5
Raising General Awareness
Goal Audience
Proposed
Intervention
KnowBe4
(and other) Content
Behavior
Design Trigger
Sensitize
Security
and IT
Management
IT, Security,
Audit, Risk
Management
Risk assessment
results
Scope of problem
and predictions
of cyber
extortion crime
Masterclasses
•
Ransomware Simulator
•
5 Things You Need to Know
About Ransomware Before
It's Too Late
•
Masterclass on Ransomware
prevention
Sensitize
VIPs on
seriousness
of cyber
crime
Board
VIP
Executives
Present risk rating
of extortion to
business
Summary
predictions
•
Present executive summary
and results from Ransomware
Simulator
•
Results from Phishing test
Sensitize
staff about
cyber
extortion
crime and
ransomware
All staff Short education/
awareness on
ransomware – mini
modules
Posters
Newsletters
•
Securit y Moments Series:
Ransomware (2 mins)
•
Securit y Snapshots #09 –
Ransomware (2 mins)
•
Poster: Security Moments Series
–Ransomware
•
Ask VIPs to record a message to
all staff about the seriousness
of this threat
•
Spot the Phish Game:
Foundational (5 mins)
Awareness by Top Initial Exploit Causes
The top initial exploit causes that allow cyber extortionists to compromise devices and environments
are (in order of popularity):
1. Social Engineering/Phishing
2. Unpatched Software
3. Abuse of Microsoft Remote Desktop Protocol (RDP)
