[],{"type":65,"text":7124,"spans":7125,"direction":76},"In this article, we’ll explore why most cybersecurity training fails to prepare us for the ever-expanding list of threats we face online. Then, we’ll offer a four-step guide to delivering practical, engaging training that not only keeps people safe, but actually holds their interest.",[7126],{"start":32,"end":7127,"type":85},284,{"type":65,"text":7129,"spans":7130,"direction":76},"Let’s get started by looking at why cybersecurity is more critical than ever.",[],{"type":96,"text":7132,"spans":7133,"direction":76},"Cybersecurity is critical – so why is the training so boring?",[],{"type":65,"text":7135,"spans":7136,"direction":76},"The COVID-19 response drove a huge uptake in digital activity, with an additional 30% of businesses moving online during the pandemic. Given this trend, it’s no wonder cyberattacks targeting businesses have surged. After all, where people go, scammers follow.",[7137],{"start":4513,"end":4452,"type":71,"data":7138},{"link_type":73,"url":7139,"target":75},"https://www.bigcommerce.com/blog/covid-19-ecommerce/",{"type":65,"text":7141,"spans":7142,"direction":76},"And follow they have. A staggering 83% of US organizations report experiencing more than one data breach per year, with each breach costing an average of $9.44 million USD. For publicly-traded companies, these breaches also cause an average loss of 7.5% in stock value. The most sobering stat of all? Three-quarters of all breaches involve an element of human error.",[7143,7145,7148],{"start":5438,"end":4177,"type":71,"data":7144},{"link_type":73,"url":4371,"target":75},{"start":7146,"end":3591,"type":71,"data":7147},249,{"link_type":73,"url":4371,"target":75},{"start":4950,"end":7149,"type":71,"data":7150},331,{"link_type":73,"url":74,"target":75},{"type":65,"text":7152,"spans":7153,"direction":76},"Fortunately, most businesses have training programs in place to boost threat awareness and mitigate the risk of cybersecurity missteps. Great, right? Well, yes and no. While 85% of employees say they complete security awareness training, 64% say they don’t really pay attention. Even worse, 36% say their cybersecurity training is actually boring.",[7154,7156,7159,7161],{"start":5809,"end":4140,"type":71,"data":7155},{"link_type":73,"url":150,"target":75},{"start":7157,"end":391,"type":71,"data":7158},238,{"link_type":73,"url":150,"target":75},{"start":6891,"end":7160,"type":85},347,{"start":667,"end":5852,"type":71,"data":7162},{"link_type":73,"url":150,"target":75},{"type":65,"text":7164,"spans":7165,"direction":76},"So, why does so much cybersecurity training fail to hold our attention?",[],{"type":65,"text":299,"spans":7167,"direction":76},[7168,7169,7170],{"start":32,"end":302,"type":229},{"start":32,"end":302,"type":85},{"start":232,"end":302,"type":71,"data":7171},{"link_type":73,"url":306,"target":3629},{"type":96,"text":7173,"spans":7174,"direction":76},"5 reasons why most cybersecurity training misses the mark",[],{"type":65,"text":7176,"spans":7177,"direction":76},"There are five key reasons why most cybersecurity training doesn’t prepare people for the very real threats they face.",[7178],{"start":32,"end":3438,"type":85},{"type":116,"text":7180,"spans":7181,"direction":76},"#1: It looks (and feels) like Windows 95",[],{"type":65,"text":7183,"spans":7184,"direction":76},"Today, people expect training to be sleek, intuitive, and quick. Unfortunately, most cybersecurity training is stuck in the 90s, with boxy interfaces, clunky slide formats, and big chunks of text.",[],{"type":65,"text":7186,"spans":7187,"direction":76},"Don’t believe me? Here’s what you get when you Google ‘cybersecurity training’:",[7188],{"start":32,"end":6006,"type":85},{"type":120,"url":7190,"alt":7094,"copyright":6,"dimensions":7191,"id":7194,"edit":7195},"https://images.prismic.io/riot-website/Zl8JV5m069VX1cXb_Blog_Boring_Training_2.png?auto=format,compress",{"width":7192,"height":7193},2990,1950,"Zl8JV5m069VX1cXb",{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":7197,"spans":7198,"direction":76},"A lot of training content looks like this because it’s built by subject-matter experts with a depth of technical expertise, but little awareness of how people actually retain and apply information. It’s not their fault – but it does lead to forgettable learning experiences.",[],{"type":65,"text":7200,"spans":7201,"direction":76},"We can do better by offering cybersecurity training that matches expectations, keeps people engaged, and gets key ideas and techniques across quickly.",[],{"type":116,"text":7203,"spans":7204,"direction":76},"#2: It doesn’t reflect individual experience levels or training needs",[],{"type":65,"text":7206,"spans":7207,"direction":76},"For many companies, the cybersecurity training on offer is the same no matter a person’s background or level of experience. This means a summer intern might take the same phishing awareness training as a Head of IT with 30+ years’ experience.",[7208],{"start":7209,"end":3177,"type":71,"data":7210},171,{"link_type":73,"url":234,"target":3629},{"type":65,"text":7212,"spans":7213,"direction":76},"This generic, one-size-fits-all training is a huge missed opportunity. We need to tailor the training to match different levels of experience and technical ability, and the specific risks faced by each individual. This way, we can give people the learning experiences they really need.",[7214,7215],{"start":32,"end":5053,"type":85},{"start":7216,"end":7217,"type":71,"data":7218},173,212,{"link_type":73,"url":3262,"target":3629},{"type":116,"text":7220,"spans":7221,"direction":76},"#3: It’s treated just like any other compliance training",[],{"type":65,"text":7223,"spans":7224,"direction":76},"Too often, cybersecurity awareness training is treated like any other compliance training, like workplace health and safety, data privacy, or filing best practices. People get a yearly reminder, read some slides, and check a box to say they understand. That’s it.",[],{"type":65,"text":7226,"spans":7227,"direction":76},"In reality, cyber threats are changing every day, with scammers inventing new ways to exploit our systems. Instead of treating cybersecurity like just another compliance requirement, we need training that is every bit as innovative and responsive as the scammers are.",[7228,7229],{"start":32,"end":5238,"type":85},{"start":4056,"end":7230,"type":71,"data":7231},105,{"link_type":73,"url":7232,"target":3629},"https://tryriot.com/customers/cowboy/",{"type":116,"text":7234,"spans":7235,"direction":76},"#4: It’s framed in terms of systems, not people",[],{"type":65,"text":7237,"spans":7238,"direction":76},"Cybersecurity training is often framed in terms of systems and technologies, sending the message that with the right set of protocols, we’ll all be safe. And while tools like multi-factor authentication and password managers are crucial, they don’t tell the whole story.",[],{"type":65,"text":7240,"spans":7241,"direction":76},"That’s because cybersecurity is a human challenge. Scammers succeed mostly because of human error: people trust strangers too much, or they share sensitive information. Basing our training in real stories and putting a trusted face on our culture of cybersecurity (i.e. our Head of Security, Chief Information Security Officer, or other designated person) can help keep us safe.",[7242],{"start":32,"end":5905,"type":85},{"type":116,"text":7244,"spans":7245,"direction":76},"#5: It takes more time than people have",[],{"type":65,"text":7247,"spans":7248,"direction":76},"For most people, cybersecurity training simply takes more time than they have. We’re all busy, and we can’t spend hours wading through generic one-size-fits-all guides and resources.",[],{"type":65,"text":7250,"spans":7251,"direction":76},"Add up all of these shortcomings, and you have a dream scenario for scammers. They know the majority of us are too busy or too bored to learn about cybersecurity best practices – that’s how they win. We owe it to our teams – and to ourselves – to do better.",[7252],{"start":32,"end":3164,"type":85},{"type":96,"text":7254,"spans":7255,"direction":76},"Your 4-step guide to delivering better cybersecurity training",[],{"type":65,"text":7257,"spans":7258,"direction":76},"It’s time to put an end to boring cybersecurity training and give people what they actually deserve. Here are four steps we can take to get this right.",[7259],{"start":32,"end":4228,"type":85},{"type":116,"text":7261,"spans":7262,"direction":76},"#1: Offer compelling stories about why cybersecurity really matters",[],{"type":65,"text":7264,"spans":7265,"direction":76},"It’s easy for people to switch off from cybersecurity training if they don’t have an immediate sense of why it really matters to them. Phishing, passwords, secure networks… who cares?",[],{"type":65,"text":7267,"spans":7268,"direction":76},"That’s why it’s so crucial to ground your cybersecurity training in real stories, and show people exactly how things can go wrong. For example, instead of explaining the hypothetical risks of invoice fraud, you could show them how Evaldas Rimasauskas scammed Google and Facebook out of more than $120 million US over the 2013-2015 period using fake bills.",[7269,7270],{"start":32,"end":4334,"type":85},{"start":3474,"end":3631,"type":71,"data":7271},{"link_type":73,"url":7272,"target":75},"https://www.zdnet.com/article/lithuanian-man-pleads-guilty-to-scamming-google-and-facebook-out-of-123-million/",{"type":65,"text":7274,"spans":7275,"direction":76},"Then, it’s time to put all this new training into action. For example, you can follow up your phishing training with email campaigns designed to test people’s awareness. This will give you a clear overview of who has aced the training, and who needs some more help.",[],{"type":120,"url":4036,"alt":6,"copyright":6,"dimensions":7277,"id":4039,"edit":7278},{"width":630,"height":3725},{"x":32,"y":32,"zoom":33,"background":34},{"type":116,"text":7280,"spans":7281,"direction":76},"#2: Customize your training to match the individual",[],{"type":65,"text":7283,"spans":7284,"direction":76},"Effective cybersecurity training is customized to match different levels of experience, as well as the particular challenges and demands a person faces. This way, you can drive greater engagement, boosting retention and awareness.",[7285],{"start":32,"end":3992,"type":85},{"type":65,"text":7287,"spans":7288,"direction":76},"For example, let’s say someone gets promoted to manager or coach. They should receive training on how to oversee a great cybersecurity culture within their team, and how they can offer the right guidance and resources to keep critical projects safe.",[],{"type":65,"text":7290,"spans":7291,"direction":76},"This customized approach takes a greater level of collaboration and cooperation between HR, L&D, and IT, but it pays off in the long-term.",[],{"type":116,"text":7293,"spans":7294,"direction":76},"#3: Embed bite-sized training in regular routines",[],{"type":65,"text":7296,"spans":7297,"direction":76},"Instead of seeing cybersecurity training as an annual box-ticking exercise, you need to make it a regular habit. That’s why it’s critical to embed quick, bite-sized training and reminders within team routines – and to make them available where people already work, like Slack or Teams.",[7298],{"start":32,"end":596,"type":85},{"type":120,"url":7300,"alt":6,"copyright":6,"dimensions":7301,"id":7302,"edit":7303},"https://images.prismic.io/riot-website/Zl8KEpm069VX1cYD_Blog_Boring_Training_4.png?auto=format,compress",{"width":630,"height":3725},"Zl8KEpm069VX1cYD",{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":7305,"spans":7306,"direction":76},"These conversations should be quick enough for people to fit between the other items on their to-do lists, and engaging enough to be memorable.",[],{"type":116,"text":7308,"spans":7309,"direction":76},"#4: Make it fun – no, really!",[],{"type":65,"text":7311,"spans":7312,"direction":76},"We’re not kidding – you really should be trying to make cybersecurity training fun. After all, if you take all the pain and boredom out of the training, your teams will have a much greater incentive to stay one step ahead of scammers and fraudsters. Trust us – they’ll thank you later!",[7313,7314],{"start":32,"end":3224,"type":85},{"start":1942,"end":4513,"type":71,"data":7315},{"link_type":73,"url":179,"target":3629},{"type":65,"text":7317,"spans":7318,"direction":76},"Speaking of fun, when was the last time you took a break? Find out how to keep your team safe even when you're on vacation with our free 5-step checklist.",[7319,7320,7321],{"start":32,"end":3805,"type":229},{"start":32,"end":3805,"type":85},{"start":4105,"end":147,"type":71,"data":7322},{"link_type":73,"url":7323,"target":3629},"https://tryriot.com/toolbox/checklist-5-steps-ciso-vacation/","article_content$58250d86-8841-493c-be80-f0e48ac99c99",{"variation":59,"version":60,"items":7326,"primary":7327,"id":7336,"slice_type":3203,"slice_label":6},[],{"title":7328,"hubspot_form_id":7329,"image":7330},"Our 5-Step Checklist for a Worry-Free CISO Vacation","29f1080f-a8c9-4196-8eb7-796dddd3b581",{"dimensions":7331,"alt":7332,"copyright":6,"url":7333,"id":7334,"edit":7335},{"width":3197,"height":764},"CISO vacation cybersecurity checklist","https://images.prismic.io/riot-website/ZpZsJB5LeNNTxMeF_Toolbox_vacation_checklist.png?auto=format,compress","ZpZsJB5LeNNTxMeF",{"x":32,"y":32,"zoom":33,"background":34},"article_hubspot_form$9817e7a0-0a37-442f-810a-f963a26543a8",{"variation":59,"version":60,"items":7338,"primary":7339,"id":7357,"slice_type":90,"slice_label":6},[],{"content":7340},[7341,7344,7347,7351],{"type":96,"text":7342,"spans":7343,"direction":76},"You care about cybersecurity training – so prove it",[],{"type":65,"text":7345,"spans":7346,"direction":76},"We all care about cybersecurity, right? So let’s offer our teams awareness training that is more than just another boring compliance exercise. We need to elevate their experience with real stories, up-to-date insights on the latest threats, and training that works the way they do.",[],{"type":65,"text":7348,"spans":7349,"direction":76},"With Albert, we offer the kind of cybersecurity training people can’t stop talking about. We make this happen with our conversational cybersecurity coach, and with convincing phishing simulations, real-time data breach monitoring, and a clear and simple awareness dashboard.",[7350],{"start":32,"end":139,"type":85},{"type":65,"text":7352,"spans":7353,"direction":76},"To find out how Albert can keep your team safe by delivering fun and unforgettable training on AI deepfakes, spear phishing, and more, get in touch with one of our experts today.",[7354,7355],{"start":32,"end":1151,"type":85},{"start":114,"end":6081,"type":71,"data":7356},{"link_type":73,"url":454,"target":3629},"article_content$bffd4fbe-acdd-45e1-abea-a586e8f9436a",{"variation":59,"version":60,"items":7359,"primary":7360,"id":7361,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$66e23ecd-1d19-4b2d-8b8f-23d04d144a56",{"variation":59,"version":60,"items":7363,"primary":7364,"id":7365,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$754de8ae-3add-4b07-b6d1-a7d9ece9b44f","A lot of cybersecurity training is too boring to protect us from the threats we face. Here are four ways we can deliver practical, engaging training.",{"dimensions":7368,"alt":7094,"copyright":6,"url":7369,"id":7096,"edit":7370},{"width":469,"height":470},"https://images.prismic.io/riot-website/ZnqaM5bWFbowe1So_Blog_Boring_Training_V2.jpg?auto=format%2Ccompress&rect=0%2C376%2C6000%2C3150&w=2400&h=1260",{"x":32,"y":7371,"zoom":33,"background":34},376,"Here Are 4 Ways We Can Deliver Better Cybersecurity Training",{"id":7374,"uid":7375,"url":6,"type":7,"href":7376,"tags":7377,"first_publication_date":7378,"last_publication_date":7379,"slugs":7380,"linked_documents":7382,"lang":16,"alternate_languages":7383,"data":7387},"ZvP93RAAACEA8hPn","cybersecurity-awareness-month","https://riot-website.cdn.prismic.io/api/v2/documents/search?ref=ajFujhEAAC0AAnwQ&q=%5B%5B%3Ad+%3D+at%28document.id%2C+%22ZvP93RAAACEA8hPn%22%29+%5D%5D",[599],"2024-09-25T12:20:11+0000","2026-06-09T15:22:56+0000",[7381],"what-is-cybersecurity-awareness-month",[],[7384],{"id":7385,"type":7,"lang":20,"uid":7386},"ZvQBMhAAACIA8hno","cybermois-conseils",{"date":3941,"title":7388,"author_name":5369,"author_position":5370,"author_profile_picture":7389,"thumbnail":7393,"image":7399,"created_at":7409,"slices":7410,"meta_description":7687,"meta_image":7688,"meta_title":7388},"The CISO’s Ultimate Guide to Cybersecurity Awareness Month: 10 Ways to Make an Impact",{"dimensions":7390,"alt":5373,"copyright":6,"url":7391,"id":5375,"edit":7392},{"width":28,"height":28},"https://images.prismic.io/riot-website/Zo1WGx5LeNNTw8zB_Sybille_Profile.png?auto=format,compress&rect=0,0,512,512&w=64&h=64",{"x":32,"y":32,"zoom":33,"background":34},{"dimensions":7394,"alt":7395,"copyright":6,"url":7396,"id":7397,"edit":7398},{"width":37,"height":38},"Cybersecurity Awareness Month","https://images.prismic.io/riot-website/ZvP687VsGrYSv8Di_Blog_CS_Month.jpg?auto=format%2Ccompress&rect=0%2C105%2C6000%2C3789&w=760&h=480","ZvP687VsGrYSv8Di",{"x":32,"y":7230,"zoom":33,"background":34},{"dimensions":7400,"alt":7395,"copyright":6,"url":7401,"id":7397,"edit":7402,"Large":7404},{"width":45,"height":46},"https://images.prismic.io/riot-website/ZvP687VsGrYSv8Di_Blog_CS_Month.jpg?auto=format%2Ccompress&rect=0%2C478%2C6000%2C2572&w=1220&h=523",{"x":32,"y":7403,"zoom":33,"background":34},478,{"dimensions":7405,"alt":7395,"copyright":6,"url":7406,"id":7397,"edit":7407},{"width":52,"height":53},"https://images.prismic.io/riot-website/ZvP687VsGrYSv8Di_Blog_CS_Month.jpg?auto=format%2Ccompress&rect=0%2C459%2C6000%2C2572&w=2440&h=1046",{"x":32,"y":7408,"zoom":33,"background":34},459,"0024-09-25",[7411,7427,7465,7499,7506,7533,7659,7679,7683],{"variation":59,"version":60,"items":7412,"primary":7413,"id":7426,"slice_type":90,"slice_label":6},[],{"content":7414},[7415,7418,7423],{"type":65,"text":7416,"spans":7417,"direction":76},"Every October, Cybersecurity Awareness Month gives us a great chance to improve the systems and practices keeping our organizations safe from data breaches, phishing, and other threats. But you can’t make a positive impact without the right strategy. So, where should you start?",[],{"type":65,"text":7419,"spans":7420,"direction":76},"In this guide, we’ve got ten ways for you to get the most out of Cybersecurity Awareness Month. From running phishing simulations to championing awareness training, here’s how you can celebrate October and make cybersecurity a priority every day of the year.",[7421],{"start":32,"end":7422,"type":85},258,{"type":65,"text":7424,"spans":7425,"direction":76},"First, let’s look at the history behind Cybersecurity Awareness Month.",[],"article_content$ea1fa034-deef-4295-8416-51e689ed7459",{"variation":59,"version":60,"items":7428,"primary":7429,"id":7464,"slice_type":90,"slice_label":6},[],{"content":7430},[7431,7434,7439,7448,7456,7461],{"type":96,"text":7432,"spans":7433,"direction":76},"What is Cybersecurity Awareness Month?",[],{"type":65,"text":7435,"spans":7436,"direction":76},"Since 2004, the United States President and Congress have declared October to be Cybersecurity Awareness Month, using the occasion to encourage the public and private sectors to work together in raising awareness about the importance of cybersecurity.",[7437],{"start":3274,"end":1215,"type":71,"data":7438},{"link_type":73,"url":3133,"target":75},{"type":65,"text":7440,"spans":7441,"direction":76},"And for good reason: estimates suggest cybercrime will cause around 14.57 trillion USD in global damage in 2024. With human error contributing to over 80% of global cybersecurity incidents, initiatives like Cybersecurity Awareness Month are a crucial way to educate vulnerable individuals and limit the opportunities for scammers and other bad actors to take advantage of us.",[7442,7445],{"start":447,"end":4758,"type":71,"data":7443},{"link_type":73,"url":7444,"target":75},"https://www.weforum.org/agenda/2024/01/cybersecurity-cybercrime-system-safety/",{"start":4228,"end":195,"type":71,"data":7446},{"link_type":73,"url":7447,"target":75},"https://www.darkreading.com/cyber-risk/this-cybersecurity-awareness-month-don-t-lose-sight-of-human-risk",{"type":120,"url":7449,"alt":7395,"copyright":6,"dimensions":7450,"id":7453,"edit":7454,"linkTo":7455},"https://images.prismic.io/riot-website/ZvP8P7VsGrYSv8Ec_Blog_CAM_2024.webp?auto=format,compress",{"width":7451,"height":7452},1600,900,"ZvP8P7VsGrYSv8Ec",{"x":32,"y":32,"zoom":33,"background":34},{"link_type":73,"url":3133,"target":75},{"type":65,"text":7457,"spans":7458,"direction":76},"Now in its twenty-first year, Cybersecurity Awareness Month is a global effort encouraging us to act together in the face of cyber threats. But when scams like AI deep fakes and WhatsApp impersonation are evolving every day, our cybersecurity efforts need to evolve too.",[7459],{"start":6239,"end":1197,"type":71,"data":7460},{"link_type":73,"url":3262,"target":3629},{"type":65,"text":7462,"spans":7463,"direction":76},"That’s where our list comes in.",[],"article_content$bded62a8-4819-4ad0-ad6e-fa91832c39b8",{"variation":59,"version":60,"items":7466,"primary":7467,"id":7498,"slice_type":90,"slice_label":6},[],{"content":7468},[7469,7472,7478,7481,7488,7495],{"type":96,"text":7470,"spans":7471,"direction":76},"10 ways to make an impact with Cybersecurity Awareness Month",[],{"type":65,"text":7473,"spans":7474,"direction":76},"For 2024, the theme of Cybersecurity Awareness Month is: Secure Our World. In that spirit, here’s our list of ten ways every CISO can make a positive impact in October and beyond.",[7475],{"start":3650,"end":402,"type":71,"data":7476},{"link_type":73,"url":7477,"target":75},"https://www.cisa.gov/secure-our-world",{"type":116,"text":7479,"spans":7480,"direction":76},"#1: Share a list of key cybersecurity best practices",[],{"type":65,"text":7482,"spans":7483,"direction":76},"If you do one thing this October, do this: share a list of key cybersecurity best practices with every member of your organization.",[7484,7485],{"start":32,"end":709,"type":85},{"start":177,"end":4493,"type":71,"data":7486},{"link_type":73,"url":7487,"target":3629},"https://tryriot.com/toolbox/guide-15-key-cybersecurity-practices/",{"type":65,"text":7489,"spans":7490,"direction":76},"No matter what your existing employee cybersecurity posture may be, Cybersecurity Awareness Month is an opportunity to either introduce some core practices (like phishing awareness), or help your experts stay current with advanced techniques (like minimizing their digital footprint).",[7491],{"start":7492,"end":7493,"type":71,"data":7494},265,282,{"link_type":73,"url":306,"target":3629},{"type":65,"text":7496,"spans":7497,"direction":76},"Fortunately for you, we’ve got a great list of best practices to get you started. From setting strong passwords and using multi-factor authentication tools to building data security awareness, here’s everything you need to set the right cybersecurity foundation. Thank us later!",[],"article_content$16f1a0eb-ef25-4d4d-a351-99e4f3d87ec5",{"variation":59,"version":60,"items":7500,"primary":7501,"id":7505,"slice_type":3203,"slice_label":6},[],{"title":3193,"hubspot_form_id":3194,"image":7502},{"dimensions":7503,"alt":6,"copyright":6,"url":3199,"id":3200,"edit":7504},{"width":3197,"height":764},{"x":32,"y":32,"zoom":33,"background":34},"article_hubspot_form$43e62839-c42f-4d04-8677-4e4d408a6631",{"variation":59,"version":60,"items":7507,"primary":7508,"id":7532,"slice_type":90,"slice_label":6},[],{"content":7509},[7510,7513,7517,7521,7526],{"type":116,"text":7511,"spans":7512,"direction":76},"#2: Protect your team with unforgettable awareness training",[],{"type":65,"text":7514,"spans":7515,"direction":76},"Sharing a list of best practices is a great first step – but to really boost your team’s cybersecurity posture, you need to provide them with the right awareness training. This includes basic topics like cyber incident response and avoiding malware, through to advanced techniques like detecting audio and video deep fakes and social engineering attacks.",[7516],{"start":28,"end":5053,"type":229},{"type":120,"url":166,"alt":7518,"copyright":6,"dimensions":7519,"id":170,"edit":7520},"Riot cybersecurity awareness training",{"width":168,"height":169},{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":7522,"spans":7523,"direction":76},"But remember, not all awareness training is created equal. You need to offer immersive, interactive sessions that people can’t help but love. That way, people won’t just click through to the end of the course and get back to their to-do list. Instead, they’ll not only apply what they’re learning, but they’ll actually enjoy the experience too.",[7524],{"start":3164,"end":140,"type":71,"data":7525},{"link_type":73,"url":179,"target":3629},{"type":65,"text":7527,"spans":7528,"direction":76},"To see how we can help, chat to one of our experts today.",[7529,7530],{"start":32,"end":3650,"type":85},{"start":1941,"end":5905,"type":71,"data":7531},{"link_type":73,"url":449,"target":3629},"article_content$26f99414-f43a-4442-ad74-41e8acc74054",{"variation":59,"version":60,"items":7534,"primary":7535,"id":7658,"slice_type":90,"slice_label":6},[],{"content":7536},[7537,7540,7545,7548,7551,7559,7562,7567,7570,7573,7579,7586,7589,7592,7595,7598,7601,7604,7607,7613,7616,7619,7622,7625,7628,7635,7638,7641,7644,7649,7652,7655],{"type":116,"text":7538,"spans":7539,"direction":76},"#3: Highlight your executive and leadership engagement",[],{"type":65,"text":7541,"spans":7542,"direction":76},"Next up, show your teams the real value of cybersecurity by highlighting how important it is to your organization’s leadership. If you don’t demonstrate this, you create the risk that people will see your Cybersecurity Awareness Month efforts as mere window dressing.",[7543],{"start":402,"end":7055,"type":71,"data":7544},{"link_type":73,"url":3832,"target":3629},{"type":65,"text":7546,"spans":7547,"direction":76},"This can be something as simple as having your company leadership participate in key events to show their support, like a kickoff presentation or a roundtable discussion. And don’t forget to involve your leaders in your awareness training and phishing simulations, too.",[],{"type":116,"text":7549,"spans":7550,"direction":76},"#4: Launch some truly sneaky phishing simulations",[],{"type":65,"text":7552,"spans":7553,"direction":76},"Great lists and awareness training are one thing – but now you need to put it all on the line with world-class phishing simulations that will test your team and keep them on their toes. After all, phishing attacks are still the biggest threat we face – and they’re getting sneakier every day.",[7554,7556],{"start":4452,"end":709,"type":71,"data":7555},{"link_type":73,"url":234,"target":3629},{"start":3235,"end":3347,"type":71,"data":7557},{"link_type":73,"url":7558,"target":75},"https://www.securitymagazine.com/articles/100361-phishing-is-the-top-attack-method-used-by-threat-actors#:~:text=Phishing remains the leading infection,-facing applications at 26%25.",{"type":65,"text":7560,"spans":7561,"direction":76},"Launch a phishing simulation to set your baseline level of vulnerability, then keep your teams on their toes with regular tests mimicking the attacks they’re most likely to face in real life. Ideally, you should match your target group with the spoofed domains and attachments they’d find most tempting, for example, sending your recruitment team a bogus list of top candidates.",[],{"type":65,"text":7563,"spans":7564,"direction":76},"And if you’re looking for some more inspiration, don’t worry: we’ve got a checklist for that, too!",[7565],{"start":673,"end":228,"type":71,"data":7566},{"link_type":73,"url":6358,"target":3629},{"type":116,"text":7568,"spans":7569,"direction":76},"#5: Report on key cybersecurity metrics",[],{"type":65,"text":7571,"spans":7572,"direction":76},"You know the old adage, ‘what gets measured gets managed’? Well, it may not be 100% correct 100% of the time – but when it comes to cybersecurity, it’s 100% true.",[],{"type":65,"text":7574,"spans":7575,"direction":76},"To really make progress with building a culture of cybersecurity, you need to track and report on essential metrics like phishing vulnerability, the percentage of users with strong passwords, awareness training completion and satisfaction scores, and more.",[7576],{"start":302,"end":7577,"type":71,"data":7578},115,{"link_type":73,"url":3674,"target":3629},{"type":120,"url":7580,"alt":7581,"copyright":6,"dimensions":7582,"id":7584,"edit":7585},"https://images.prismic.io/riot-website/ZvQQ-bVsGrYSv8rl_Blog_Simulation_Metrics.png?auto=format,compress","Riot cybersecurity metrics",{"width":7583,"height":3197},3044,"ZvQQ-bVsGrYSv8rl",{"x":32,"y":32,"zoom":33,"background":34},{"type":65,"text":7587,"spans":7588,"direction":76},"This encourages continuous improvement, helping you to pinpoint the places where your teams are already doing great at staying secure, and show where things still need more work.",[],{"type":65,"text":7590,"spans":7591,"direction":76},"And speaking of people doing great…",[],{"type":116,"text":7593,"spans":7594,"direction":76},"#6: Celebrate your cybersecurity champions",[],{"type":65,"text":7596,"spans":7597,"direction":76},"Cybersecurity Awareness Month is more than just a chance to highlight the dangers we face online – it’s a golden opportunity to celebrate those cyber champions who go above and beyond to keep everyone safe. So, be sure to let these individuals know how much you appreciate them!",[],{"type":65,"text":7599,"spans":7600,"direction":76},"You might decide to share a leaderboard of those who have successfully reported the most phishing test emails, or who have completed the most awareness training modules. Or maybe you’d just like to shout out a dedicated system administrator who keeps the ship afloat.",[],{"type":65,"text":7602,"spans":7603,"direction":76},"No matter what you decide, don’t be shy with your praise!",[],{"type":116,"text":7605,"spans":7606,"direction":76},"#7: Remind everyone how to report their cybersecurity concerns",[],{"type":65,"text":7608,"spans":7609,"direction":76},"These days, cyber threats can come from anywhere: we’re just as likely to be the victim of an insider threat as we are to be targeted by a ransomware group. That’s why it’s crucial for everyone to stay vigilant for red flags, and to know exactly what to do if they see anything weird.",[7610,7612],{"start":7216,"end":473,"type":71,"data":7611},{"link_type":73,"url":3890,"target":3629},{"start":7157,"end":5309,"type":229},{"type":65,"text":7614,"spans":7615,"direction":76},"Do people know how to flag a suspicious email? Can they escalate a misconfigured file permission? Do they know what a data breach looks like – and how to sound the alarm?",[],{"type":65,"text":7617,"spans":7618,"direction":76},"Even if people are broadly familiar with these incident response systems and processes, Cybersecurity Awareness Month can be a great opportunity to check in and make sure.",[],{"type":116,"text":7620,"spans":7621,"direction":76},"#8: Review your cybersecurity tools, platforms, and software",[],{"type":65,"text":7623,"spans":7624,"direction":76},"While we’re talking about incident response systems and processes, Cybersecurity Awareness Month is an excellent opportunity to review your suite of tools and platforms to make sure you have the right mix of support at a technical level.",[],{"type":65,"text":7626,"spans":7627,"direction":76},"Think about your password managers, VPNs, awareness training platforms, virus scanning software, data encryption tools, cloud data storage, and anything else that might be relevant.",[],{"type":65,"text":7629,"spans":7630,"direction":76},"Have any of your needs changed since you last renewed these tools? Do your teams need any new software subscriptions? At the very least, thinking about this every October can help keep your cybersecurity budget in check – a smart move when spending is under close scrutiny.",[7631],{"start":7632,"end":1209,"type":71,"data":7633},240,{"link_type":73,"url":7634,"target":75},"https://www.infosecurity-magazine.com/news/cyber-spending-slashed-smes/#:~:text=Cybersecurity%20spending%20is%20predicted%20to,budgets%20will%20increase%20organizational%20risk.",{"type":116,"text":7636,"spans":7637,"direction":76},"#9: Encourage people to think about their personal cybersecurity, too",[],{"type":65,"text":7639,"spans":7640,"direction":76},"Beyond cybersecurity protections in the workplace, it’s crucial to remember scammers target organizations by targeting people personally, too. You can have the most seamless and watertight workplace cybersecurity practices – but your team might still be vulnerable at home.",[],{"type":65,"text":7642,"spans":7643,"direction":76},"So, take the time to remind people about their personal cyber hygiene. Are their personal devices and data adequately protected? Are they sharing too much about their personal – or professional – lives on social media, creating the risk of identity theft? Are they using secure WiFi at home?",[],{"type":65,"text":7645,"spans":7646,"direction":76},"Cybersecurity Awareness Month can be a great opportunity to get people thinking about their cyber safety at a family level, too. This way, your teams can stay safe at work and at home.",[7647],{"start":3539,"end":7648,"type":229},175,{"type":116,"text":7650,"spans":7651,"direction":76},"#10: Keep up your cybersecurity momentum beyond October",[],{"type":65,"text":7653,"spans":7654,"direction":76},"Finally, you need to do what you can to keep up the momentum. After all, cyber threats don’t stop at the end of October – so neither should your cybersecurity efforts.",[],{"type":65,"text":7656,"spans":7657,"direction":76},"So, once you’ve capped off Cybersecurity Awareness Month with a summary of all the amazing stuff you’ve done this year, follow it up with a roadmap for how you’re going to stay secure in the face of new threats. Ideally, this should include a foundation of regular awareness training and phishing simulations.",[],"article_content$2581033e-e366-41c2-95f5-88308014d2b2",{"variation":59,"version":60,"items":7660,"primary":7661,"id":7678,"slice_type":90,"slice_label":6},[],{"content":7662},[7663,7666,7669,7672],{"type":96,"text":7664,"spans":7665,"direction":76},"Get the most out of Cybersecurity Awareness Month with Riot",[],{"type":65,"text":7667,"spans":7668,"direction":76},"Whew, it’s going to be a busy October! But you know who else is busy? Scammers.",[],{"type":65,"text":7670,"spans":7671,"direction":76},"That’s why we all need to get the most out of Cybersecurity Awareness Month and keep our organizations safe with the right awareness training, phishing simulations, data breach monitoring, and more. And now, you’ve got everything you need to make a start.",[],{"type":65,"text":7673,"spans":7674,"direction":76},"To find out how Riot can help you and your team stay on top of cyber threats every October and beyond, get in touch with one of our experts today.",[7675,7676],{"start":32,"end":661,"type":85},{"start":5387,"end":4364,"type":71,"data":7677},{"link_type":73,"url":454,"target":3629},"article_content$318471b3-6d11-4a42-8747-0e873cb2d16c",{"variation":59,"version":60,"items":7680,"primary":7681,"id":7682,"slice_type":460,"slice_label":6},[],{},"article_shared_buttons$6942fe6d-df50-4cca-b105-f14e33c94f20",{"variation":59,"version":60,"items":7684,"primary":7685,"id":7686,"slice_type":465,"slice_label":6},[],{"highlighted_article_id":6,"max_number_of_items":271},"blog_article_list$0fbfb315-be01-480e-a36d-b3303f0c1264","Here are ten ways for every CISO to get the most out of Cybersecurity Awareness Month, from running phishing simulations to championing great awareness training.",{"dimensions":7689,"alt":7395,"copyright":6,"url":7690,"id":7397,"edit":7691},{"width":469,"height":470},"https://images.prismic.io/riot-website/ZvP687VsGrYSv8Di_Blog_CS_Month.jpg?auto=format%2Ccompress&rect=0%2C238%2C6000%2C3150&w=2400&h=1260",{"x":32,"y":7157,"zoom":33,"background":34},1781624674967]