Webroot is tackling one of the weakest links, if not the weakest link in cybersecurity: human nature.
This week, the network security and threat intelligence vendor announced that it had acquired the Securecast security awareness training platform. The terms of the deal were not disclosed.
Securecast is best known for its online training courses that help users identify and avoid web threats as well as operating a phishing simulator that organizations can use to help test how susceptible their employees are to phishing schemes.
Those capabilities now part of the new Webroot Security Awareness Training service. Currently in beta, customers can use the phishing simulator. In the fall of 2017, when the service is scheduled for general availability, Webroot plans to integrate it into its SecureAnywhere suite of security offerings.
Attackers often rely on the quirks of human behavior and social engineering, instead of technically sophisticated hacks, to gain entry into corporate networks.
Most corporate security professionals (93 percent) view human behavior as the biggest threat to their companies’ security, according to a study from Ari Kaplan Advisors and Nuix. Some of the bad security habits that drive chief information security officers (CISOs) crazy include the tendency among some users to click anything and open everything. Essentially, if they encounter a link within an email or are sent a file, some users can help but click those potentially malicious links or open` files that may contain malware.
Getting users to think twice before engaging in these behaviors can help businesses avoid data breaches and leaks.
“The human factor is a consistent weakness in overall cyber defenses, and security awareness training is the only solution. As cyberattacks like phishing become increasingly sophisticated, users are exposed to a variety of hidden threats that will compromise their own data along with their employer’s data,” said Chad Bacher, SVP of Product Strategy and Technology Alliances, Webroot.
“Those who closely follow today’s cyber threats know that an organization’s users are often its weakest link,” said ESG senior analyst Doug Cahill in prepared remarks. “By acquiring Securecast, Webroot is making the right decision to integrate IT education and awareness training into its products and services. Looking ahead, this type of training will be a crucial part of any organization that wants to avoid cyberattacks.”