A 3rd #InfosecInstitute #SecurityAwareness training nit: mobile security training that says to avoid apps that request "networking access." That's not, by that name, a thing. It's not even clear that it can be restricted. I just checked apps on my Pixel and iPhone that I know use networking, and I couldn't find evidence of that in their permissions or a way to turn it off. Furthermore, many apps need networking to do their job. In short, this is useless advice for avoiding sketchy apps.

Another #InfosecInstitute #SecurityAwareness training complaint: their mobile security training recommends encrypting your phone, which is fine, but says the way to do that is "Look for encryption in your phone's settings." That advice is literally years out-of-date. All current Android and iPhone models encrypt the device automatically as long as you set up a lock screen (passcode, Face ID, etc.). Telling people to look for an encryption setting is sending them on a wild goose chase.
#infosec

This is awesome XD

https://www.infosecinstitute.com/iq/work-bytes/#embedded-form

#security #securityawareness #training #comedy #infosecinstitute

Their videos have much to be desired - and really I don't like videos that much unless it can help graphically explain a technical concept (ie Subnetting) but they have some labs that you can join in and practice as well as practice exams for various certs #infosecinstitute