News

Security awareness tips, industry news, and product updates.

Professional reviewing a cybersecurity compliance checklist at their desk
Security Awareness Tips

Cybersecurity Awareness Checklists for Every Team

Practical, role-specific cybersecurity checklists your organization can implement today — from daily habits for every employee to quarterly reviews for IT leadership.

Elena Vasquez·5/1/2026·9 min read
Aerospace technology and rocket engineering facility representing the defense software targeted in the spear-phishing campaign
Phishing & Social EngineeringThreat Intelligence

Chinese Spy Used Spear Phishing to Steal NASA Defense Software

A Chinese national posed as U.S.-based researchers for years, using spear-phishing emails to trick NASA employees and military personnel into handing over restricted aerospace software. The case is a masterclass in why identity verification matters.

Marcus Chen·4/30/2026·7 min read
A colorful party invitation envelope being opened, symbolizing a potential phishing scam
Phishing & Social EngineeringSecurity Awareness Tips

Fake Party Invitations Are the Newest Phishing Trap

Cybercriminals are spoofing Paperless Post, Evite, and Punchbowl to send fake party invitations that exploit your fear of missing out. Here's how the scam works and how to protect yourself.

Rachel Andersen·4/29/2026·7 min read
Two professionals shaking hands over a business partnership agreement
For MSPs & PartnersProduct Updates

Earn Recurring Revenue with the empowsec Affiliate Program

Security awareness training is one of the fastest-growing segments in cybersecurity. The empowsec affiliate program lets you earn generous recurring commissions by referring organizations to a platform they genuinely need.

Rachel Andersen·4/24/2026·6 min read
Person scanning a QR code on a smartphone with a laptop open in the background
Phishing & Social EngineeringSecurity Awareness TipsThreat Intelligence

Quishing in 2026: The QR Phishing Tricks Your Tools Still Miss

QR code phishing has evolved far beyond a simple scan-and-steal. Split codes, Unicode fakes, CAPTCHA gates, and state-sponsored campaigns are rewriting the rulebook — and most security stacks still can't read a QR code.

Elena Vasquez·4/22/2026·13 min read
Healthcare worker reviewing patient records on a secure computer terminal
Compliance & RegulationsThreat Intelligence

NTBHA Breach: 285K Records and HIPAA Lessons for 2026

A three-day intrusion at North Texas Behavioral Health Authority exposed 285,086 patient records. Here's what went wrong and how healthcare teams can harden their HIPAA defenses.

Natalie Hoffmann·4/21/2026·6 min read
Business team reviewing security awareness training platform options on laptops during a meeting
Security Awareness TipsFor MSPs & PartnersProduct Updates

empowsec vs KnowBe4: A Practical Comparison for 2026

Evaluating security awareness platforms? Here's a clear-eyed comparison of empowsec and KnowBe4 across pricing, features, white-label capabilities, and the kinds of organizations each serves best.

James Thornton·4/20/2026·15 min read
Employee taking a suspicious phone call while working at a laptop
Phishing & Social EngineeringSecurity Awareness TipsThreat Intelligence

ATHR Vishing-as-a-Service: AI Voice Scams Go Plug and Play

A new criminal toolkit called ATHR bundles AI voice agents, phishing emails, and real-time credential harvesting into a single browser-based platform. Here's how vishing-as-a-service is reshaping social engineering and what your organization can do about it.

Marcus Chen·4/19/2026·10 min read
Business traveler reviewing a hotel booking on a laptop in an airport lounge
Phishing & Social EngineeringSecurity Awareness TipsThreat Intelligence

Booking.com Breach Fuels Targeted Phishing: How to Protect Your Team

Hackers breached Booking.com and are already using stolen reservation data to launch hyper-targeted phishing attacks via email, WhatsApp, and phone. Here's what organizations need to know and how to prepare employees for these real-world social engineering tactics.

Rachel Andersen·4/15/2026·9 min read
Cybersecurity professional analyzing a phishing email alert on a computer screen
Phishing & Social EngineeringSecurity Awareness TipsThreat Intelligence

FBI Dismantles $20M Phishing Network: Why Employee Training Is Your Best Defense

The FBI just took down a global phishing-as-a-service platform responsible for $20 million in fraud. Here's what this operation reveals about modern phishing threats and why workforce education is the most effective countermeasure.

Marcus Chen·4/13/2026·6 min read
Team of employees in a bright office reviewing cybersecurity training materials together
Security Awareness TipsProduct Updates

Phishing Training Is Evolving: Debrief and Teachable Moments

New academic research finds that training everyone after a phishing simulation — not just the employees who clicked — builds stronger, longer-lasting defences. Here's how empowsec's new Debrief and Teachable Moments features put that science into practice.

Marcus Chen·4/10/2026·6 min read
A municipal government building representing the cybersecurity challenges facing local governments
Security Awareness TipsThreat Intelligence

Foster City Paralyzed by Cyberattack: What Municipal Governments Must Learn

A cyberattack left Foster City, California in a state of emergency for over a week. Here's how it likely happened, why small governments are prime targets, and what municipalities can do to prevent becoming the next headline.

Thomas Eriksson·4/9/2026·7 min read