Phishing For Answers

Send us Fan MailWhen it comes to cybersecurity, we're not hacking systems—we're hacking behaviors. This enlightening conversation with Philip McKibbins, CIO and CTO of the Dallas Mavericks, reveals how human psychology, not just technology, forms the foundation of truly effective security.McKibbins brings extraordinary perspective from his 30-year career spanning Walt Disney (where he wrote their business continuity and disaster recovery plan), ESPN, the Los Angeles Dodgers, and now the NBA. His journey demonstrates how security principles remain consistent even across vastly different industries.The podcast delves into practical strategies for motivating employees to embrace security practices. McKibbins shares how the Mavericks blend active and passive security testing with positive reinforcement rather than punishment. "When someone passes our tests, we praise them," he explains, highlighting the importance of catching people doing the right thing rather than focusing only on failures.What makes this episode particularly valuable is the emphasis on making security accessible. McKibbins describes how encouraging employees to teach cybersecurity to their families transforms their relationship with security—they become experts at home, fundamentally rewiring how they approach threats. This simple yet powerful technique enhances compliance without additional technology investments.The conversation takes fascinating turns through behind-the-scenes stories, including how McKibbins helped former Mavericks owner Mark Cuban recover from an account breach, and the increased attack volume during high-profile moments like trades. These real-world examples illustrate why organizations must remain vigilant regardless of their industry or size.Perhaps most surprisingly, both host Joshua Crumbaugh and McKibbins agree that low-tech solutions often prove most effective against sophisticated threats. As AI-generated content becomes increasingly convincing, the simple act of picking up the phone to verify suspicious requests becomes invaluable. "Trust but verify actually works," McKibbins emphasizes.Whether you're a security professional looking for practical motivation strategies or a business leader wanting to strengthen your organization's human firewall, this episode offers actionable insights that transform security from a technical challenge into a cultural advantage.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailSteve Fridakis, CISO of Oracle Health, shares his journey through cybersecurity across industries and explores the transformative impact of AI on healthcare security.• 25 years of cybersecurity experience spanning airlines, United Nations, media (HBO), and healthcare• Common security foundations across industries despite significant differences in threat landscapes• AI enabling physicians to capture diagnoses using natural language while validating against patient history• AI security tools helping validate systems and correlate petabytes of daily log information• Current cybersecurity mindset shifting equal focus to recovery capabilities alongside prevention• Zero Trust implementation minimizing breach impact when inevitable human errors occur• Simple security fundamentals remaining the root cause of most breaches despite evolving threats• Leadership in security requiring empathy and understanding that people need to do their jobs• Building security cultures based on shared responsibility rather than compliance mandates• Success in cybersecurity measured by resilience and recovery speed rather than perfect preventionBuilding effective security requires understanding that "our people—not our tech, not our firewalls—they are our first and last line of defense."Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailA transformative look at quantum computing's implications for businesses, especially around cybersecurity, with industry expert Bill Genovese from Kyndryl. Key insights into navigating this technology are presented, emphasizing urgency and strategic planning.• Quantum computing's transformative potential in everyday business • Bill's extensive background in leading global tech initiatives • The urgency for businesses to adapt to quantum threats • Exploring post-quantum encryption and its necessity • The convergence of quantum and AI technologies • The importance of developing a strategic framework for risk management • Lessons from past tech disruptions like Y2K • Practical steps organizations can take to prepare for the quantum frontier • Critical services to fortify against cyber vulnerabilities Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailKevin Walsh joins us to share his wealth of experience in cybersecurity and the crucial role of human elements in security strategy. The discussion touches on compliance, phishing simulations, and the impact of AI in the realm of cybersecurity. • Importance of understanding human behavior in cybersecurity • Compliance: Balancing act between requirements and effective security • The security culture: Building a proactive environment • Phishing simulations: Making training relevant and effective • AI's role in modern cybersecurity landscape • Vendor security: Addressing the weakest link • Strategies to engage all levels of staff in security practices Thank you for listening! If you enjoyed this episode, please consider subscribing and leaving us a review. Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailThe episode delves into the essential role of human factors in cybersecurity, emphasizing the need for integrating security awareness into daily operations. Eric Harris shares insights on effective training strategies, the importance of understanding social media risks, and the evolving landscape shaped by AI and deepfakes. • Discussing Eric Harris's background and journey in cybersecurity • Human-centric approach to tackling cybersecurity threats • Analyzing social media risks, especially linked to professional platforms • Strategies for creating effective security awareness programs • The importance of positive reinforcement in training initiatives • Leveraging AI while addressing its implications in cybersecurity • Integrating security awareness into everyday business functions • Encouraging user engagement and ownership in organizational securityJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this episode, we dive deep into the human element of cybersecurity, exploring how personal experiences inform our understanding of threats and defenses. Tim Krabeck shares his journey from help desk IT to becoming a cybersecurity expert, emphasizing the importance of communication, collaboration, and continuous education in the fight against cyber threats.• Tim's entry into cybersecurity through a phishing scam • Importance of personal stories in understanding cybersecurity • Role of red and blue teams in security practices • Discussing the MITRE ATT&CK framework • The significance of system hardening and user experience • Dual-edged nature of AI in cybersecurity • Need for ongoing phishing simulations and training • Cultivating a culture of security awareness across teamsJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailUncover the fascinating intersection of human behavior and cybersecurity through the eyes of Tolgay Kizilelman, an expert in IT and cybersecurity. Explore how his career journey, from IT management to the pivotal role of CISO at the University of California, has shaped his unique perspective on the human element in cybersecurity. As we exchange stories, I share my own path from marketing to ethical hacking, highlighting the unexpected ways human psychology plays a critical role in both fields. This episode will leave you questioning the traditional approach to cybersecurity and appreciating the complexity of managing human behavior in a digital world.As technology continues to evolve, so too does our relationship with it. Our conversation spans the generational divide, examining how different age groups perceive and integrate technology in daily life. We discuss the monumental impact of artificial intelligence, likening it to historical advancements like electricity and the internet. Our discussion navigates the potential and pitfalls of AI as it becomes an indispensable part of our lives and workplaces, and we stress the collective responsibility to educate and adapt in order to maximize its benefits while mitigating its risks.Discover how maintaining the human touch in an increasingly automated world is essential, especially in the realm of AI security. We uncover strategies for effectively reducing risks through tailored training and the innovative use of gamification techniques. By making cybersecurity awareness engaging and relevant to diverse audiences, particularly younger generations, we equip listeners with the tools to recognize and respond to threats confidently. This episode offers a fresh perspective on how to address human vulnerabilities and harness AI's potential responsibly, ensuring a safer digital future for all.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailCybersecurity is evolving, with human behavior at its core and the need for robust security awareness training becoming more critical. Through the journey of Ashok Kakani, we explore the intersection of personal experiences, phishing incidents, and innovative approaches to training that engage employees and build a resilient cyber culture.• Ashok's transition from science to cybersecurity • Importance of front-line training in mitigating phishing • Real-life phishing incident and lessons learned • The role of AI in enhancing and complicating security • Dangers of inadequate PII management • Need for role-based training to combat specific threats • Engaging employees through gamification in security awareness training • Fostering a supportive environment in cybersecurity cultureJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailWe explore how human behavior is the front line of cybersecurity, reshaping interactions between security teams and employees for a more collaborative approach. Nigel Miller highlights the significance of role-based training, the evolving threats posed by AI, and the importance of building a community around security awareness.• The shift from “Department of No” to enabling security culture • Importance of role-based training tailored to job functions • AI creates new phishing challenges but also enhances training methodologies • Psychological principles can deepen training impacts on behavior • Fostering an open community encourages proactive security measuresJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailJosh Kuntz shares his extensive journey through cybersecurity, emphasizing the balance of compliance, risk management, and the mentorship of the next generation. The episode discusses the evolution of security roles, the impact of AI, and the importance of understanding organizational objectives in strengthening cybersecurity culture.• Biography of Josh Kuntz and his career path• Transitioning from military to civilian cybersecurity roles• Importance of compliance and developing security programs• Adapting to remote work during COVID-19 challenges• Concept of risk acceptance in cybersecurity practices• Significance of training and mentorship in building talent• Role of AI in enhancing cybersecurity communication and education• Emphasis on integrating security into organizational cultureJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailWe discuss the evolving landscape of cybersecurity with Ralph Johnson, emphasizing the importance of collaboration, training, and the role of AI in addressing modern threats. Key topics include motivating teams, learning from past incidents, and the necessity of tailored, engaging security awareness programs. • Ralph’s personal journey into cybersecurity • Carrot vs. stick: motivation in teams • Embracing AI in training and security protocols • A real ransomware case study and its lessons • The importance of security hygiene and basic practices • Role-based training for diverse job functions • Gamification techniques to engage employees • The need for ongoing education and awarenessJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailArt Thompson, CIO of the city of Detroit, shares essential cybersecurity insights in this interactive discussion. He emphasizes the importance of open communication and the need for role-based training to safeguard against the growing number of phishing attempts.• Art’s journey from supply chain to IT and cybersecurity• Emphasis on zero tolerance for suspicious activities• Importance of communication regarding cybersecurity at work and home• Personal anecdote highlighting the need for multi-factor authentication• Discussion on the increasing threat of phishing attacks and deep fakes• Need for updated, role-based training programs• Proposal for new metrics and KPIs to measure cybersecurity culture• Final advice on the significance of learning from mistakes and fostering a supportive cultureJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailOur conversation with Steve Winterfeld unveils critical insights for anyone looking to forge a successful career in cybersecurity. We discuss the importance of strategic planning, building a security culture, and adapting to the rapid evolution of threats, especially phishing and social engineering attacks.• Exploring three career paths in cybersecurity • The importance of strategic career objectives • Carrot versus stick: fostering an inclusive security culture • Evolving threats: phishing beyond email • The role of AI in enhancing and challenging security • Understanding cognitive biases in decision-making • Effective metrics for measuring security awareness success Culture eats strategy for breakfast; cultivate a strong security culture for effective risk management.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailEllison De La Cruz, a seasoned cybersecurity leader, shares his journey in tech and invaluable lessons learned in the changing landscape of cybersecurity. The episode emphasizes the importance of soft skills and behavioral science in security, exploring the relevance of role-based training and insights into evolving threats like phishing and AI. • Transition from technical skills to leadership roles • Importance of understanding behavioral science in security training • Role of AI in shaping cybersecurity challenges • Necessity for role-based training in enhancing effectiveness • Stories highlighting the impact of human behavior on cybersecurity • Advice for aspiring CISOs and the significance of continuous learningJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailJaved Ikbal shares his transformative experiences as a CISO, highlighting the challenges of cultivating a security-centric culture in organizations. He emphasizes the importance of communication, understanding user psychology, and establishing foundational practices to navigate the complexities of cybersecurity today. • Importance of cybersecurity culture in organizations • Challenges faced as a CISO in different environments • User psychology impacts on reporting security issues • The need for clear policies around AI usage • Lessons learned for aspiring CISOs and cybersecurity leadersJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailCecil Pineda, the CISO at R1RCM, shares his journey into cybersecurity, emphasizing the importance of communication, emotional intelligence, and effective risk management in CISO roles. He discusses how emotional awareness and tailored training approaches can significantly enhance cybersecurity awareness and compliance across organizations.• Importance of storytelling and communication in cybersecurity risk management • Emotional responses play a critical role in user learning and engagement • Value of marketing principles in cybersecurity communication • AI's dual impact: enhancing threats and defensive capabilities • Need for targeted and micro training in busy professional environments • Successful gamification and its cautious implementation in cybersecurity trainingJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailThis podcast episode emphasizes the critical intersection of cybersecurity and private equity, highlighting the importance of conducting thorough cybersecurity assessments before acquisitions. Bob Flores, an experienced CIO and CISO, discusses key issues like the rise of AI in cyber threats, user education, and effective role-based training as vital components for safeguarding investments against sophisticated attacks. • Significance of cybersecurity inspections in private equity transactions • Insights into the evolving landscape of cyber threats, especially with AI • The need for user education on cybersecurity risks • Importance of role-based training for vulnerable job functions • The potential benefits of gamification in cybersecurity training • Strategies for fostering a culture of cybersecurity awareness within organizationsJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailThis episode features Philip Wiley, a cybersecurity expert, who discusses the nuances of penetration testing versus red teaming, shares thrilling hacking experiences, and emphasizes the importance of addressing human errors in security. He provides insights into effective cybersecurity training and the relevance of networking for career growth in the industry. • Understanding the differences between penetration testing and red teaming • The significance of web app pen testing and its role in security • Thrilling hacking stories that highlight the art of ethical hacking • Importance of social engineering and user awareness training • Addressing misconfigurations and hygiene as common vulnerabilities • The role of AI in shaping future offensive and defensive security strategies • Networking as a crucial element for career success and growth • The need for awareness and understanding of security culture within organizationsJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailThis episode delves into the critical intersection of cybersecurity and the human element, emphasizing the importance of effective training and mentoring. Cody Burrows shares insights from his extensive experience, advocating for a shift from punitive training to one that nurtures understanding and encourages proactive behavior. • Cody's journey from pen tester to CISO • The ego problem within cybersecurity • The necessity of mentorship and support in pen testing • Role-based training versus traditional security awareness • Using behavioral science principles in training • Importance of positive reinforcement in security culture • Trusting instincts and gut feelings in recognizing threats • The balance between carrot and stick approaches in trainingJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailThis episode delves into the human side of cybersecurity, featuring insights from Rob LaMagna-Reiter on the importance of communication, mentorship, and understanding AI-related threats. By focusing on personalized training and fostering a culture of open dialogue, organizations can empower their workforce to effectively navigate evolving risks in cyber defense. • Highlighting the role of mentorship in personal development • Importance of clear communication across all organizational levels • Relationship between cybersecurity and business operations • Strategies for effective phishing and awareness training • Addressing AI-driven threats and their implications for cybersecurity • Understanding visibility and decision-making in security initiatives • Encouraging a culture of trust and accountability within teams • Emphasizing the need for continuous learning and adaptation in strategies • Creating non-intrusive yet effective security training methods • Exploration of the evolving digital threat landscapeJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailThe episode focuses on the evolving threats posed by phishing scams enhanced by artificial intelligence, particularly in corporate settings. Tim Chase shares real-life experiences and insights into the changing landscape of cybersecurity and the need for tailored training to empower employees in recognizing and combating these threats.• Discusses a significant gift card scam incident • Examines the evolution of phishing tactics and AI's role • Emphasizes the necessity of role-based security training • Highlights the importance of social engineering awareness • Advocates for creating a culture of communication about suspicious emails • Suggests positive reinforcement techniques to promote cybersecurity awareness You can also align future security initiatives with effective training methods, focusing on current challenges arising from evolving threats.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailJess Vachon shares insights into her calm approach as a CISO and how empathy in cybersecurity can significantly transform organizational culture. The episode emphasizes the importance of effective communication, role-based training, and the evolving impact of artificial intelligence on how organizations secure their operations. • Exploring personal journeys into cybersecurity • Importance of mentorship and coaching in the field • Balancing cybersecurity budgets and investments • Communication as a key to successful cybersecurity strategies • Tailored role-based training for improved retention • Challenges and opportunities presented by AI in security • Building a compassionate and cooperative security cultureJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn our latest episode, Angela Chen, CIO of the University of Delaware, shares her personal experience with phishing, revealing the profound emotional and psychological impacts of these attacks. We discuss the importance of making cybersecurity a collective responsibility that spans generational divides and the need for tailored education to enhance awareness among vulnerable populations. • Angela's personal experience highlights the emotional toll of phishing • The impact of phishing on trust and mental health is profound • Younger and older generations are particularly vulnerable • Universities face challenges in effectively educating students on cybersecurity • The dual-role of AI in enhancing and threatening cybersecurity • Effective communication is crucial for changing security behaviors • Positive reinforcement ("carrot") approach over punitive measures ("stick") • Collaboration and learning from one another are key in boosting awarenessJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailThe episode emphasizes the critical role of security awareness in protecting organizations from cyber threats, particularly phishing attacks. Andrew Obadiaru, CISO of Cobalt, discusses strategies for enhancing employee education, implementing phishing simulations, and leveraging AI to stay ahead of evolving cybercriminal tactics.• The human element is key in cybersecurity defense • Importance of security awareness training for all employees • Insights into conducting phishing simulations and their benefits • Current trends in phishing attacks and use of AI • Strategies for engaging employees in security training • Tips for maintaining vigilance against cyber threats • AI as a tool for enhancing security and its associated risksJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailEver thought attending a security awareness class could make you more vulnerable to phishing attacks? Join us as Wendy Nather, a former CISO, unravels this unexpected phenomenon and challenges industry norms. We tackle the complexities of security training and explore why traditional methods might not be hitting the mark. Wendy shares insights into designing systems that protect against human errors, advocating for a collaborative approach that includes everyone from developers to IT staff in building robust cybersecurity frameworks.Our conversation takes a turn as we highlight the importance of role-based training and engaging diverse personality types in cybersecurity education. Drawing from real-life anecdotes, like the Starbucks gift card phishing fiasco, we stress the need for clear communication and the introduction of security principles from a young age. This episode emphasizes how early tech exposure shapes user behavior, and we discuss tailored education strategies for different organizational roles to build a culture of security mindfulness.Finally, we explore the art of empowering employees to recognize and report suspicious activities, sharing personal stories of innovative attacker tactics. From gamification to competitive training exercises, we propose fresh ways to make security training more engaging and effective. As we challenge long-held industry assumptions, we advocate for an environment where users feel safe to report mistakes, continuously reassessing and innovating cybersecurity practices to keep ahead of threats.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailWhat if the key to fortifying your organization's cybersecurity was hidden in the ethical deployment of AI? Join us for an enlightening conversation with Dr. Joshua Scarpino, a dual expert in cybersecurity as CISO VP of Information Security at TrustEngine and CEO of Assess Intelligence. Our episode charts the powerful intersection of AI and cybersecurity, exploring how AI can both shield against and execute cyber threats, and why a comprehensive risk management approach is crucial for any enterprise. Dr. Scarpino's insights highlight the pressing need for responsible AI practices, addressing biases, and maintaining fairness in automated decisions.Our discussion takes a deep dive into the innovative methods of security training, including the potent mix of continuous education and gamification. We explore the significance of understanding the risk landscape and the necessity of personalized security education, particularly for new hires who may be more susceptible to targeted attacks. From interactive modules to scenario-based learning, discover how these dynamic training methods can enhance engagement and retention, contrasting starkly with the often monotonous governmental training programs. The episode underscores the pivotal role of feedback in refining training programs, fostering a culture that bridges gaps between personal and professional security practices.We conclude by emphasizing the integral role of building partnerships and fostering cybersecurity engagement within organizations. This includes challenging the misconception that security impedes business progress, and instead, highlighting how it can be a key enabler. The conversation pivots to the role of ethical AI, privacy concerns, and the need for transparency as technology continues to evolve rapidly. Dr. Scarpino advocates for a proactive and supportive cybersecurity culture that integrates AI into foundational risk management processes. Tune in to learn how to create a robust security-aware culture, where employees at all levels actively participate in safeguarding organizational assets.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailJoin us for an insightful conversation with Ira Winkler, the Chief Information Security Officer of CYE Security, as we explore the often-overlooked human element in cybersecurity. With a rich career spanning more than 30 years, Ira shares compelling insights drawn from his experiences at the NSA, Walmart, and HP. Together, we challenge the traditional notion that users are the last line of defense in cybersecurity, advocating instead for intelligent system designs that don't place undue blame on individuals. Drawing on safety science principles and his latest book, "You Can Stop Stupid," Ira unpacks the importance of creating systems resilient enough to withstand human error.Embark on a thrilling journey through the unpredictable world of security testing and compliance challenges. Through fascinating anecdotes and humorous tales of social engineering, we reveal the ingenuity required to outsmart technical defenses. A surprising encounter with a facility's operations manager provides a glimpse into the nuanced nature of security testing, showcasing the creativity and quick thinking needed in high-stakes situations. These stories highlight the essential human strategies that underpin robust security measures and the excitement that comes with penetration testing.As we wrap up, the conversation shifts to the integration of behavioral science in cybersecurity and the importance of a balanced "just culture" within organizations. By examining AI-driven threats like deep fakes and contrasting approaches to policy violations, we underline the need for comprehensive training and effective security awareness metrics. Ira's insights drive home the message that meaningful discussions and diverse perspectives can enrich the security culture, ultimately enhancing an organization's resilience against evolving threats. Join us in this engaging session of "Fishing for Answers with Ira Winkler" and be prepared to challenge your assumptions about the role of humans in cybersecurity.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this enlightening episode of “Phishing for Answers,” Kevin Gowen, CISO at Synovus, takes us on a journey through three decades of transformation—both for himself and the bank. From his start in IT and risk management to a near-instant leap into the top security role, Kevin shares how Synovus’ security culture has evolved alongside industry threats. Host Joshua Crumbaugh digs into Kevin’s perspectives on AI-driven attacks, employee-focused training, and why the “human element” remains cybersecurity’s biggest challenge—and greatest opportunity. Tune in for a candid look at how one financial powerhouse balances innovative defenses with real-world practicality, proving that strong security is, ultimately, all about people.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this candid conversation, Allan Abrams, CISO at Kipu Health, joins “Phishing for Answers” to share how an early fascination with computers (and a few 2600 magazine exploits) set him on the path to cybersecurity leadership. Host Joshua Crumbaugh digs into Allan’s journey—from poking around pay phones in high school to defending PHI in a cutting-edge healthcare environment. Along the way, they unpack why a carrot beats a stick in security awareness, how personalizing training fosters a truly collaborative security culture, and where AI can take us next (for good or for ill) in protecting sensitive data. If you’ve ever wanted real-world tips on turning employees into engaged cyber-defenders—at work and at home—tune in for Allan’s fresh insights on building empathy-driven, people-first security programs.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailWhat happens when a sneaky phish nabs your domain credentials and quietly reroutes your customers to a competitor’s site? Today’s guest Jyotin (Jotun) Gambhir has seen it all—and that’s just one of his many cautionary tales. In this special Security Awareness Month edition of “Phishing for Answers,” Jyotin draws on 20+ years of cybersecurity consulting (with stints at Deloitte Touche, IBM Tivoli, and BMC Software) to spotlight the evolving threat landscape—especially how AI is supercharging both scams and defense strategies.From AI-crafted deepfakes that can clone a colleague’s voice to old-school tailgating attacks where politeness becomes your vulnerability, Jyotin reminds us that human behavior is still the ultimate playing field. He shares why small policy tweaks (think strict wire-transfer rules) may stop AI-spoofed executives, and why “carrot over stick” is the key to building a truly vigilant security culture. Plus, if you’re an entrepreneur in cyber, don’t miss Jyotin candid insights on balancing top-notch tech with real-world sales and marketing chops.No matter the tech—IoT, AI, or legacy systems—Jyotin preaches the basics: know your risks, respond fast, and proactively protect. Because in an era where a single lapse in judgment can turn your business upside down, continuous monitoring and ongoing awareness training isn’t just a best practice—it’s the cost of staying in the game.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this lively installment of “Phishing for Answers,” our host kicks things off with a quirky, AI-generated rap—then challenges guest Dean Sapp, SVP of Information Security at Filevine, to a game of “Stock or Not?” to test just how convincing AI images can get. But the conversation quickly turns serious as Dean reveals how scammers are weaponizing these same AI tools to spin up highly targeted—and eerily authentic—phishing emails and counterfeit websites.Drawing on his years of experience building cybersecurity programs and guiding law firms, Dean walks us through a jaw-dropping story of an “unhackable” client who thought strong passwords alone would stop an open-enrollment benefits scam. Spoiler: it didn’t. Along the way, he pinpoints the big blind spots many companies miss, from unpatched software on the perimeter to that shady old printer on a forgotten VLAN. Whether you’re running a small legal practice or a high-traffic SaaS platform, Dean’s bottom line is the same: turn on multi-factor authentication, build empathy-driven awareness programs, and keep everything—from firmware to browsers—patched and hardened. Because in this age of AI-fueled cybertricks, your best defense is a well-prepared, forward-thinking human.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this special Security Awareness Month edition of “Phishing for Answers,” we reel in Norman Kromberg—a finance-whiz-turned-CISO who blends down-to-earth Midwest values with sharp cybersecurity insight. Raised in Lincoln, Nebraska, Norman cut his teeth in banking before jumping into IT governance and risk compliance. Now, he’s applying that business-first mindset to keep organizations one step ahead of threat actors.Ever wonder how revenue-minus-expense ties into your malware defenses? Norman breaks down how understanding the core equation of any business not only helps you talk risk at the board level—it ensures you’re investing in security where it actually matters. From empathizing with accidental clickers to mapping out which roles pose the biggest insider-threat risks, Norman shows you how to craft a security program that’s both human-friendly and hacker-hostile. It’s a candid, engaging chat that proves financial smarts and cybersecurity savvy can—and should—work hand in glove. Because in the battle against phishing, you can’t just think like a hacker—you’ve also got to think like a CEO.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn today's digital age, cyber threats are becoming more sophisticated, and the stakes have never been higher. Amid advancing technology and evolving attack vectors, one factor remains critically important yet often overlooked: the human element. People can be the weakest link in cybersecurity, but with the right approach, they can also become the most formidable line of defense.In a recent episode of the "Phishing for Answers" podcast, our CEO at PhishFirewall, Joshua Crumbaugh, had an inspiring conversation with cybersecurity expert Chris Nicolaou the CISO of CloudSpace. They delved into how organizations can shift the narrative—from viewing employees as potential vulnerabilities to empowering them as proactive defenders against cyber threats.The Human Factor: Turning Weakness into StrengthChris kicked off the discussion by sharing a personal story that highlights how even cybersecurity professionals aren't immune to sophisticated attacks. He almost fell victim to a phishing attempt involving multiple suspicious MFA (Multi-Factor Authentication) alerts at odd hours."Even with all my training and experience, I was tempted to approve the login because it caught me off guard," Chris admitted. "It reminded me that attackers exploit our natural tendencies and trust."This anecdote underscores a vital point: security isn't just about systems and software—it's about people. Attackers often target human psychology, using social engineering to manipulate individuals into unwittingly compromising security.At PhishFirewall, we understand that the key to bolstering cybersecurity lies in empowering your people. By focusing on education and awareness, you can transform your team from potential targets into active participants in your organization's defense.Microtraining: Keeping Security Top of MindTraditional annual training sessions are no longer sufficient in a world where threats evolve daily. Chris emphasized the value of continuous education through microlearning—short, focused training sessions that keep security awareness fresh."Embedding security reminders into everyday activities makes a huge difference," he suggested. "Whether it's quick tips on elevator screens or brief modules accessible anytime, the goal is to integrate learning into the flow of work."PhishFirewall embraces this philosophy with our spaced learning approach, delivering high-impact, bite-sized lessons that are both engaging and memorable. By making training accessible and non-intrusive, we help ensure that cybersecurity stays at the forefront of your employees' minds.Role-Based Training: Relevant and EffectiveOne size doesn't fit all when it comes to security training. Different roles Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailReducing Human Error through Behavioral Science: A Conversation with Pieter VanIperenIn the latest episode of the "Phishing for Answers" podcast, PhishFirewall’s CEO, Joshua Crumbaugh, sat down with cybersecurity expert Pieter VanIperen, CISO of Own Company, to discuss how understanding human behavior can significantly enhance cybersecurity. Their conversation delved into the heart of what makes organizations vulnerable: the human element. They explored how leveraging behavioral science, role-based training, and positive reinforcement can transform employees from potential risks into robust defenders against cyber threats.‍Behavioral Science and Cybersecurity PsychologyJoshua and Pieter emphasized the crucial role of behavioral science in cybersecurity.While technology is essential, understanding the human psyche is paramount in preventing breaches.Many security incidents occur due to human errors rooted in natural behavior patterns.Concepts like the Identical Elements Theory suggest that learning is more effective when training closely mimics real-world scenarios.Using frequent, bite-sized training sessions—known as spaced learning—employees can subconsciously develop instincts to recognize and avoid security threats.PhishFirewall incorporates these principles to embed security awareness into daily routines without overwhelming staff.Role-Based Training and Contextual AwarenessThe conversation shifted to the importance of tailoring security training to specific job roles.Generic training often fails to address the unique challenges different departments face.Pieter provided examples:some textAccounting teams need to be vigilant against invoice fraud and spear-phishing attempts.Marketing departments should be aware of phishing attempts targeting campaign data or customer information.IT staff must focus on configuration errors and internal threats.PhishFirewall makes it effortless to deploy role-based training.By providing contextually relevant education, employees can better relate to the material, leading to higher engagement and retention.Gamification and Positive ReinforcementThe effectiveness of gamification in training programs was highlighted.Traditional punitive approaches often lead to resistance and concealment of mistakes.Incorporating game-like elements and rewards can motivate employees to participate actively.Positive reinforcement creates a collaborative atmosphere where employees feel valued and are more likely to adopt security best practices.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this insightful episode of Phishing for Answers, I had the opportunity to sit down with Steve Cobb, CISO of Security Scorecard, to explore the critical role human behavior plays in modern cybersecurity. With the rise of sophisticated cyber threats, particularly AI-driven phishing attacks, Steve underscores how the human element remains both the weakest link and the most powerful defense in protecting an organization.Steve shares an impactful story about a near-miss phishing attack where a quick-thinking employee made all the difference by promptly reporting the suspicious activity. This real-world example demonstrates the significance of creating a workplace culture where employees are encouraged to report potential threats without fear of punishment. It’s about turning employees into vigilant defenders—what Steve calls “human firewalls.”We also discuss the growing importance of security awareness training, particularly the use of gamification and storytelling to make cybersecurity more engaging and relatable for employees. Steve emphasizes that people learn best when they are not only informed but also entertained, which is why PhishFirewall’s gamified micro-training sessions can be so effective in reinforcing good security habits.Another key takeaway from this conversation is the shift in focus from merely punishing employees for mistakes to empowering them to be proactive in detecting threats. As phishing attacks evolve, Steve explains how AI and machine learning have changed the game by crafting more convincing, tailored phishing attempts, making traditional red flags—like typos and awkward language—less reliable. This means organizations need to invest more in continuous education and behavioral reinforcement to stay ahead of the threats.In a world where technology alone can’t save us, building a security-conscious workforce is paramount. Steve and I explore how positive reinforcement, cultural shifts, and innovative training approaches are crucial in making cybersecurity second nature for employees at all levels.This episode is packed with actionable insights and strategies for turning employees into your organization’s greatest asset against cyber threats, reinforcing that cybersecurity isn’t just an IT problem—it’s a company-wide responsibility. #PhishFirewall #CyberSecurity #SecurityAwarenessMonth #HumanFirewallJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this episode of Phishing for Answers, I sit down with Joe Evangelisto, CISO of NetSPI, to discuss some surprising insights on phishing susceptibility within organizations. We dive into the two most vulnerable groups—sales and developers—and how their different day-to-day responsibilities lead to unique phishing risks. Joe and I explore real-world examples of employees falling for sophisticated attacks, the psychology behind why they click, and how cybersecurity professionals can better protect their teams through awareness and behavioral insights.We also cover how AI is changing the phishing landscape, making attacks more convincing than ever. Plus, we share tips on how to improve phishing simulations to effectively prepare employees without relying on fear-driven tactics.Tune in to learn about the importance of a carrot-over-stick approach, real-time security reminders, and fostering a positive security culture that empowers employees to report threats.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this Security Awareness Month edition of Phishing for Answers, Joshua Crumbaugh sits down with Christopher Russell, CISO of tZERO Group, to discuss his path from military intelligence to mastering corporate cybersecurity. Christopher shares some of the latest tactics he’s seen, including a shocking snail mail phishing attack, and why bad actors continue to exploit human vulnerabilities. They dive into the importance of role-based phishing simulations, how tailored training can drastically reduce incidents, and why fostering a culture of awareness is essential in today’s evolving cyber landscape. This episode is a must-listen for anyone serious about staying ahead of modern threats!PhishFirewall helps organizations stop phishing attacks in their tracks with innovative, AI-driven, behavioral science-based security training that delivers real results—stopping incidents, stopping clicks, and stopping ransomware.#CyberSecurity #PhishingAwareness #CISO #InfoSec #RansomwareDefense #SecurityCulture #SocialEngineering #RiskManagement #SecurityAwarenessMonth #tZERO #PhishFirewallJoshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this episode of Phishing for Answers, Joshua Crumbaugh, CEO and Founder of PhishFirewall, interviews Paul Sheth, the CISO of the Women’s Tennis Association (WTA). They explore Paul’s journey from infrastructure to cybersecurity leadership, diving into the critical role of risk management, the threats of phishing and ransomware, and the rise of AI-driven cyberattacks. Learn how balancing security with usability can protect organizations and how a human-centered approach to security awareness is key.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this insightful episode of Phishing for Answers, Joshua Crumbaugh, CEO and Founder of PhishFirewall, world-renowned ethical hacker, and expert on social engineering and behavioral science, speaks with Paul James, the CISO of TTEC. They delve into the evolving landscape of cybersecurity, focusing on the challenges of phishing, AI-driven threats, and the balance between usability and security. Paul shares his expertise on how to manage these risks in large-scale organizations, emphasizing the importance of security awareness and the human element in mitigating attacks.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this episode of Phishing for Answers, BZ Fabien, Navy Reserve Cyber Warfare Commander and cybersecurity expert, shares his fascinating journey from pre-med to military service and eventually becoming a key figure in Silicon Valley’s tech leadership. BZ discusses the critical importance of security awareness, the challenges of integrating cybersecurity across industries, and the future role of AI in safeguarding organizations. His insights offer a deep dive into how leadership and technology intersect to defend against modern threats.Hosted by Joshua Crumbaugh, Founder of PhishFirewall, this episode highlights the evolving landscape of cybersecurity and the human element in risk management.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this episode of Phishing for Answers, Ray Espinoza, CISO at Inspectiv, joins Joshua Crumbaugh, Founder of PhishFirewall, to share insights on cybersecurity culture, leadership, and empowering users to become a proactive force in the security landscape. Ray discusses his journey from working in major tech companies like eBay, Cisco, and Amazon, to leading security teams and fostering a human-centric approach to security awareness.PhishFirewall is a leader in AI-driven security awareness training and phishing simulations, helping organizations protect themselves by turning their greatest asset—their people—into their first line of defense.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this episode of Phishing for Answers, Joshua Crumbaugh hosts Mike Crandall, where they share engaging stories about real-life security awareness challenges, such as phishing tests and the power of curiosity in employees. Mike recounts a municipality phishing test with a Starbucks gift card lure, and both discuss the importance of making cybersecurity relatable and approachable. Key points include using humor in training, changing the mindset from users being the weakest link to being sensors, and the importance of role-based security awareness. They dive into AI’s role in phishing and how emerging technologies, like deep fakes, are transforming the cybersecurity landscape. Mike also emphasizes the need for smaller businesses to take cybersecurity seriously, despite limited resources, and the importance of fostering open discussions within organizations to create a culture of security awareness.This insightful episode also touches on cybersecurity education starting at a young age, role-based phishing awareness training, and how organizations can create a human firewall by empowering employees through positive reinforcement rather than punitive measures.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this episode of Phishing for Answers, James Phillips shares valuable insights on the evolving landscape of cybersecurity and phishing attacks. A few key points discussed include:Spear Phishing Sophistication: James highlights how phishing attacks have shifted from generic attempts to highly targeted, sophisticated methods. Attackers now use more specific data to trick individuals, making it harder to recognize threats.Speed and Automation: The discussion covers how automation has enabled phishing emails to be created and sent much faster, making them more challenging to identify. This new speed of attack requires constant vigilance and updated security measures.Human Vulnerability and Training: Phillips emphasizes that people are most vulnerable to phishing attempts when they are distracted or busy, reinforcing the need for real-time, adaptive training. He also explores how punitive training approaches can lead to negative outcomes, advocating instead for more positive reinforcement to keep employees engaged and proactive.This episode offers a comprehensive look into the growing challenges of cybersecurity and the need for smarter, more human-centered approaches to awareness and training.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailIn this insightful episode of Phishing for Answers, we sit down with Tim Dzierzek to explore the vital role empathy plays in effective security awareness. Tim emphasizes how treating employees as allies in the fight against cyber threats, rather than simply as potential weak links, can foster a more secure organizational environment. He also highlights the increasing sophistication of phishing attacks and the critical role AI plays in both enabling and defending against these threats.Key points discussed include:•The growing importance of role-based training tailored to employees’ specific needs and risks.•How AI advancements are reshaping phishing detection, making attacks more personalized and harder to spot.•The balance between educating employees without relying on fear tactics and instead empowering them to become more vigilant.Tim also shares actionable insights on how organizations can adopt a more empathetic and educational approach to security, encouraging employees to report suspicious activity without fear of reprimand. This episode is packed with practical advice for security leaders who want to build more resilient, human-centered security awareness programs.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Send us Fan MailCEO & Founder of PhishFirewall, Joshua Crumbaugh brings a new podcast focussed on the human element of cybersecurity.  “Phishing for Answers” brings you insider knowledge from the front lines of cybersecurity. Listen in as we speak with seasoned professionals about overcoming phishing attacks, managing user training, and implementing solutions that work. From practical insights to actionable strategies, this podcast is your guide to strengthening security awareness across your organization.Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations. PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!