This week on The Awareness Angle, Anthony Davis and Luke Pettigrew explore a special episode on what it really takes to build meaningful cybersecurity awareness, as part of preparing for Cybersecurity Awareness Month.
📢 Beyond the Poster Campaign – Open communication channels and positive reinforcement are key to building trust and encouraging people to speak up.
🏆 Recognize What’s Working – Highlighting good security behavior can do more than just raise morale—it can shift culture.
🎮 Learning That Actually Lands – Interactive, gamified, and story-driven training creates better retention than outdated tick-box modules.
💥 When Breaches Get Real – Relatable consequences make cybersecurity more than just a theoretical concern.
🧾 Policies That People Can Understand – Security guidelines should be accessible, not buried in jargon.
🔐 MFA: Still Not Universal – Despite being one of the most effective defences, many organisations still don’t enforce multi-factor authentication. We unpack why that’s a problem
🔑 The Password Problem – Forget confusing complexity rules—focus on uniqueness and usability to reduce risky habits.
🎣 Simulated Phishing Isn’t a Silver Bullet – We break down the mixed results and why real engagement beats gotcha tactics.
🧠 Good Training Changes Behavior – If your awareness program isn’t shifting how people act, it’s time to rethink the strategy.
If you're re-evaluating how to engage employees, boost awareness, and change behaviour, this episode is packed with honest insights and practical takeaways.
🕒Timestamps
00:00 Episode Introduction
01:28 Key Strategies for Boosting Awareness
03:14 Keeping Communication Open
08:02 Rewarding Positive Security Habits
11:48 Making Learning Interactive
16:06 Showing Real-World Cyber Impacts
19:00 Setting Clear Security Guidelines
23:01 Creating a Culture of Awareness
26:42 Using MFA to Strengthen Security
29:51 Building Better Password Habits
35:59 Simulated Phishing: Pros and Cons
41:09 Reinventing Cybersecurity Training
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week on The Awareness Angle Interviews… Anthony sits down with Terry McCorkle, co-founder of PhishCloud, to rethink everything you think you know about phishing training. From military discipline to startup innovation, Terry brings decades of experience—and strong opinions—on what’s broken in phishing awareness, and how real-time data and human-first thinking can fix it.🐟 Why Phishing Simulations Miss the Mark – Terry explains how traditional simulations often create resentment, not resilience, and what a more thoughtful approach looks like.📡 The Power of Real-Time Data – Static reports don’t cut it. Terry breaks down how live metrics and immediate feedback can make awareness training actually stick.🧠 Users Are Not the Problem – It's time to stop blaming the human. We talk about how involving users in the solution builds stronger defenses and better culture.💡 PhishCloud’s Fresh Take – From just-in-time training to behavioural insights, Terry walks us through how his platform flips phishing awareness on its head.🎮 Gamified, Personalised, Seamless – Why training that’s fun, tailored, and delivered in the moment beats compliance tick-boxes every time.🔄 Test the Process, Not Just the People – Phishing attacks test systems too. Terry shares why focusing only on individual clicks misses the bigger risk.🤖 AI Meets Awareness – How automation, workflow integration, and smarter tooling can enhance—not replace—the human role in security.🏗️ Culture Change Over Compliance – We unpack how to build a learning culture that sees awareness as part of everyday work, not an annual chore.Whether you’re rethinking your phishing program or just tired of gotcha-style training, this conversation offers practical insights with real impact.The Awareness Angle: Interviews brings you candid, real-world conversations with the people transforming how we approach security, behavior, and risk. New interviews drop alongside our Thursday episodes.
🕒 Timestamps
00:00 Episode Introduction
03:03 How Phishing Simulations Impact Behavior
06:13 Terry’s Path into Cybersecurity
09:06 Why the Human Element Still Matters
12:12 Inside FishCloud’s Approach
15:05 Real-Time Protection Against Phishing
17:58 What User Behavior Reveals
20:50 Balancing Privacy in Phishing Tools
27:51 Smarter Security Awareness Training
30:01 Making Compliance Training Engaging
33:03 From Reactive to Proactive Phishing Defense
36:29 How AI is Enhancing Security
39:14 Tackling Human Risk in Cyber
43:29 Building a Security-First Culture
46:20 Military Experience in Cyber Careers
48:10 Learning Resources & Recommendations
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week, The Awareness Angle dives into NHS breaches, dodgy shortcut files, and why fake CAPTCHAs are the new phishing frontier.
🧑⚕️ NHS Professionals Breached – Attackers spent 13 months undetected inside the UK’s largest NHS staffing agency. We break down how they got in, why Active Directory matters, and what took so long to tell anyone.
🖥️ Shortcut Files Can Bite – Microsoft warns that LNK files can trigger attacks just by being viewed. No patch yet, and antivirus alone might not be enough.
🛑 ClickFix Strikes Again – A new macOS malware campaign tricks users into running terminal commands. It’s sloppy but effective, and it’s targeting creatives.
🔒 End of Windows 10 – As support ends in October, the EndOf10 movement wants you to install Linux instead of upgrading. We look at the pros, the problems, and whether it's realistic.
📱 WhatsApp vs UK Gov – WhatsApp backs Apple in the fight against encryption backdoors. What’s at stake for private communication?
🌫️ From Surface to Atmosphere – Forget attack surfaces—modern threats are everywhere. We explore why security needs to focus more on behaviour and environment.
Plus: a pigeon gets into Ant’s house and becomes a case study in incident response. Obviously.
🕒 Timestamps
01:02 Awards Night & Behind the Scenes at Infosec
06:15 M&S Back Online After Breach
08:39 Whole Foods Supplier Cyberattack
10:14 British Horseracing Authority Breach
11:45 NHS Professionals Breach Timeline
17:56 ClickFix Malware Hits macOS
20:36 Microsoft Patch Tuesday Breakdown
23:00 Shortcut File (.LNK) Threats
27:10 The Pigeon Breach Story
31:00 TikTok Comments – Passkeys & Signal
35:00 Interview Preview – Terry from PhishCloud
37:00 FAA Still Running Windows 95
39:30 WhatsApp Joins Apple in Encryption Fight
41:50 EndOf10 Campaign & Linux Migration
48:00 Attack Atmosphere Explained
54:58 Metrics That Matter in Awareness
56:00 Phishing Invoice Spam in Gmail
1:00:00 Wrap-Up & Next Week Preview
📩 For links, videos, and the newsletter – head to riskycreative.com
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week, The Awareness Angle celebrates a big win—taking home two awards at InfoSecurity Europe! Anthony and Luke dive into a packed episode covering everything from retail breaches to the shifting world of passwordless authentication.
🏬 Retail Under Attack – From North Face to Cartier and M&S, cyber incidents continue to rock the retail sector. M&S now faces a class action lawsuit over a major breach.
🔑 Passwordless Progress – Microsoft is pushing the future of secure logins, and Gen Z seems ready to ditch passwords entirely. But is the wider public ready?
🔐 Signal vs Recall – Signal is blocking Microsoft’s new Recall feature from capturing chats, raising important questions about privacy in AI-powered tools.
🚗 Cars and Weak Credentials – The automotive industry is falling behind on password hygiene, exposing a surprising new attack vector.
🌏 Ransomware Rules in Australia – The country is rolling out mandatory disclosure laws, aiming to increase transparency around ransom payments.
🎭 Narratives That Stick – Clear, engaging communication is critical, not just for users, but for threat intelligence too. We unpack Microsoft and CrowdStrike’s effort to standardize naming conventions.
🎣 New Malware Tactics – Cybercriminals are embedding malware into creative tools, showing how attacks are evolving beyond the usual methods.
🗣️ Why Awareness Still Matters – Whether it’s media miscommunication or confusing tech rollouts, clear storytelling and community engagement remain essential for building trust and resilience.
From cutting through the jargon to making security feel more human, this episode is full of sharp insights, strong opinions, and a few laughs along the way.
🕒Timestamps
01:02 Awards Night & Behind the Scenes at Infosec
14:11 The North Face & 💍 Cartier Breaches
16:23 M&S Class Action Lawsuit
18:51 Microsoft Authenticator Password Deletion
20:47 Signal Blocks Windows Recall
23:31 Smart Cars, Dumb Passwords
28:08 Australia Ransomware Disclosure Law
30:39 Gen Z and Passkey Adoption
35:00 Threat Actor Naming – Periwinkle Tempest
42:17 The Future Of Cybersecurity Virtual Event
43:25 The Comments Section
51:47 WhatsApp £8k Job Scam (spotted by Hayden Taylor)
57:36 Meta AI on WhatsApp
59:25 🪑 Blender File Malware Warning
1:02:53 Triage Tools and Creative Risks
1:05:22 Comments & Wrap-Up
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week on The Awareness Angle Interviews… Anthony sits down with Sara Carty, the founder of UNBORING, to explore why so much cybersecurity marketing feels stale—and what we can do to change it. From drama school to startup life, Sara’s journey is anything but conventional, and her marketing approach is bold, honest, and refreshingly human.
🎭 From Drama to Data Breaches – Sara shares how her background in performance gave her the confidence to challenge industry norms and connect with audiences in a real way.
📉 Ditching Fear-Based Marketing – Scare tactics are out. Sara explains why trust, clarity, and relevance are far more powerful than doom and gloom.
🧠 Tech Doesn’t Have to Be Boring – We talk about the balance between getting the technical details right and actually engaging the people who matter.
📣 Marketing is Storytelling – Great cybersecurity campaigns aren’t about features—they’re about people. Sara explains how to make messages stick.
🚫 No More Blaming the Audience – If people aren’t listening, maybe the message is the problem. We unpack how to create content that meets users where they are.
🎨 The Human Behind the Hack – Good marketing understands human risk. Sara shares how empathy and creativity build stronger campaigns (and cultures).
🧩 Insights from the Marketing Team – From product design to user adoption, marketing can be a strategic partner—not just the team that “makes it pretty.”
🗣️ Why UNBORING Matters – Whether it’s refusing to use AI-generated content or calling out jargon-filled nonsense, Sara’s mission is clear: make cybersecurity feel human again.
If you’ve ever zoned out during a “cyber comms campaign” or wondered how to make people actually care about security—this conversation is for you.
🕒 *Timestamps*
*Introduction & Mission*
00:00 Introduction to Unboring and Its Mission
06:10 The Impact of Drama School on Professional Skills
*Marketing & Messaging*
11:49 The Importance of Marketing in Cybersecurity
18:09 Standing Out in a Sea of Sameness
23:53 The Future of Cybersecurity Marketing
28:02 The Role of Women in Cybersecurity Awareness
31:46 Touch Points in Marketing and Engagement
34:58 The Role of Storytelling in Marketing and Cybersecurity
35:56 Communicating with Human Touch
37:06 The Disconnect Between Marketing and Cybersecurity
*Human Element & Awareness*
38:03 The Impact of Social Engineering on Cybersecurity
39:00 The Role of AI in Marketing and Cybersecurity
40:07 The Importance of Relatable Communication
40:57 The Human Element in Cybersecurity Awareness
41:58 The Disconnect in Cybersecurity Messaging
42:57 The Importance of Engagement in Cybersecurity
43:54 The Need for Top-Down Support in Cybersecurity Awareness
*Espionage & Storytelling*
45:03 Exploring Cyber Espionage and Marketing
46:00 Lessons from Espionage for Marketers
47:12 The Connection Between Storytelling and Marketing
47:51 The Role of Human Stories in Marketing
49:03 The Importance of Understanding Audience Needs
50:08 The Need for Authentic Marketing
50:57 Storytelling Lessons from Popular Culture
52:45 The Power of Relatable Storytelling
*Trends & Takeaways*
55:21 Tech vs. Human Connection in Cybersecurity
01:00:42 Marketing Buzzwords to Ban
01:02:28 Admiring Innovative Marketing Campaigns
01:05:44 The Importance of Storytelling in Communication
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
In this episode of The Awareness Angle, Anthony and Luke unpack a fresh wave of cybersecurity stories affecting both individuals and organisations:
🛍️ Retailers in the Firing Line – Major high-street brands are once again the target of serious cyber incidents, raising questions about resilience in the sector.
🎭 Social Engineering Stays on Top – From fake IT support to urgent command prompts, attackers continue to exploit human trust as their primary attack vector.
🪛 Microsoft & Apple Tweak the Basics – Microsoft announces updates to streamline patching, while Apple shifts its versioning system to reflect the calendar year.
🧠 Phishing Evolves Again – These attacks are becoming harder to spot and more convincing. We talk tactics for staying ahead.
🔐 Training, But Make It Useful – We highlight why modern awareness programs must go beyond compliance to truly change behaviour.
📲 SIM Swaps & Password Fails – From account takeovers to careless password habits, we explore some of the weakest links in digital security.
🧬 Gen Z & Data Trade-Offs – Would you sell your personal data for perks? A surprising number already do. We unpack the implications.
🗣️ AI Voice Cloning Raises Red Flags – As synthetic audio gets more realistic, concerns around consent and misuse are growing louder.
📢 Cybersecurity Awareness Month – A perfect moment to reflect on what’s working (and what’s not) in promoting safe online habits.
Whether you're an IT leader or just trying to dodge the next phishing scam, this episode is packed with insights to help you stay sharp in an evolving threat landscape.
🕒 Timestamps
00:00 – Intro and European Cybersecurity Blogger Awards update02:29 – Victoria’s Secret breach: US website taken down03:10 – Adidas cyber attack: Third-party helpdesk access06:24 – AI-generated TikTok videos pushing PowerShell malware08:43 – Microsoft’s new unified Windows update platform12:03 – Apple renaming iOS/macOS to iOS 26/macOS 2613:41 – Five fast phishing stories (starts mini round-up)14:07 – Tajikistan targeted via macro Word templates16:36 – Fake Cloudflare page tricks users into running malware18:00 – Fake Google Meet page runs PowerShell command20:14 – Coursera phishing scam uses fake Meta certificate26:09 – InfoSec Europe event details27:41 – Upcoming virtual event: The Future of Cyber Security29:00 – Listener comments: Old tech and Skarda29:45 – Upcoming interview: Sara Carty from Unboring31:45 – Digital Safety Checklist from digital.lead.org.uk35:43 – Homebrew devs targeted via fake Google Ads redirect38:42 – OceanGate implosion video leaks sticky note password41:30 – EE SIM swap incident and SMS 2FA vulnerability48:11 – Gen Z selling their data for $50/month with verb.ai52:13 – ScotRail AI voice controversy: real-world “likeness” misuse58:25 – Use AI to analyse terms & conditions (TOSDR.org)01:01:00 – WhatsApp now supports passkeys01:02:53 – Phishing email spoofing Luke hits Ant’s inbox01:06:34 – Final takeaway: Never run commands from a website prompt
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week, The Awareness Angle hits its 30th episode milestone—and we’re marking it with a deep dive into the latest in cybersecurity, awareness, and digital risk:
🎉 30 Episodes In – A huge thank you to our growing community! We reflect on how far we’ve come and why your feedback keeps this show thriving.
💥 £300M Cyber Hit for M&S – We unpack the staggering cost of the retailer’s recent breach—and what it signals for cyber resilience in retail.
🧠 The Rise of Social Engineering – Forget firewalls—humans are the target. We explore how attackers are using trust, urgency, and voice phishing to break in.
📍 O2’s Location Leak – A major privacy flaw exposed users' whereabouts. The fix is in, but the questions around data handling remain.
🧩 One Parking App to Rule Them All? – The UK government plans a single solution for public parking. We discuss the potential risks (and benefits) of centralised services.
🧯 Fake Chrome Extensions – These silent threats steal data and spread malware. We look at what users can do to protect themselves.
📚 Billions of Discord Messages Scraped – Researchers hoovered up massive amounts of user content. We examine the ethics and implications of academic surveillance.
🖥️ Legacy Tech Still Lurking – From NHS infrastructure to XP-powered systems, outdated tech continues to expose critical services to modern threats.
🗣️ Deepfakes & Voice Scams – AI is enabling more convincing fraud. We break down how realism is raising the stakes for impersonation attacks.
💡 Why Awareness Still Matters – From the classroom to the boardroom, education remains the best defence. We highlight how organisations can move from reactive to resilient.
Thanks for joining us—whether you’re here for episode one or thirty. Let’s keep learning, sharing, and staying one step ahead together.
Timestamps00:00 – Intro and episode milestone03:20 – Interview plug: Amy Stokes-Waters on Cyber Escape Rooms04:08 – European Cybersecurity Blogger Awards (vote now!)05:32 – Monday newsletter reminderMain Stories
06:13 – M&S cyber attack update: £300m cost and third-party access10:02 – Tesco & Sainsbury’s supplier ransomware incident12:59 – 3AM ransomware: fake IT calls and email bombing15:37 – HSBC CEO: “Cyber threats keep me up at night”18:19 – O2 bug leaking mobile user location (now patched)22:18 – UK govt to unify parking apps, reduce QR code risk24:37 – 100+ fake Chrome extensions stealing data29:30 – Researchers publish 2 billion Discord messagesAwareness & Community
32:30 – Future of Cybersecurity event (June 12)34:27 – SANS 2025 Security Awareness SurveyComments & Community Reactions
36:36 – TikTok/Instagram virality, OneDrive sync backlash, NHS tech39:43 – Spam call surge after M&S breach – or Baader-Meinhof effect?Bonus Deep Dives
41:54 – Ancient Windows still running in 2025 (BBC Future article)47:10 – Live demo of Vishr.ai – AI-powered vishing simulator52:15 – Deepfake investment scam featuring fake Anthony Bolton57:04 – Google Veo AI video generation with audio01:04:18 – Notebook LM: Generate podcast-style conversations from transcripts
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week on The Awareness Angle Interviews… Anthony has a brilliant chat with Amy Stokes-Waters from The Cyber Escape Room Co. They talk about ditching dull training, making awareness genuinely fun, and how escape rooms, storytelling, and a bit of chaos can actually change behaviour. Loads of laughs, loads of good ideas, and a few dodgy password stories thrown in—plus the occasional strong word or two (in the best possible way).
Amy brings fresh energy to the security awareness world—cutting through the buzzwords and showing how relatable, interactive, and human training can make a real difference.
🔓 Escape the Boring Stuff – Amy breaks down how escape rooms turn passive training into memorable, meaningful experiences.
📚 From Storytelling to Swearing – Awareness doesn’t have to be corporate. It just has to connect.
🛠️ Lessons from the Hard Way – The founder journey isn’t always smooth, but the bumps come with big takeaways.
♻️ Beyond the Annual Box-Tick – Awareness should be continuous, creative, and part of everyday culture.
🎯 Phishing Isn’t the Whole Game – Simulations matter, but they’re just one tool. Amy shares what else should be in your kit.
📢 Awareness is Marketing – Brand, tone, and message consistency matter. Sell it like you mean it.
🧍♂️ Security Champions & Culture Change – Find your internal allies and give them the tools to drive change.
🤖 Looking Ahead – AI, behavioural science, and why the future of training still needs a human touch.
Whether you’re in security, L&D, comms—or just fed up with boring training—this one’s full of practical inspiration and plenty of personality.
The Awareness Angle: Interviews is our ongoing series of honest, practical conversations with the people reshaping security culture from the inside out.
🕒 Timestamps
00:00 Introduction to Amy
03:06 Engaging Training Methods: Escape Rooms
05:56 The Importance of Relatability in Training
09:03 The Journey to Cyber Escape Rooms
12:04 Learning Through Engagement
14:59 Challenges and Mistakes in the Business
17:49 Impactful Moments in Training
21:08 The Evolving Security Awareness Landscape
24:31 Engaging Security Training through Creative Scenarios
25:21 Building a Continuous Learning Framework
26:56 Rethinking Phishing Simulations
28:41 The Marketing of Security Awareness
30:40 Consistency in Messaging and Engagement
32:11 The Importance of Brand Voice in Security
35:42 Authenticity in Communication
38:22 Expanding Horizons: New Ventures in Security Training
40:17 The Future of Security Awareness Training
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week on The Awareness Angle, we break down the biggest stories in cybersecurity, awareness, and human risk:
🖥️ Windows 10 Lives On – Microsoft has extended support until 2028, giving users and IT teams more breathing room before the jump to Windows 11.
🎮 Steam Account Scare – Reports of leaked accounts raised alarms, but no sensitive info was exposed. Still, it’s a reminder of the real-world value behind in-game assets.
👜 Dior Data Breach – A cyber attack exposed customer details, but not payment info. We explore the implications for brand trust and customer confidence.
🛒 Co-op vs M&S Cyber Response – Co-op contained their breach swiftly. M&S is still in recovery mode. We discuss why crisis response makes or breaks reputations.
🧑💻 North Korea’s Remote Job Scam – Hackers stole $88M by posing as U.S. tech workers. We dive into this elaborate social engineering scheme and its growing threat.
📹 Malware Masquerading as AI Tools – A fake AI video generator is spreading malware. Don’t trust the ads, especially on social media.
🏥 Outdated Public Sector Systems – Shockingly, some UK government systems still run on Windows 3.1. We talk about why legacy tech is a silent cybersecurity risk.
🔐 Passkeys & Android 16 – Passwordless logins and Android’s new security features signal a shift in how we protect our devices and data.
🎓 AI + Awareness Training – Used well, AI can level up security training, helping personalise content and increase retention.
🧠 Education Over Trickery – Whether it’s phishing simulations or awareness content, the goal should be genuine understanding, not catching people out.
Stay informed, stay aware—and as always, thanks for tuning in.
🕒 Timestamps00:00 Introduction to Cybersecurity News04:50 Microsoft Extends Windows 10 Support to Ease Transition07:40 Steam Data Leak Raises Account Security Concerns10:46 Dior Cyber Attack Exposes Customer Information12:09 Co-op and M&S Respond to Targeted Cyber Attacks18:20 North Korean Hackers Exploit Remote Work Job Fraud21:32 Fake AI Video Generators Deliver Malware Payloads25:36 UK Government Faces Scrutiny Over Outdated Systems28:48 Moving Toward Passwordless Authentication30:58 Android 16 Introduces New Security Enhancements32:37 Security Gaps Remain Despite Passkey Advancements34:15 Rethinking the Effectiveness of Security Awareness Training38:08 Preview of Upcoming Cybersecurity Conference38:50 The Social Comments Section43:03 Security and Scam Challenges in the Healthcare Sector44:19 AI Impersonation Scams Complicate Identity Trust48:18 Angry Birds IMEI Tracking Led To Global Surveillance49:11 Social Engineering Continues to Drive Modern Scams51:30 Booking.com Scams Highlight Travel Security Gaps58:10 Social Engineering Simulation Warning From The Experts
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
📙 About The Awareness Angle
A CYBERSECURITY PODCAST where we talk about SECURITY AWARENESS and security education. We are professionals in HUMAN RISK and Information Security Awareness. We know PHISHING CAMPAIGNS, we know PHISH. We have done annual SECURITY TRAINING. We have sent NEWSLETTERS and made videos. We have created security awareness CULTURE STUDIES and are passionate about HUMAN BEHAVIOURS. Whether you're a CYBER Security Awareness professional or simply curious about HUMAN RISK, this podcast is your go-to resource for fresh perspectives and creative solutions.
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week on The Awareness Angle, we dive into some of the latest developments shaping cybersecurity, human risk, and digital trust:
🏆 Podcast Nominated! – The Awareness Angle is up for two industry awards—thank you for the support!
🛍️ Retail Cyber Incidents – Both M&S and Co-op are dealing with serious cyber issues, but the silence is raising more questions than answers.
🎙️ AI Voice Scams on WhatsApp – Scammers are now using AI-generated voice notes to impersonate loved ones. We unpack how this works and what to look out for.
☁️ OneDrive Exfiltration Risk – A new feature in OneDrive could be exploited to leak sensitive files. Here’s what IT teams need to know.
🦠 LockBit Gets Hacked – The infamous ransomware group has been breached themselves, revealing infighting and surprising insights into how these criminal gangs operate.
🔑 Passkeys Gain Momentum – Microsoft and other major players are pushing passwordless logins. We explore why passkeys might finally stick—and what it means for user adoption.
📲 Clipboard Security Warning – Samsung devices may be leaking sensitive data through clipboard functions. We talk about how this works and why it matters.
📦 Brushing Scams & Fake Reviews – Random parcels might seem harmless, but these scams are about manipulating trust and inflating seller reputations.
⚠️ Massive Phishing Campaigns – The volume and sophistication of phishing attacks are spiking again. We break down why it's happening and how to stay ahead.
Whether deep in the security world or just trying to stay safer online, this episode is packed with practical takeaways and fresh insights.
🕒 Timestamps
00:00 Intro
01:18 The Awareness Angle Podcast Gets Award Nominations
05:28 M&S and Co-op Hit by Major Cyber Incidents
09:33 AI Voice Notes Fuel Evolving WhatsApp ‘Hi Mum’ Scams
18:13 OneDrive’s New Feature Could Enable Data Leaks
22:53 Lockbit Ransomware Gang Breached by Rivals
29:08 Passkeys: Microsoft’s Push Toward Passwordless Security
36:58 Why Passwordless Authentication Is the Future
39:18 Ransomware Risks and the Need for Recovery Planning
43:43 NHS Transparency Issues Undermine Staff Confidence
45:22 CoGUI - Phishing Campaigns Surge — User Awareness Is Vital
47:40 AI in the Courtroom: Ethical and Legal Questions
51:42 The Comments Section
55:58 Cybersecurity Awareness Relies on Better Communication
57:45 Clipboard Vulnerabilities Expose Samsung Users
59:47 Brushing Scams Undermine Trust in Product Reviews
01:03:14 SMS Scams Exploit User Trust Through Malicious Links
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
📙 About The Awareness Angle
A CYBERSECURITY PODCAST where we talk about SECURITY AWARENESS and security education. We are professionals in HUMAN RISK and Information Security Awareness. We know PHISHING CAMPAIGNS, we know PHISH. We have done annual SECURITY TRAINING. We have sent NEWSLETTERS and made videos. We have created security awareness CULTURE STUDIES and are passionate about HUMAN BEHAVIOURS. Whether you're a CYBER Security Awareness professional or simply curious about HUMAN RISK, this podcast is your go-to resource for fresh perspectives and creative solutions.
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week on The Awareness Angle: Interviews, Anthony sits down with Jasmine Eskenzi, founder of The Zensory, for a fascinating conversation about how mindfulness, neuroscience, and emotional intelligence are transforming cybersecurity from the inside out.
This episode dives into the often overlooked human side of security—how stress, distraction, and burnout make us more vulnerable and how tools that support focus and well-being can help us build safer, more resilient workplaces.
🧠 Mindfulness Meets Security – Jasmine shares how small moments of awareness can have a big impact on decision-making, especially in high-stakes environments.
⚠️ Stress & Social Engineering – When our brains are under pressure, our judgment suffers. We explore how attackers exploit this and what teams can do to defend against it.
🎵 The Sound of Focus – Not all music is created equal. Jasmine explains how Zensory’s curated soundscapes help improve concentration, clarity, and calm at work.
🧍♀️ Humanising Cyber Awareness – Fear-based training doesn’t work. Jasmine talks about building empathy and trust into your programmes to encourage real behavioural change.
🧬 Neurodiversity & Inclusivity – One size never fits all. We discuss the importance of adapting tools and strategies to support different brains, learning styles, and needs.
📊 Wellbeing as a Risk Signal – What if focus and engagement data could help spot burnout before it leads to risky behaviour? Jasmine offers a fresh perspective.
💡 Beyond Compliance – From stress education to culture change, Jasmine shows how mindfulness-based approaches can turn training into transformation.
📲 The Zensory Way – With science at its core, Jasmine’s platform is helping companies blend neuroscience and practical tools to drive better habits and reduce human risk.
Whether you work in cyber, L&D, HR, or just want to understand what really drives behaviour, this episode will change how you think about awareness.
The Awareness Angle: Interviews is a recurring format released alongside our regular episodes, featuring honest, practical conversations with the people shaping the future of human risk and security culture.
🕒 Timestamps
00:00 Introduction to Mindful Security
02:52 The Zensory: Merging Mindfulness and Cybersecurity
05:56 Stress: The Hidden Catalyst in Cyber Attacks
08:58 Spotting Stress Before It Impacts Decisions
12:05 Humanizing Security: The Engagement Advantage
15:01 Emotional Intelligence in Cyber Roles
18:04 Managing Stress with Mindfulness Practices
20:48 How Stress Rewires the Brain in High-Stakes Moments
24:00 Embracing Neurodiversity in Security Workspaces
26:57 Rethinking Cybersecurity Culture with Mindfulness
32:02 Music for Focus: Why Simplicity Works
34:13 The Amygdala Hijack: Stress and Reaction in Security
36:48 Modeling Mindful Leadership in Cyber Teams
40:03 Driving Culture Change for Stronger Security
41:52 Measuring Engagement and Wellbeing in Security Programs
46:03 From Awareness to Action: Behavioral Security Training
51:02 Integrating Mindfulness Tools for Sharper Focus
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week on The Awareness Angle, we break down the top cybersecurity stories and trends shaping user behaviour and business risks:
🏪 Retailers Under Fire – Major UK retailers are being hit with cyber incidents, reminding us how exposed even high street giants can be.
📞 The 159 Scam Hotline – A simple, underused number offers a secure route to contact your bank and stop fraud in its tracks.
📱 WhatsApp Rolls Out New Privacy Features – From locked chats to disappearing messages, we unpack what’s useful and what still needs work.
🍏 Apple Spyware Alerts – Apple is now warning users targeted by sophisticated spyware—so what does that mean for regular device users?
🧠 Password Spraying on the Rise – Microsoft sounds the alarm on attacks targeting weak or reused passwords across accounts.
💻 End of Windows 10 Support – With support ending, millions face heightened security risks—especially in corporate environments.
🕵️♀️ Dark Web Password Markets – Billions of stolen credentials are for sale—proof that one weak password can lead to massive fallout.
🔐 Gen Z’s Security Blind Spot – New data shows younger users knowingly reuse passwords—why education still isn’t cutting through.
🎭 Anti-Piracy Irony – The industry’s hypocrisy is on full display, as pirated content is used to fight piracy itself.
📣 Shaming Doesn’t Work – Publicly blaming users for security slip-ups may do more harm than good—we explore better awareness strategies.
This episode is packed with insight, irony, and action points. It is a must for anyone navigating the intersection of tech, behaviour, and security.
🕒 Timestamps
00:00 Episode Introduction02:30 UK Retail Sector Hit by Growing Cybersecurity Incidents08:19 The 159 Hotline: A Critical Tool Against Bank Scams12:50 WhatsApp Enhances Privacy with New Protection Features15:00 Apple Warns Users of Targeted Spyware Attacks19:38 Microsoft Highlights Password Spraying Threats22:21 Windows 10 Support Ending Sparks Security Concerns26:15 Surge in Malware and Dark Web Password Sales32:35 Gen Z’s Lax Approach to Basic Cyber Hygiene37:18 Why Strong Password Policies Matter More Than Ever42:19 Industry Panels Explore the Future of Cybersecurity48:03 Real-World Security Incidents and Ongoing Risks48:35 Does MS Recall Cause Issues With BYOD?50:28 Joe Head's Awareness Advice51:59 Awareness Tales From The Train54:00 QR Code - Wins and Fails58:10 NHS Fails Again?1:01:40 Karaoke Update Fails
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
📙 About The Awareness Angle
A CYBERSECURITY PODCAST where we talk about SECURITY AWARENESS and security education. We are professionals in HUMAN RISK and Information Security Awareness. We know PHISHING CAMPAIGNS, we know PHISH. We have done annual SECURITY TRAINING. We have sent NEWSLETTERS and made videos. We have created security awareness CULTURE STUDIES and are passionate about HUMAN BEHAVIOURS. Whether you're a CYBER Security Awareness professional or simply curious about HUMAN RISK, this podcast is your go-to resource for fresh perspectives and creative solutions.
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week on The Awareness Angle, we dive into the biggest cybersecurity and privacy stories making waves:
🏬 Marks & Spencer Cyber Incident – A payment system disruption shows how fragile customer trust can be during cyber events.
🖥️ Zoom Remote Control Exploit – Hackers are exploiting a feature to take control of systems, proof that even productivity tools carry hidden risks.
📧 Gmail OAuth Loophole – A new vulnerability exposes Gmail users to account takeovers through third-party app abuse.
🧑💻 Sextortion Scams on the Rise – Criminals are using increasingly convincing tactics to extort victims online, especially targeting younger users.
🧠 Copilot Recall Privacy Backlash – Microsoft's AI-driven memory tool raises more concerns about how much data companies should collect and store.
🎣 Next-Gen Phishing Attacks – Phishing tactics are getting smarter and harder to spot, demanding sharper user awareness than ever.
🔒 Third-Party App Permissions – Granting access without scrutiny can open major doors for attackers, especially in workplace environments.
🎭 DeepFake Threats Expand – AI-generated videos and images are now used for scams, fraud, and brand damage.
🔌 USB Killers – A reminder that cybersecurity isn’t just digital; physical device security can be just as critical.
🛡️ Why Community Awareness Matters – Cybersecurity isn’t a solo effort; community engagement and shared knowledge make everyone safer.
Whether deep in cybersecurity or just trying to stay safer online, this episode brings real-world stories, human-focused risks, and practical advice.
🕒 Timestamps
00:00 Episode Introduction
02:56 Major Retail Cyber Incident: Marks and Spencer
10:03 Exploiting Zoom's Remote Control Feature
13:43 Google OAuth Loophole and Phishing Attacks
17:28 Rising Threat of Sexploitation and Online Safety
24:00 Microsoft Copilot Recall: Privacy Concerns and Data Security
34:47 Google's Antitrust Trial and OpenAI's Interest in Chrome
38:39 Ransomware Attacks: Davita and Cookie Bite
40:28 Deep Fake Ads and AI Warnings
41:53 Innovative Ransomware Tactics: Fog Gang
44:37 Cybersecurity Comments and Community Insights
51:44 Upcoming Events and Cybersecurity Awareness
53:01 Reddit Stories: USB Killers and Security Risks
01:02:22 LinkedIn Scams and Protecting Personal Data
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
📙 About The Awareness Angle
A CYBERSECURITY PODCAST where we talk about SECURITY AWARENESS and security education. We are professionals in HUMAN RISK and Information Security Awareness. We know PHISHING CAMPAIGNS, we know PHISH. We have done annual SECURITY TRAINING. We have sent NEWSLETTERS and made videos. We have created security awareness CULTURE STUDIES and are passionate about HUMAN BEHAVIOURS. Whether you're a CYBER Security Awareness professional or simply curious about HUMAN RISK, this podcast is your go-to resource for fresh perspectives and creative solutions.
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week marks the launch of a new recurring format within The Awareness Angle podcast—Interviews—where we sit down with voices shaping the future of human risk and security awareness.
In this episode, Anthony kicks off the series with the brilliant Erin Gallagher from Fastly for a candid conversation about reshaping security awareness from the ground up. Forget the old playbook—Erin shares how she's putting relationships, relevance, and real-world context at the centre of her approach.
🎙️ Breaking the Phishing Cycle – Fastly doesn’t run phishing simulations. Why? Erin explains why they’re often more harmful than helpful—and how focusing on education, not trickery changes the game.
💬 Slack Over Email – At Fastly, security awareness happens where the people are: in Slack. We explore why ditching email improves reach, tone, and trust.
📚 From Compliance to Curiosity – Training should feel like levelling up, not ticking a box. Erin shares how she designed an OWASP Top 10 module that’s short, punchy, and useful.
🎨 Creative Engagement – From using ChatGPT to writing training content to drawing inspiration from surprising places—Erin shows how creativity fuels better learning experiences.
🧠 Learning Fatigue is Real – Too much training? Too long? Erin talks about chunking, pacing, and making learning something people actually look forward to.
🤝 Building Real Relationships – Whether it’s the interview process or day-to-day comms, Fastly’s philosophy is simple: trust your people, and they’ll trust you back.
🔍 Tailored, Role-Based Training – One-size-fits-all doesn’t cut it anymore. We talk about the importance of adapting awareness programmes to different roles, risks, and realities.
🔄 Self-Correction Over Gotchas – Success isn’t about catching people out—it’s about seeing them make the right move next time. Erin shares how Fastly tracks self-correcting behaviour as a true sign of progress.
📦 Everyone Needs a Continuity Plan – Personal resilience isn’t just for systems. Erin closes with a powerful reminder: what’s your personal continuity plan?
Whether deep in the field or curious about how people and security intersect, The Awareness Angle: Interviews brings you honest conversations, fresh ideas, and insights that stick. Episodes from the Interviews series will be released alongside our regular podcast on Thursdays!
🕒 Timestamps
00:00 Episode Introduction
01:01 Erin Gallagher's Unique Role at Fastly
02:07 The Interview Process and Company Culture
03:13 The Decision Against Phishing Programs
05:16 Communication Methods: Slack vs. Email
07:20 Transitioning from Phishing to Security Awareness
09:41 Building Relationships Over Testing
11:48 The Focus on Engagement and Training
12:51 Rethinking Phishing and Risk Management
14:58 Creating Tailored Training Programs
17:22 Engagement Strategies for Security Awareness
19:02 The Challenges of Phishing Simulations
21:21 Utilizing Tools for Awareness Training
23:58 Innovative Training Approaches for Compliance
28:01 The Journey to Cybersecurity Awareness
33:54 The Role of Phishing in Security Training
38:30 Creative Security Awareness Initiatives
40:56 Influential Resources in Cybersecurity Awareness
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week on The Awareness Angle, we break down the biggest stories in cybersecurity and digital risk, from funding gaps to privacy concerns and scam tactics you need to know about:
🛠️ CVE Scores & Funding Gaps – We look at how Common Vulnerabilities and Exposures (CVEs) help teams prioritise security fixes—and why the system’s financial future is under serious strain.
📉 4chan’s Fall – The site’s massive data leak sparks wider concerns about unpatched software and outdated infrastructure.
🧠 Copilot’s Privacy Problem – Microsoft’s new “recall” feature for Copilot is raising eyebrows over just how much it might remember—and share.
🔄 Android Auto Reboot – A new feature that restarts your device to install critical updates could be a quiet game-changer for mobile security.
📱 QR Code Scams – These attacks are on the rise, fooling people into scanning their way into danger. We explain what to look out for.
🤖 DeepFakes & Scam Tactics – From fake calls to fake faces, attackers are levelling up. Here’s how to stay a step ahead.
💸 Payment Verification Scams – A reminder: always confirm payment before handing over goods. Social engineering is getting smarter.
🎯 Real Pressure Simulations – Why cyber awareness training needs to go beyond the basics and prepare users for high-stakes scenarios.
🎙️ Industry Voices – Why speaking with frontline professionals can offer insights that no training module can replicate.
👥 Human Error & Third-Party Risk – From vendor software flaws to simple mistakes, people remain at the centre of most security incidents.
Whether you’re in charge of training or just trying to stay informed, this episode is packed with real-world insight and practical takeaways to help you stay ahead.
🕒 Timestamps
05:11 The CVE Funding Crisis
10:09 The Downfall of 4chan
12:01 Microsoft's Copilot Recall Feature
24:09 Android's Auto Reboot Feature
29:04 The Rise of QR Code Scams
34:26 Data Breaches and Cybersecurity Risks
39:30 Scams and Fraud in the Digital Age
44:02 Cyber Awareness and Education
47:58 Interviews and Insights in Cybersecurity
54:45 Real-World Security Breaches and Lessons Learned
01:00:00 The Importance of Cyber Awareness in Decision Making
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
📙 About The Awareness Angle
A CYBERSECURITY PODCAST where we talk about SECURITY AWARENESS and security education. We are professionals in HUMAN RISK and Information Security Awareness. We know PHISHING CAMPAIGNS, we know PHISH. We have done annual SECURITY TRAINING. We have sent NEWSLETTERS and made videos. We have created security awareness CULTURE STUDIES and are passionate about HUMAN BEHAVIOURS. Whether you're a CYBER Security Awareness professional or simply curious about HUMAN RISK, this podcast is your go-to resource for fresh perspectives and creative solutions.
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week on The Awareness Angle, we dive into the latest cybersecurity themes, evolving risks, and fresh insights shaping the industry:
💡 Cyber Awareness Matters – As threats evolve, so must our approach. We explore why traditional training isn’t enough and how a 70% drop in phishing click rates shows what’s possible.
🧠 Mental Health in Cybersecurity – Burnout is real. We highlight some innovative solutions emerging to support well-being in high-pressure security roles.
🚗 Electric Vehicles & Car Hacking – The rise of connected cars opens the door to new attack vectors. Here’s what’s keeping automotive cybersecurity experts up at night.
🕵️♂️ Surveillance vs. Privacy – Government access to private data sparks debate again. We break down what’s changing and what it means for your digital rights.
🏥 Secure Healthcare Communication – Data sensitivity in healthcare isn't just about records—it’s also in the messages. We discuss why secure channels matter more than ever.
🧑🎓 The Human Side of Security – People are often the weakest link—or the strongest defence. We explore how understanding behaviour shapes better awareness programmes.
🎙️ Networking That Matters – From casual chats to panel debates, we share the value of connecting with peers at industry events (and how not to waste the opportunity).
🧒 Parental Controls in Focus – Online safety starts at home. We talk about what tools are working, and why education is just as important as tech.
🛠️ Rethinking Tools & Practices – Not every “best practice” still holds up. We dig into why it’s time to re-evaluate old habits in the face of new threats.
🤖 AI Expectations in Business – From chatbots to decision-making tools, AI is becoming the norm—but is security keeping up?
Whether you're into cybersecurity awareness, human risk, privacy, or just trying to stay safe online, this episode is packed with real-world stories and practical takeaways.
🕒 Timestamps00:00 Intro
01:44 WinRAR Vulnerability
05:11 Kellogg & Clop Ransomware
09:04 Europcar GitLab Breach
14:54 Nissan Leaf Hack
23:41 TikTok Ban Delayed
24:55 GCHQ Spyware Warning
27:01 Apple vs UK Government
27:51 Oracle Data Breach Confirmed
30:15 Royal Mail Breach: No Update
30:53 Cyber Security Show Recap
33:19 Zensory & NeuroCyber
40:29 Lance Spitzner’s LinkedIn Post
46:06 AI Avatar in Court
50:07 Shopify’s AI Memo
53:58 Maddy Moate & Parental Controls
57:24 NHS Text Message Confusion
01:04:22 Outro
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
📙 About The Awareness Angle
A CYBERSECURITY PODCAST where we talk about SECURITY AWARENESS and security education. We are professionals in HUMAN RISK and Information Security Awareness. We know PHISHING CAMPAIGNS, we know PHISH. We have done annual SECURITY TRAINING. We have sent NEWSLETTERS and made videos. We have created security awareness CULTURE STUDIES and are passionate about HUMAN BEHAVIOURS. Whether you're a CYBER Security Awareness professional or simply curious about HUMAN RISK, this podcast is your go-to resource for fresh perspectives and creative solutions.
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week on The Awareness Angle, we dive into the latest cybersecurity threats, data leaks, and privacy missteps making headlines:
🐦 Twitter Mega Leak – 2.8 billion profiles exposed in one of the largest breaches to date. We unpack what this means for users and why so much personal info was floating around the dark web.
📄 Military Docs Left in Public – Classified documents found out in the open—an all-too-common example of how physical and digital security go hand in hand.
💬 Microsoft Teams Phishing Attacks – Attackers are now sneaking into your Teams chats with malicious links. We talk tactics, red flags, and how to stay safe.
📱 Crocodilus Android Malware – A new threat targeting users in Turkey and Spain using fake app overlays. Here’s how it works and why it’s a growing mobile concern.
🧑💻 Human Error at the Core – From GCHQ interns to IT mishaps, simple mistakes still lead to serious breaches. We explore why awareness—not just tools—is key.
🇬🇧 New UK Cyber Regulations – The government is cracking down with tighter reporting timelines. We break down what organisations need to know.
🖼️ SVG Files in Phishing Campaigns – A crafty way scammers are bypassing detection. We explain what SVG phishing is and how to recognise it.
🎙️ Ouch! Newsletter Gets a Podcast – The beloved awareness resource gets a new audio twist. Can bite-sized podcasts boost engagement in security training?
🔐 Password Reuse & Oversharing – These two habits continue to fuel breaches. We talk about how to explain the risks to non-tech teams.
📦 Risks of Sideloading & Disposal Gaps – From sketchy apps to forgotten hard drives, we cover the overlooked security risks that still trip people up.
Whether you're into cybersecurity awareness, human risk, privacy, or just trying to stay safe online, this episode is packed with real-world stories and practical takeaways.
🕒 Timestamps
00:00 Episode Introduction
02:35 Twitter Data Leak: A Major Breach
07:11 Sensitive Military Papers Found Publicly
12:15 Microsoft Teams: New Phishing Tactics
17:54 Identifying URL Phishing Techniques
22:35 GCHQ Intern’s Data Breach Incident
30:33 Emerging Android Malware: Crocodilus
32:44 Emerging Threats in Mobile Security
37:08 Cybersecurity Regulations & Compliance
42:00 Phishing Attacks: Evolving Tactics
45:22 Human Error in Cybersecurity
49:54 Cybersecurity Awareness Initiatives
52:32 Innovations in Security Training
54:54 Common Online Security Pitfalls
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
📙 About The Awareness Angle
A CYBERSECURITY PODCAST where we talk about SECURITY AWARENESS and security education. We are professionals in HUMAN RISK and Information Security Awareness. We know PHISHING CAMPAIGNS, we know PHISH. We have done annual SECURITY TRAINING. We have sent NEWSLETTERS and made videos. We have created security awareness CULTURE STUDIES and are passionate about HUMAN BEHAVIOURS. Whether you're a CYBER Security Awareness professional or simply curious about HUMAN RISK, this podcast is your go-to resource for fresh perspectives and creative solutions.
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
This week on The Awareness Angle, we dive into some of the biggest cybersecurity and privacy stories making headlines:🧬 23andMe Bankruptcy – Can you really delete your DNA? We talk about the panic, the privacy risks, and why genetic data is the most personal data you’ll ever giveaway. 🧟♂️ Steam Game Malware – A new demo on Steam turns out to be info-stealing malware. We discuss why even trusted platforms aren’t always safe. 🖼️ Fake File Converters – The FBI confirms it: online file conversion tools are being used to deliver malware. Here’s what to watch for and safer alternatives. 📱 Treadmill App Privacy Concerns – One user discovers her new treadmill demands access to her phone calls. Why are fitness devices crossing the privacy line? 📹 Vivida Reels – We take a first look at a new TikTok-style cyber awareness training platform. Can this new format help make training engaging again? 🎣 Phishing-as-a-Service – The rise of tools like Tycoon makes it easy for criminals to launch convincing phishing attacks—no coding required. 🎙️ Alexa Privacy Setting Removed – Amazon quietly removes an important privacy option from Echo devices. 💸 Meta’s Ad-Free Plan – Facebook and Instagram might soon charge UK users for privacy. Would you pay not to be tracked? 📶 DrayTek Routers Rebooting – A bad firmware update sends internet routers into chaos. 🏥 NHS Software Fine – A UK software provider is fined £3M after a ransomware attack exposed sensitive health data, including home entry info.Whether you're into cybersecurity awareness, human risk, privacy, or just trying to stay safe online, this episode is packed with real-world stories and practical takeaways. Don’t forget to like, comment, and subscribe to stay informed.
🕒 Timestamps
00:00 Episode Introduction
01:45 Oracle Cloud Security Breach Denial
04:40 FBI Warnings on Fake File Converters
09:24 Malware in Steam Games
14:47 Sydney Tools Data Breach
19:14 23andMe Bankruptcy & Data Concerns
25:47 Rapid-Fire Cybersecurity News
31:05 Upcoming Cybersecurity Events
32:38 Treadmill Needs Phone Records? Invasive Permissions in Everyday Devices
37:08 Shaping Workplace Security Culture
39:34 DOGE Interview - Elon Wants Your Personal Input - Smishing
40:41 UK Government 2-Step Verification Ad
43:19 Secure Device Disposal Best Practices
48:55 Vivida Reels - Innovative Approaches to Security Training
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
📙 About The Awareness Angle
A CYBERSECURITY PODCAST where we talk about SECURITY AWARENESS and security education. We are professionals in HUMAN RISK and Information Security Awareness. We know PHISHING CAMPAIGNS, we know PHISH. We have done annual SECURITY TRAINING. We have sent NEWSLETTERS and made videos. We have created security awareness CULTURE STUDIES and are passionate about HUMAN BEHAVIOURS. Whether you're a CYBER Security Awareness professional or simply curious about HUMAN RISK, this podcast is your go-to resource for fresh perspectives and creative solutions.
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
Windows 10 support is ending, and that’s just the start of this week’s cybersecurity shake-ups. In this episode of The Awareness Angle, we break down what this means for businesses and everyday users, plus the growing threat of malicious OAuth apps targeting Microsoft 365 accounts. We also dive into the re-emergence of the high-profile Disney Slack breach and what it reveals about security gaps in major organisations.Beyond the headlines, we explore hidden risks, like how vulnerabilities in ChatGPT are being exploited, why downloading cracked software is a ticking time bomb (hello, Arcane Infostealer), and the dangers lurking in seemingly harmless browser extensions, TikTok is rolling out security awareness on MFA, a story on Google’s dark web monitoring, and we discuss the importance of clear, effective communication in security and why normalising security discussions can make all the difference.
🕒 Timestamps
00:00 Episode Introduction
02:27 Windows 10 End of Life: Concerns & Impact
05:38 Malicious OAuth Apps Targeting Microsoft 365
07:20 ClickFix Fake Captcha Risk: Don't Paste in the Run box
10:14 Disney Data Breach: Misunderstandings & Impact
15:27 Exploited ChatGPT Vulnerabilities: Risks & Responses
21:29 Arcane Infostealer & Cracked Software Risks
26:30 Comments - The Words We Choose Matter
29:40 National Cyber Security Show
30:53 Transparency in Cyber - Eliot from Hoxhunt's Freaky Friday
36:50 Browser Extension Security Risks
45:28 TikTok’s Security Awareness Campaign49:52 Google's Domain Checks
51:57 Google’s Dark Web Monitoring
56:10 Vivida Reels - Exciting New Awareness Coming Soon
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
📙 About The Awareness Angle
A CYBERSECURITY PODCAST where we talk about SECURITY AWARENESS and security education. We are professionals in HUMAN RISK and Information Security Awareness. We know PHISHING CAMPAIGNS, we know PHISH. We have done annual SECURITY TRAINING. We have sent NEWSLETTERS and made videos. We have created security awareness CULTURE STUDIES and are passionate about HUMAN BEHAVIOURS. Whether you're a CYBER Security Awareness professional or simply curious about HUMAN RISK, this podcast is your go-to resource for fresh perspectives and creative solutions.
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
AI threats, API key leaks, and social engineering scams—this episode of The Awareness Angle unpacks the latest cybersecurity challenges and what they mean for businesses and individuals alike. We explain how attackers use generative AI to refine phishing scams, the rising danger of DDoS attacks, and why API security is becoming a critical concern. With enterprises rapidly adopting AI, are security strategies keeping up?
We also dive into the personal side of cybersecurity, exploring how good security habits at home translate to stronger protection at work. A real-world Facebook scam case study highlights key red flags to watch for while discussing border security and digital privacy and offers practical advice for travellers. To wrap up, we react to a wild story of someone travelling 6,000 miles using "Find My Device" to track down their lost AirPods!
🕒 Timestamps
00:00 Episode Introduction
01:10 AI and Data Security Risks
05:04 DDoS Attacks and Their Impact
13:17 Generative AI in Enterprises
19:33 Data Breaches & Ransomware Threats
22:22 Apple’s Encryption & Privacy Debate
25:04 Cybersecurity Events & Awareness Strategies
29:06 Social Engineering & AI Threats
32:27 Cyber Awareness at Home
34:52 Identifying Scams: Facebook Case Study
47:34 Border Security & Digital Privacy
54:41 Technology’s Impact on Daily Life
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
📙 About The Awareness Angle
A CYBERSECURITY PODCAST where we talk about SECURITY AWARENESS and security education. We are professionals in HUMAN RISK and Information Security Awareness. We know PHISHING CAMPAIGNS, we know PHISH. We have done annual SECURITY TRAINING. We have sent NEWSLETTERS and made videos. We have created security awareness CULTURE STUDIES and are passionate about HUMAN BEHAVIOURS. Whether you're a CYBER Security Awareness professional or simply curious about HUMAN RISK, this podcast is your go-to resource for fresh perspectives and creative solutions.
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
