Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Article

MOVEit zero-day exploit and the U.S. iPhone hack accusation

MOVEit discloses zero-day exploit causing mass data theft, Russia accuses U.S. intelligence of hacking thousands of iPhones and the Magecart-cart style web s
Read More
Article

Top 10 secure coder interview questions and answers

Security software vulnerabilities are considered among the top cybersecurity threats to companies. Unfortunately, many organizations lack professionals with
Read More
Article

Daam Android virus and Barracuda zero-day flaw

CERT-In issues advisory on Daam Android malware, Barracuda discloses zero-day exploit affecting ESG appliances and the new Tesla leak. Catch all this and mor
Read More
Article

TP-Link router exploit and 18-year-old charged with hacking DraftKings accounts

Hackers exploit household TP-Link routers to attack European entities, 18-year-old gets charged with hacking thousands of DraftKings betting accounts and the
Read More
Article

Discord support hack and Toyota location data leak

Discord announces data breach after support agent hack, Toyota exposes car location data of 2 million customers and the new Linux BPFDoor malware. Catch all
Read More
Article

AI best practices: How to securely use tools like ChatGPT

AI tools like ChatGPT can help with your job tasks, but they can also pose a security risk if not used correctly. Learn how to use these tools safely.
Read More
Article

Twitter private tweets bug and Cisco phone router vulnerabilities

Twitter admits security bug disclosed private Circle tweets, Cisco warns of a critical flaw in phone adapters and the Android FluHorse malware. Catch all thi
Read More
Article

Cisco XSS zero-day flaw and PaperCut vulnerabilities

Cisco discloses a zero-day weakness that could enable hackers to launch cross-site scripting attacks, ransomware actors exploit critical security flaws in Pa
Read More
Article

Breaking the Silo: Integrating Email Security with XDR

Extended detection and response (XDR) is a security solution that combines multiple security technologies and data sources to provide a more comprehensive and integrated approach to threat detection and response.
Read More
Article

DevSecOps: Continuous Integration Continuous Delivery (CI-CD) tools

In the last piece, we went through the various tools that can be integrated into the DevOps Pipeline to implement security at the different stages of the sof
Read More
Article

3CX hackers hit critical infrastructure and secondhand routers cause security concerns

Hackers behind the 3CX attack hit critical infrastructure, researchers discover secondhand routers with corporate secrets and the GhostToken GCP flaw. Catch
Read More
Article

What is Security Service Edge (SSE)?

Learn about Security Service Edge, or SSE, a security solution that can protect your business’s network and data.
Read More
Article

Computer forensics interview questions

Computer forensic investigators are in high demand. Often referred to as digital forensics engineers, computer forensic investigators are expected to know ba
Read More
Article

Hyundai data breach and Microsoft’s warning to accountants

Hyundai data breach exposes sensitive customer data, Microsoft warns accountants of phishing near Tax Day and the Goldoson Android malware. Catch all this an
Read More
Article

The digital security forensic analyst salary guide

One of the fastest-growing areas of information security is digital security forensics. With so much activity in today’s world taking place in the digital sp
Read More
Article

Western Digital cloud breach and the MSI ransomware hack

Western Digital cloud services hit by massive data breach, car owner sues Tesla over privacy intrusion and the MSI ransomware attack. Catch all this and more
Read More
Article

TMX loan data breach, Italy bans ChatGPT and WordPress Elementor Pro exploit

High-cost lender TMX announces data breach affecting millions of customers, hackers actively exploit vulnerability in the Elementor Pro WordPress plugin and
Read More
Headshot photo of Jade Brown, an Infosec Scholarship winner Article

Applying linguistics to cybersecurity: The journey of Jade Brown, a 2022 Infosec Scholarship winner

Jade Brown, 2022 Infosec Scholarship winner, builds on her Linguistics and East Asian Studies knowledge to grow as a Cyber Threat Intelligence Analyst.
Read More
Article

Average SCADA Security (CSSA) salary

What is SCADA? Supervisory Control and Data Acquisition is one of the most interesting areas of Industrial Control Systems (ICS) and refers to the hardware a
Read More
Article

The top 12 information security risk analyst questions you need to know

Information is one of the most prized assets for an organization. Unfortunately, it’s always at risk of being stolen in this open, digitally-connected world.
Read More
Article

ChatGPT data leak and Gmail message theft by North Korean hackers

ChatGPT suffers data leak due to an open-source bug, North Korean hackers steal Gmail emails via Chrome extensions and the Nexus Android malware. Catch all t
Read More
Article

Connecting a malicious thumb drive: An undetectable cyberattack

Did you know cybercriminals can pull off a nearly undetectable cyberattack using only a malicious thumb drive? Learn how.
Read More
Article

Threat hunter

You may have heard the term, but do you know what threat hunting is in cybersecurity? A threat hunter is a mid- to senior-level cybersecurity position respon
Read More
Article

The Path to “Career 4.0”: Amy Bonus leverages humanities, FinTech experience to bring Cybersecurity to the layperson

With previous careers including journalist, English teacher, and FinTech professional, Infosec Scholarship winner Amy Bonus offers her advice for career switchers entering Cybersecurity
Read More