Get To Know

JOSHUA CRUMBAUGH

CEO & Founder
Joshua is a peer-reviewed author and ethical hacker who has never encountered a network that could keep him out. His social engineering accomplishments include talking his way into bank vaults, fortune 500 data centers, corporate offices, restricted areas of casinos, and more.
Header image
JOSHUA CRUMBAUGH
's

Latest blog posts

Tool and strategies modern teams need to help their companies grow.
Educational

Making Cybersecurity Training Approachable and Effective

🔒 Explore the intersection of behavioral science and cybersecurity training in our latest blog post. We delve into how psychological safety and tailored learning approaches, like those employed by PhishFirewall, can significantly enhance cybersecurity training effectiveness. The article highlights the impact of strategies such as spaced learning theory and cognitive load theory in creating engaging, memorable training experiences, and how these methods lead to measurable improvements in security awareness. A must-read for anyone looking to strengthen their cybersecurity training programs with innovative, human-centered techniques. #CybersecurityAwareness #BehavioralScience #TrainingInnovation
JOSHUA CRUMBAUGH
January 18, 2024
5 min read
Cyber News

Okta Breach Reveals: It's Time to Hack the Human Psyche, Not Just Systems

The recent Okta breach is a stark reminder that the battleground for cybersecurity is not just in the servers, but in the synapses of every employee's brain. 'You can't patch stupid' is a defeatist adage that our industry clings to, yet this breach shows the fallacy of such thinking. Our latest post delves into why a mindset shift is imperative, from outsmarting hackers to outsmarting our own behavioral pitfalls. We argue that the only real fix to the phishing scourge is a revolutionary change in organizational culture, powered by behavioral science. Join us as we explore how ethical hacking and culture change are the duo that can reclaim cybersecurity's future.
JOSHUA CRUMBAUGH
November 7, 2023
5 min read
Cyber News

New York's Cybersecurity Law: A Deep Dive into Its Strengths and Shortcomings

New York's financial sector is now governed by the Second Amendment to 23 NYCRR 500, a set of cybersecurity regulations. While the amendment introduces robust technical and procedural requirements, it notably overlooks the human element of cybersecurity. Behavioral science principles, such as cognitive load theory and spaced learning, emphasize the need for digestible, continuous training. Over 90% of breaches start with human error, yet regulations like this one sideline the human element. For cybersecurity measures to be truly effective, continuous security awareness training must be prioritized, ensuring that every individual is empowered with the knowledge and skills to combat cyber threats.
JOSHUA CRUMBAUGH
November 3, 2023
5 min read
View all posts