Free Tools
A simulated phishing attack performed by KnowBe4 on email addresses an organization provides us.
What is Phishing Security Test (PST)
A weakness on a network, computer, or software which allows a bad guy to gain access.
What is Security Vulnerability
Any training that raises the awareness of a user to potential threats & how to avoid them.
What is Security Awareness Training
AD
What is Active Directory
Malicious code that loads into the early stages of a computer
What is rootkit
A tool that checks to see if an organization’s users are currently using passwords that are in publicly available breaches associated with the organization's domain.
What is Breached Password Test (BPT)
Software or code - usually malicious- that takes advantage of a flaw or vulnerability.
What is Exploit
A system for the administration, documentation, tracking, reporting & delivery of e-learning education courses or training programs.
What is Learning Management System
PCI DSS
What is Payment Card Industry Data Security Standard
Hardware or software designed to block unauthorized network access while permitting authorized communications.
What is firewall
A test that checks a domain name- for example KnowBe4.com - to see if it can be spoofed.
What is Domain Spoof Test (DST)
Also known as piggybacking- a method used by bad guys to gain access to a building or other protected area.
What is tailgating
A technical standard that governs how online learning content and Learning Management Systems communicate with each other.
What is Sharable Content Object Reference Model (SCORM)
HIPAA
What is Health Insurance Portability and Accountability Act
Like physical folders - something that organizes files or data on a hard drive or in a program.
What is Directory
Identifies the at-risk users in an organization by searching business social media information & hundreds of data breach databases.
What is Email Exposure Check Pro (EEC Pro)
Malware or hardware that observes what someone types on their keyboard, which is then sent back to the bad guys.
What is keylogger
Give 4 of the 7 reasons why an organization would outsource security awareness training (why they seek our product).
What is
Reduce costs
Access to talent
Geographic reach and scalability
Compliance
Mitigate risk
Business focus
Leverage the cost of technology
SaaS
What is Software as a Service
A list of trusted email address, domains and/or internet addresses that are permitted to pass through a system or filter.
What is Whitelist
An email plugin that gives users a safe way to handle actual or potential phishing emails.
What is Phish Alert Button (PAB)
A digital currency in which encryption techniques are used to regulate the generation of units of currency & verify the transfer of funds, operating independently of a central bank.
What is Bitcoin
The six steps to successful security awareness training
(SAT)
What is
Have a security policy and have everyone read and sign it
Have all employees take mandatory SAT ( online) with a clear deadline and reasons why they are taking the training
Make SAT part of the onboarding process (the process of integrating new hires in a company)
Regularly test employees to reinforce the SAT its application
Have employees who fail phishing tests meet privately with a supervisor or HR; reward those who do well
Send regular security hints and tips via email to all employees
KCM
What is KnowBe4 Compliance Manager
The quantity of emails exposed on the internet.
What is Phishing Attack Surface