Cybercriminals are targeting the human element of organizations. Additionally, they are developing techniques to use an organization’s employees as the first point of entry. According to the 2021 Verizon DBIR
Most companies have a security awareness program in one form or another. If they don’t, it should be on the short list of programs to start as soon as possible.