Protecting People – Details, episodes & analysis

In the digital age, data loss prevention is a top concern in cybersecurity as organizations strive to safeguard sensitive information in the hands of careless, compromised and complicit users.

Today’s episode of Protecting People dives into the inaugural Data Loss Landscape report. Our guests, Itir Clarke and Brian Gleeson shed light on the alarming statistics and insightful findings around data loss and people-based risk.

One of the most surprising findings: a mere 1% of users were responsible for almost 90% of data loss alerts.

The conversation also goes into exploring human-centric approaches to DLP, including: 

• How understanding user behaviors can influence policy and shape effective controls to mitigate data loss risks
• The impact of departing employees on data security and the need for proactive strategies to prevent unauthorized data exfiltration
• The importance of continually evaluating and adapting DLP strategies to address evolving threats

Tune in to discover actionable strategies and best practices for safeguarding sensitive data in an increasingly complex threat landscape.Resources mentionedData Loss Landscape report:

• https://www.proofpoint.com/us/resources/threat-reports/data-loss-landscape

Blog posts about generative AI

• https://www.proofpoint.com/us/blog/email-and-cloud-threats/ai-concerns-safeguard-data-in-genai-chatgpt
• https://www.proofpoint.com/us/blog/email-and-cloud-threats/generative-ai-risks-to-organizational-data

Today’s episode revolves around the latest edition of our monumental research endeavor, the "State of the Phish" report. Joining host Brian Reed is a diverse panel of global experts: Jennifer Cheng from Singapore, Carl Leonard from the U.K., Marcelo Bezerra from Brazil, and Paul Chavez from the U.S.

While we see new encounters with malware strains, vulnerabilities, and tactics yearly, the human element remains a constant. In an era of human-based risks, safeguarding people is as crucial as securing networks and infrastructure.

Noteworthy insights include a decline in successful phishing attacks (from 88% to 75%) but an underlying concern as three-fourths of organizations still fall victim. A groundbreaking aspect of this report is its inclusion of user actions, revealing that 71% of users engage in risky behaviors—96% fully aware of the risks. The panel explores the cultural and organizational factors contributing to this phenomenon, touching on convenience, urgency and leadership buy-in.

Other topics discussed include:

• Regional perspectives & cultural influences
• Global validation of user behavior insights

Tune in for a riveting discussion that goes beyond statistics, unraveling the intricate web of human behavior in the face of cybersecurity challenges.

Five Minute Forecast for the week of December 4th. All the cyber security news you need to stay ahead, from Proofpoint’s Protecting People podcast.
• U.S. takes action against North Korean cybercriminals
• TrickBot developer faces long prison stay after guilty plea
• More victims caught up in October’s Okta breach
And senior threat intelligence analyst Selena Larson offers a personal perspective on holiday cyberthreats.

Five Minute Forecast for the week of June 20th. All the cyber security news you need to stay ahead, from Proofpoint’s Protecting People podcast.
Law enforcement arrest thousands in global social engineering stings
Icefall vulnerabilities put thousands of critical systems around the world at risk
Blackcat takes ransomware victim shaming to a new level


Joining us is Proofpoint VP of Threat Research and Detection, Sherrod DeGrippo, who shares her thoughts on this year’s Human Factor report.

Most of the time, security slip-ups happen because of careless, accidental behavior. Through educating people and focusing on changing behaviors, those cyber risks can be mitigated. That’s the idea behind the importance of people-centric cybersecurity. 
Today we hear from Jeffrey Wheatman, Cyber Risk Evangelist at Black Kite, about implementing people-centric cybersecurity and assessing your organization’s risk appetite. 
Join us as we discuss:
Why people-centric cybersecurity matters
Evaluating risk quantification in the cybersecurity industry
The importance of determining your organization’s risk appetite
Risk appetite versus risk tolerance 


Check out this resource we mentioned:
Voice of the CISO Report: https://www.proofpoint.com/us/resources/white-papers/voice-of-the-ciso-report  
https://blackkite.com/  


 
For more episodes like this one, subscribe to us on Apple Podcasts, Spotify, and the Proofpoint website, or just search for Protecting People in your favorite podcast player. 

Five Minute Forecast for the week of June 13th. All the cyber security news you need to stay ahead, from Proofpoint’s Protecting People podcast.
Unpatched router vulnerabilities are being exploited by state-sponsored attackers
Ukrainian security authorities warn of active Follina campaigns
Details of a massive Facebook phishing campaign revealed


Joining us is senior threat researcher Jared Peck, for a discussion about cryptocurrency and cyber crime. 
Link to the blog post mentioned: https://www.proofpoint.com/us/blog/threat-insight/how-cyber-criminals-target-cryptocurrency 

Five Minute Forecast for the week of June 6th. All the cyber security news you need to stay ahead, from Proofpoint’s Protecting People podcast.
A cyber attack causes chaos in one of Italy’s largest cities
Has FluBot delivered its last message? European law enforcement thinks so.
Apple blocks over 1.6 million malicious and untrustworthy apps from iPhones


Joining us is senior threat researcher Daniel Blackford, to discuss highlights from this year’s Human Factor report.
Human Factor Report: https://www.proofpoint.com/us/resources/threat-reports/human-factor
 

Proofpoint’s biggest release of the year is here: the 2022 Human Factor Report. To ensure you don’t miss a thing, Protecting People has your on-the-go breakdown of the report straight from the source,
Sherrod DeGrippo, Vice President of Threat Research and Detection at Proofpoint, joins the show to talk about some of the key findings and topics from the Proofpoint 2022 Human Factor Report and how to best protect yourself and your organization in this new threat landscape.
Join us as we discuss:
The three key areas of user risk
How to identify vulnerable users within organizations
The increase of malicious URLs in 2022
How remote work is impacting organization’s security risks
The influence of Russia’s invasion of Ukraine on the threat landscape 


For more episodes like this one, follow Protecting People on Apple Podcasts, Spotify, the Proofpoint website, or anywhere you get podcasts.
Resource:
2022 Human Factor Report: https://www.proofpoint.com/us/resources/threat-reports/human-factor

Five Minute Forecast for the week of May 30th. All the cyber security news you need to stay ahead, from Proofpoint’s Protecting People podcast.
A New York man gets four years for his part in stealing more than four million credit cards
Ransomware causes serious disruption to one of India’s largest airlines
CLoP ransomware makes a return after four months of silence


Joining us is senior threat researcher Andrew Northern, to discuss the etymology and characteristics of the newly discovered Nerbian RAT.

Five Minute Forecast for the week of May 23rd. All the cyber security news you need to stay ahead, from Proofpoint’s Protecting People podcast.
Conti ransomware calls time on direct attacks, but remains highly influential
Half a million Chicago students have their personal information stolen in a security breach
U.S. authorities recover $15m from ad fraud operators


Joining us is Proofpoint’s Cheryl Tang, for a review of customer insights at our recent Protect and Wisdom events.