New year’s resolution – dealing with the human factor in 2023

It’s this time of the year again, time to look back to move forward. So, Cornelia, Fabio and I sat down and tackled these questions: How has the IT security domain been dealing with human risk? How is security awareness evolving as a discipline? What have we, as a team, accomplished so far? And most importantly, where do we want to go?

Continue reading “New year’s resolution – dealing with the human factor in 2023”

One more Podcast – Security Awareness Insider

There are more than 2.6 million podcasts available on Spotify. For every possible topic you can find experts, famous people or entertainers talking about it. Among podcasts evolving around politics, sports, psychology, crime or history there are also some putting the topic of information security in the spotlight.

“Back then: plant a tree, build a house, father a son. Today: have a podcast.”

A lot of security, but no awareness

If you are working in security awareness there is not much in it for you though. Most podcasts on security cover the topic by inviting one phishing simulation provider. But as you know, there is so much more to it!

This is why Marcus Beyer (Security Awareness Officer at Swisscom) and I decided to start our own podcast on security awareness only: Security Awareness Insider (in German).

Continue reading “One more Podcast – Security Awareness Insider”

GÉANT and Cyber Security Month with Security awareness at the Paul Scherrer Institute

Cyber Security Month with GÉANT – “Become a cyber hero”

The European data network for the research and education community GÉANT interconnects national research and education networks (NRENs) like SWITCH across Europe, enabling collaboration virtually and accelerate research, drive innovation and enrich education.

Also this year GÉANT joins the European Cyber Security Month, an initiative launched by ENISA, EC DG CONNECT and a variety of partners, to raise security awareness within the European community. With the tagline «Become a cyber hero» GÉANT publishes practical tips, case studies and articles on social engineering, phishing, password security and ransomware throughout October. The content is provided by experts within the community.

SWITCH-CERT is proud to share with you one of the interesting contributions from the Swiss NREN. Read about Björn Abt, IT Security Officer at the Paul Scherrer Institut (PSI), talking about their approach to security awareness:

Continue reading “GÉANT and Cyber Security Month with Security awareness at the Paul Scherrer Institute”

The Drama of Awareness – using Aristotle and Brecht to raise awareness: Part II

In the previous article, we were looking for inspiration on how to raise security awareness in Aristotle’s approach to artistic communication between actor and audience. His Theater of Illusion with its catharsis momentum gave us some insights on how to manufacture communications measures in order to achieve a learning process by proxy.

In the present article, we’re going to have a closer look at Brecht’s more modern concept of Epic Theater. The German playwright strives to move away from the Theatre of Illusion, from identification and purification, towards the active re-evaluation of reality by the audience.

Continue reading “The Drama of Awareness – using Aristotle and Brecht to raise awareness: Part II”

The Drama of Awareness – using Aristotle and Brecht to raise awareness: Part I

There is a lot of drama surrounding the subject of security awareness. Whether it is because of the limited resources available in the face of ever-increasing demand, or the fact that awareness measures are still largely the responsibility of technically trained security experts – one could say that security awareness is surrounded by an air of tragedy.

How can you get users to manage data and devices securely? People have long wondered how to craft a message that moves people (to do something) – since well before the invention of advertising or awareness campaigns. It’s the same problem that lies at the heart of artistic communication between actor and audience. This article is, therefore, not about drama in the proverbial sense, but rather about literary drama as a work of art (of the theatre). Can literary scholarship provide us with insightful answers to this big question? First, we’re going to have a look at Aristotle  and the Classical Drama. Continue reading “The Drama of Awareness – using Aristotle and Brecht to raise awareness: Part I”

The May/June 2018 issue of our SWITCH Security Report is available!

Dear Reader!

A new issue of our bi-monthly SWITCH Security Report has just been released.

The topics covered in this report are:

  • Microsoft will never contact you by phone: support scam continues to gain momentum
  • «Efail» between hype and disaster: the security world needs to learn how to communicate
  • Sonic waves on the attack, recent incidents are reason to prick up your ears
  • Waterholing attacks: infrastructure is and remains a target

The Security Report is available in both English and German.

»»  Download the English report.      »»  Download the German report.

Did you miss our previous Security Report? Click here to go to the archive.