1-866-245-5224 info@globallearningsystems.com
Wed, August 23, 2017 Twitter LinkedIn

Compliance Training Blog

Security is everyone's responsibility

GLS Wins SC Magazine’s Best IT Security-Related Training Program

Global Learning Systems Wins SC Magazine's
Best IT Security-Related Training Program
Security Awareness Training Program is Professional Award Winner

Feb. 15, 2017

Global Learning Systems (GLS) — an online custom elearning, security and compliance training company — won SC Magazine’s 2017 professional award as Best IT Security-Related Training Program. What made GLS stand out among its competitors was the “quality and diversity” of its programs, along with its “focus on overall client satisfaction” and “measuring success using its products and services,” according to the magazine. The award was presented during the 21st annual SC Awards Gala on Tuesday, Feb. 14, 2017, produced by SC Media.

GLS President Larry Cates said: “We are honored to receive this award from an esteemed publication like SC Magazine. We are pleased that the industry is recognizing the value of the GLS Human Firewall program to raise user awareness of today's cyber security threats and create a positive behavior change environment for our customers.”

Last year GLS was also one of five finalists in the same award category. The individuals, programs and teams selected as winners in the Professional Award categories are run through a rigorous judging process that includes testimonials, industry assessments and additional research. Winners in the Professional Award categories were hand-picked by a panel of judges for their outstanding service, qualifications and advancements to the cybersecurity industry.                                                            

GLS prides itself on its ability to provide not only a flexible consultative approach for its clients, but also as SC Magazine notes, “a comprehensive suite of 40 targeted end-user courses and modules designed to educate and drive positive behavior change within an organization.” The company’s Security Awareness Training (SAT) program includes specialized courses geared to the requirements of each client’s needs, whether it be to educate and train users, test and assess progress, provide ongoing instruction and best practices, or offer more advanced programs to targeted groups.

Professionals can choose from a full spectrum of tools to protect information, including email and internet safety, mobile security, identify theft, physical security and phishing/social engineering. GLS’ Anti-Phishing Essentials Training and role-based courses are particularly in demand.  

The SC Awards are recognized throughout the cybersecurity industry and are the crowning achievement for IT security professionals and products. Each year, hundreds of applications are reviewed and narrowed down to a select group of finalists that represent the best solutions, services and professionals working around the clock to protect today’s businesses from an ever-changing landscape of security threats.                                                            

GLS is an award-winning eLearning and blended-learning solutions provider with over 25 years’ experience offering off-the-shelf and customized learning programs.

866-245-5224 or 410-800-4000
Monday — Friday
8:30 a.m. to 5:30 p.m. (EST)


Connect with us on our blog, Twitter and LinkedIn to receive security and compliance course updates, industry news, network with security professionals and more.


Newest Phishing Scams

As time marches on, we are going to be ever more vigilant about cybercrime, which is quickly overtaking the nation as a leading cause of economic crime. High on the list of cybercrime methodology is Phishing, in which a fraudster posing as a trustworthy individual, attempts to gain sensitive or confidential information from another individual using electronic/digital means.

Enter the Newest Phishing Scam

Ironically, as we enter the first quarter of 2017 and embark on tax season, the national news is awash with warnings of cyber criminal activity — notably a virulent form of phishing that appears to be sweeping the country. It is so prevalent this year that the Internal Revenue Service has issued an alert about a new threat that involves workers getting emails purportedly from their employers that ask for W-2 information and other personal data such as Social Security Numbers.

Armed with this information, the cyber thieves file for refunds in the name of their unwitting victims. The scam reaches up to the levels of senior management in companies, who themselves also receive requests for this information from what they perceive as their top management officers. All the requests are couched in the form of familiarity and the "feel" of the actual management official, making the mail look very real to recipients. This tends to throw recipients off guard and have them believing the request is valid.

Ironically, this increase in phishing scams is thought to be a result of success in the consumer arena in combating point-of-service (POS) crime with the new chip technology. Foiled at the counter, the cyber criminals reverted to increasing their attacks online, and have been largely successful. According to ABC World News, for example, in 2016 approximately 22,000 people were victims of this new approach, and some 3.2 billion dollars were lost.

Damage That Unchecked Phishing Can Do

A prime example of the huge damage that phishing can do is seen in the email "scandal" of Hillary Clinton's campaign when the email of the candidate's campaign chairman, John Podesta, was hacked. In early 2016, an email carrying a warning that his password had been hacked landed in the "Spam" folder of the chairman. It looked every bit like a valid Gmail warning, and consequently after a user clicked the "Change Password" link, the door was opened to 60,000 emails being hacked by what we now know were Russian civilian and military intelligence services.

Digital Safety Requires Vigilance

Phishing was one of the earliest forms of scamming and cyber criminal activity, and apparently it has not lost its charm for cyber miscreants who are never at a loss to come up with new twists and turns in the scam to part victims from their money. This makes it incumbent on consumers in all areas to increase their computing protection and vigilance.

Global Learning Systems (GLS), one of the leaders in the field of security and compliance, provides a path to safety amongst the treacherous shoals of cyber criminal activity. GLS' PhishTrain product — a phishing exploit testing Software-as-a-Service (SaaS) platform — ensures that your company won't be vulnerable to cyber attacks by training, testing and assessing employees' ability to combat the attacks. This product is integrated with its OnDemand Learning Management System (LMS); it enables your organization to simulate an attack, and intervene with just-in-time training. It then automatically enrolls users in different levels of anti-phishing training based on their reactions to various Phishing threats.

Advantages of using PhishTrain include a tripartite unfolding of the product in which simulated exploits that look identical to real malicious threats are pushed to users. If the user falls for the simulated phish, he or she is moved to a page explaining the dangers of that action. Depending on the behavior of the user, he or she is guided to one of several options that will help change the behavior of the user. In the third phase, administration is provided with custom reports outlining facets of the user's behavior, which enables managers to remedy deficiencies.

GLS will be participating and providing demonstrations at the RSA®Conference 2017 from February 13 through 17 at Booth # 619.

As 2017 moves on, keep in mind some elementary protection against phishing:

Scrutinize emails to make sure they are legitimate. This includes checking  the email for anomalies such as misspelled words, grammar errors, non-personalized introductions ("Dear Customer," "Hi," "Hello," etc.), or threats/urgency in moving on the issue.
Check the sender's actual web address by hovering or resting (NOT clicking) your cursor on the web URL to see if it differs from the purported sender address.
Look to see if the email is from a popular company or one with which you deal (for example, Microsoft®, Gmail, an internet provider, etc.), as these companies' popular names are often used as an entree into a scam.
Beware of "too good to be true" news, such as a prize winning, lottery or sweepstakes. These hooks are often used to bait users.
Be cautious about succumbing to "scareware" or rogue security software scams, which purport to be good protection software against cyber criminals, but is in actuality the very hook that lets them in!
And last, never click a link in any unsolicited email; go to the internet instead, find the company and check with it to see that the email is valid. 

award Winner Two Years In A rowaward award award  

Award-winning Training for Powerful Results

Request a Demo