United States Reported Less Data Breaches in 2020 but with much more Expensive Successful Hacker Attacks
According to the annual report of the Identity Theft Resource Center (ITRC), 1,108 cyber incidents were reported in 2020 and the number casualties from these incidents was close to 301 million people, a drop of 66% over the previous year.
The social engineering technique of impersonation also helped attackers reap massive profits:
The volume of business fraud and hacking by corporate e-mail systems (BECs) reported to the FBI in 2020 was US$ 1.8 Billion – a figure that reflects half of all cyber damage in monetary terms.
“The trend away from mass data breaches and toward more precise and sophisticated cyberattacks doesn’t mean businesses can relax. Just the opposite. They need to learn whole new ways of protecting their data.”
– James E. Lee, ITRC COO
Read more about Examples and Numbers of Social Engineering Hacker Attacks ›
Save Your Company from Social Engineering Attacks Like that
Register and Get your Personalized Free Exposure Report NOW
and See your where your Company is Exposed to Hackers
Recently Published on our Blog
🎓 CISOs: Free Security Awareness Training Platforms to Recommend 🎓
Training your workforce is your best defense against phishing, social engineering, and insider threats. Yet, budgets are tight and training fatigue is real.
Here’s a list of free security awareness training platforms that deliver quality content and engagement without costing a dime:
1️⃣ Cybrary – Offers foundational security courses and phishing awareness modules.
https://www.cybrary.it/
2️⃣ Infosec Skills Free Tier – Access select awareness courses and phishing simulations at no cost.
https://www.infosecinstitute.com/skills/
3️⃣ KnowBe4 Free Phishing Security Test – Quick assessment tool to benchmark your team’s phishing susceptibility.
https://www.knowbe4.com/phishing-security-test
4️⃣ Google Phishing Quiz – Interactive quiz for users to spot phishing attacks.
https://phishingquiz.withgoogle.com/
5️⃣ Sans Security Awareness Free Resources – Videos, posters, and tips to complement training efforts.
https://www.sans.org/security-awareness-training/resources/free-resources
6️⃣ Open Security Awareness – Open-source, customizable awareness training modules for teams.
https://opensecurityawareness.org/
7️⃣ MetaPhish Free Plan – Basic phishing simulation and training platform for small teams.
https://metaphish.com/free-phishing-simulation
Empowering your employees with the right knowledge builds your strongest defense layer.
Want to amplify your training with real-world social engineering attack simulations that reveal hidden risks?
📅 Book a free AUMINT.io intro call: Schedule here
💡 Save this post and recommend these platforms to your security champions!
#CISO #SecurityAwareness #PhishingTraining #HumanRisk #AUMINT
The Hidden Insider Threat You’re Probably Ignoring – Ex-Employee Password Access
🔑 Ex-Employees Still Have Your Passwords – And They’re Using Them
🚨 Many workers admit they’ve logged in to former employers’ accounts after leaving – and sometimes months later.
💥 It’s a silent insider threat that bypasses firewalls and phishing filters entirely.
🕵️ The real danger? Credentials that stay active long after offboarding, often with access to sensitive systems, customer data, or financial platforms.
⚠️ In some cases, ex-staff under strained exits can exploit this for sabotage or even sell access on the dark web.
📊 Even “friendly” departures can lead to accidental leaks if accounts aren’t properly closed.
🔍 The fix? Immediate credential deactivation, MFA, and ongoing account audits to spot dormant access before it’s abused.
📢 Your next security breach could come from someone who already knows your systems. Book your AUMINT.io consultation today.
#CyberSecurity #InsiderThreats #AccessControl #FraudPrevention #RiskManagement #CISOs #ITSecurity #DataProtection
📢 CISOs: Best Free Resources to Manage Security Awareness Campaigns 📢
Security awareness campaigns are your frontline defense against social engineering attacks. But managing them effectively without a budget can be tough.
Here’s a carefully curated list of free resources every CISO can use to plan, run, and measure impactful security awareness programs:
1️⃣ SANS Security Awareness Planning Toolkit – Ready-made templates, calendars, and communication guides.
https://www.sans.org/security-awareness-training/resources/planning-toolkit
2️⃣ CISA Security Awareness Materials – Posters, videos, and tip sheets designed for wide audiences.
https://www.cisa.gov/security-awareness-resources
3️⃣ NIST Security Awareness and Training Guide (SP 800-50) – Framework for building and improving awareness programs.
https://csrc.nist.gov/publications/detail/sp/800-50/final
4️⃣ Infosec IQ Free Awareness Campaign Templates – Email and social media content to engage employees.
https://www.infosecinstitute.com/skills/awareness-free-resources/
5️⃣ Cyber Aware UK – Free resources and monthly campaign toolkits from the UK government.
https://www.ncsc.gov.uk/cyberaware/home
6️⃣ Phishing Quiz by KnowBe4 – Interactive tool to educate employees on phishing red flags.
https://www.knowbe4.com/phishing-security-test
7️⃣ Awareness Campaign Scorecard (by Gartner) – Measure campaign effectiveness and engagement.
https://www.gartner.com/en/documents/
Security awareness is not just about info – it’s about culture change.
Want to see how AUMINT.io’s targeted social engineering simulations can boost your campaign results and give you actionable insights?
📅 Book your free intro call now: Schedule here
💾 Save this post and transform your awareness campaigns today!
#CISO #SecurityAwareness #PhishingPrevention #HumanRisk #AUMINT