Employees cannot be expected to stay up to date on cybersecurity best practices and privacy regulations on their own. This is why security awareness training is more important than ever. Find out what topics to include in your security awareness training.

Phishing is a massively common form of attack and, due to the scale of it, accounts for 80% or more of all security incidents. Software packages, sold and distributed on the dark web, are used by malicious groups to automate and scale these attacks. So what messages trick us into clicking?

At Haekka, we’ve debated the terms “security awareness training”, “privacy training” and “compliance training”. We ultimately decided to use the term “security awareness training” for what we do. We felt it was worth clarifying the terms and how we use them in regards to training.

Micro-training, as we define it at Haekka, is comprised of lessons that can be consumed in under 5 minutes. By focusing on content that provides high value for the work people are doing at technology companies, we see drastic improvement across six core components of learning.

Protecting the data and privacy of your users has never been more critical. The burden of cybersecurity not only weighs heavy for companies in highly regulated industries but for businesses of any size. Growing companies can address this challenge with effective security awareness training.

The advent of the LMS coincided with the emergence of digital learning. As work has moved from disconnected systems and silos to integrated workflows anchored on open, continuous communication (think Slack and Teams), training has not kept pace. Slack-native micro-training solves these problems.

Today, the business world operates at the speed of trust. Now, as never before, trust is a differentiator. If your company offers products and services to other businesses, it is essential that you build and maintain trust.

ComplianceOps is the union of people, process, products, and data to maximize continuous adherence to policies and procedures. Compliance and Operations have long operated in silos and the problems associated with this disjointed approach have become untenable for modern technology companies.

We could not be more excited to close our pre-seed round of funding! Doing it in the middle of a global pandemic has been particularly challenging, but also exciting. Market conditions have forced a lot of tough questions but have also presented several opportunities for learning.

At Haekka, we want to solve the pain of bad security awareness training for growing companies. Our vision is for customers to hire Haekka to solve security awareness in totality without leaving modern tools like Slack. In the process, we build good security hygiene practices into day-to-daywork.

With the growing focus on privacy and personal data, it has become table stakes for every B2B, and many B2C, companies to attest, or comply, with an established framework or regulation. Whether mandatory (HIPAA, GDPR, CCPA, FERPA, IRAP, PCI, etc) or by choice (SOC 2, HITRUST, etc), every company...

In times of crisis, there’s a trade-off between personal rights and government powers. COVID-19 is opening up some very worthwhile debates about personal privacy, surveillance, and the public good. With so much uncertainty surrounding COVID, both from the start of it up until today, there are a...

With COVID, it feels like just about everything has been flipped on its head. What was not possible just a few months ago is now suddenly the new normal. Healthcare, for one, has been at the front lines of these changes. While frontline healthcare workers in places like New York and Louisiana...

The Health Insurance Portability and Accountability Act (HIPAA) is a federal regulation that sets national standards for protecting sensitive patient health information. It is essential for healthcare providers, health plans, and other covered entities to understand their responsibilities under HIPAA to ensure the privacy and security of patient information. One of the key questions that arise is, "Do I need a Privacy and Security Officer under HIPAA?" This blog post will address this question and provide insight into the roles and responsibilities of these officers.

In this post, we'll discuss the benefits of integrating chat-based training in Slack into your Learning Management System (LMS) to create a more engaging and effective learning experience.

Security awareness training has become an essential part of cybersecurity strategy for businesses of all sizes. With the increasing number of cyber threats, it's crucial for employees to be aware of potential risks and how to mitigate them. But how much does security awareness training cost? In this blog post, we'll explore the factors that can influence the cost, the range of prices you can expect, and some tips for managing expenses.

Cybersecurity Awareness Month is an annual event that takes place in October to raise awareness about the importance of cybersecurity. The event is organized by the National Cyber Security Alliance (NCSA) and the Cybersecurity and Infrastructure Security Agency (CISA), along with other partners.

Social engineering is the art of manipulating people to divulge confidential information or perform certain actions. Unlike traditional hacking techniques that exploit software or hardware vulnerabilities, social engineering exploits the human element of security. It preys on emotions such as fear, greed, and curiosity, and uses deception to trick individuals into revealing sensitive data or granting access to restricted systems. In this blog post, we will discuss the various types of social engineering attacks and provide tips on how to defend against them.