Thomas Le Coz

Thomas Le Coz

Cybersecurity & Social Engineering Expert

Thomas Le Coz Latest Posts

Cybersecurity Awareness Training and FERPA: Securing Student Records Through Education

Cybersecurity Awareness Training and FERPA: Securing Student Records Through Education

The Family Educational Rights and...

Thomas Le Coz

Thomas Le Coz

How Cybersecurity Awareness Training Supports the NIST Cybersecurity Framework

How Cybersecurity Awareness Training Supports the NIST Cybersecurity Framework

The NIST Cybersecurity Framework (CSF)...

Thomas Le Coz

Thomas Le Coz

Cybersecurity Awareness Training for CCPA / CPRA Compliance: Empowering Employees to Protect Consumer Privacy

Cybersecurity Awareness Training for CCPA / CPRA Compliance: Empowering Employees to Protect Consumer Privacy

The California Consumer Privacy Act...

Thomas Le Coz

Thomas Le Coz

PCI-DSS and Cybersecurity Awareness Training: Protecting Cardholder Data from Human Risk

PCI-DSS and Cybersecurity Awareness Training: Protecting Cardholder Data from Human Risk

The Payment Card Industry Data Security...

Thomas Le Coz

Thomas Le Coz

HIPAA Compliance and Cybersecurity Awareness: Training for Healthcare Data Protection

HIPAA Compliance and Cybersecurity Awareness: Training for Healthcare Data Protection

The Health Insurance Portability and...

Thomas Le Coz

Thomas Le Coz

Cybersecurity Awareness Training and NIS2 Compliance: Securing the Human Layer in Critical Sectors

Cybersecurity Awareness Training and NIS2 Compliance: Securing the Human Layer in Critical Sectors

The NIS2 Directive (Directive (EU)...

Thomas Le Coz

Thomas Le Coz

Cybersecurity Awareness Training for DORA Compliance: Managing Human Risk in Financial Services

Cybersecurity Awareness Training for DORA Compliance: Managing Human Risk in Financial Services

The Digital Operational Resilience Act...

Thomas Le Coz

Thomas Le Coz

Cybersecurity Awareness Training and ISO 27001: A Practical Compliance Guide

Cybersecurity Awareness Training and ISO 27001: A Practical Compliance Guide

ISO/IEC 27001 is one of the most widely...

Thomas Le Coz

Thomas Le Coz

Meeting SOC 2 Type II Requirements with Cybersecurity Awareness Training

Meeting SOC 2 Type II Requirements with Cybersecurity Awareness Training

SOC 2 Type II has become the gold...

Thomas Le Coz

Thomas Le Coz

How Cybersecurity Awareness Training Supports GDPR Compliance

How Cybersecurity Awareness Training Supports GDPR Compliance

Since the introduction of the General...

Thomas Le Coz

Thomas Le Coz

Modern Phishing Detection: Why It’s So Hard and How to Get Better at It

Modern Phishing Detection: Why It’s So Hard and How to Get Better at It

Modern phishing detection is...

Thomas Le Coz

Thomas Le Coz

MFA Fatigue: The Growing Threat Undermining Multi-Factor Authentication

MFA Fatigue: The Growing Threat Undermining Multi-Factor Authentication

Multi-factor authentication (MFA) was...

Thomas Le Coz

Thomas Le Coz

How Clone Phishing Threatens Your Compliance (GDPR, HIPAA & More)

How Clone Phishing Threatens Your Compliance (GDPR, HIPAA & More)

One often overlooked but incredibly...

Thomas Le Coz

Thomas Le Coz

Quishing: The Rise and Dangers of QR Code Phishing

Quishing: The Rise and Dangers of QR Code Phishing

Quishing — short for QR code phishing —...

Thomas Le Coz

Thomas Le Coz

QR Code Phishing: The Complete Protection Guide

QR Code Phishing: The Complete Protection Guide

QR code phishing, sometimes called...

Thomas Le Coz

Thomas Le Coz

AI Vishing Attack: analysis of a new threat

AI Vishing Attack: analysis of a new threat

"The voice sounds real. The request...

Thomas Le Coz

Thomas Le Coz

Vishing Awareness Training: train your employees against vishing

Vishing Awareness Training: train your employees against vishing

"Your employees might know about...

Thomas Le Coz

Thomas Le Coz

Callback vishing: when phishing leads to vishing

Callback vishing: when phishing leads to vishing

"Think you're safe because you made the...

Thomas Le Coz

Thomas Le Coz

Voice cloning attacks: all you need to know

Voice cloning attacks: all you need to know

"Can you trust the voice on the other...

Thomas Le Coz

Thomas Le Coz

The Slovakia Election Deepfake: AI’s Threat to Democracy

The Slovakia Election Deepfake: AI’s Threat to Democracy

In 2023, Slovakia became a cautionary...

Thomas Le Coz

Thomas Le Coz

The Le Drian Scam: A Masterclass in Social Engineering

The Le Drian Scam: A Masterclass in Social Engineering

Social engineering, the art of...

Social Engineering

Thomas Le Coz

Thomas Le Coz

Social Engineering Attacks: Tactics and Defenses

Social Engineering Attacks: Tactics and Defenses

In this article we’ll explore how...

Social Engineering

Thomas Le Coz

Thomas Le Coz

How to Run a Simulated Vishing Attack? Our complete guide.

How to Run a Simulated Vishing Attack? Our complete guide.

"How would your team respond to a voice...

Thomas Le Coz

Thomas Le Coz

Bypassing Multi Factor Authentication (MFA) with a callbot

Bypassing Multi Factor Authentication (MFA) with a callbot

Call bots, a kind of vishing automation...

Thomas Le Coz

Thomas Le Coz

Which type of phishing simulation to choose?

Which type of phishing simulation to choose?

Phishing comes in different shapes and...

Thomas Le Coz

Thomas Le Coz

How to launch a phishing simulation to better protect your company?

How to launch a phishing simulation to better protect your company?

In this post, we'll explore the key...

Thomas Le Coz

Thomas Le Coz

Impact of AI on Cyberattacks in 2024

Impact of AI on Cyberattacks in 2024

Conference on the Impact of AI on...

Thomas Le Coz

Thomas Le Coz

How Klaxoon uses Arsen to train its employees against phishing attacks

How Klaxoon uses Arsen to train its employees against phishing attacks

Aymeric from Klaxoon explains why they...

Thomas Le Coz

Thomas Le Coz

Phishing & AI: new attacks and new solutions

Phishing & AI: new attacks and new solutions

In this discussion with Benjamin Leroux...

Thomas Le Coz

Thomas Le Coz

Malicious Attachment generation with generative AI

Malicious Attachment generation with generative AI

Spreading malware or gaining initial...

Thomas Le Coz

Thomas Le Coz

Generative AI Phishing Scenarios

Generative AI Phishing Scenarios

GenAI phishing is now a thing. You...

Thomas Le Coz

Thomas Le Coz

Using third party LLMs for genAI phishing operations

Using third party LLMs for genAI phishing operations

With the rise of genAI phishing, you...

Thomas Le Coz

Thomas Le Coz

Effective generative AI for phishing engagements

Effective generative AI for phishing engagements

If you’ve been reading our content,...

Thomas Le Coz

Thomas Le Coz

Defense in depth: the importance of the human factor

Defense in depth: the importance of the human factor

A paradox has struck me for several...

Thomas Le Coz

Thomas Le Coz

3 advantages Arsen has over Gophish

3 advantages Arsen has over Gophish

At Arsen, we love Gophish. It’s by far...

Thomas Le Coz

Thomas Le Coz

Use of AI in Social Engineering Attacks

Use of AI in Social Engineering Attacks

From phishing to fake transfer scams,...

Thomas Le Coz

Thomas Le Coz

Our most versatile phishing scenarios

Our most versatile phishing scenarios

Utiliser des scénarios polyvalents dans...

Thomas Le Coz

Thomas Le Coz

USB Drop: Discover the USB drive powered attack

USB Drop: Discover the USB drive powered attack

An attack via USB drive, also known as...

Thomas Le Coz

Thomas Le Coz

Why generate a random password?

Why generate a random password?

Often, when an individual needs to...

Thomas Le Coz

Thomas Le Coz

What is Juice Jacking ?

What is Juice Jacking ?

Juice jacking is a type of cyber attack...

Thomas Le Coz

Thomas Le Coz

What is catfishing, and how to protect from it?

What is catfishing, and how to protect from it?

In March 2021, the top 10 dating sites...

Social Engineering

Thomas Le Coz

Thomas Le Coz

WannaCry, the biggest ransomware heist in history

WannaCry, the biggest ransomware heist in history

WannaCry is the ransomware behind one...

Thomas Le Coz

Thomas Le Coz

Managing the risks tied to phishing

Managing the risks tied to phishing

The risks associated with phishing are...

Thomas Le Coz

Thomas Le Coz

What is a sextorsion attack?

What is a sextorsion attack?

A sextortion attack involves extorting...

Thomas Le Coz

Thomas Le Coz

BEC Definition: Understanding Business Email Compromise

BEC Definition: Understanding Business Email Compromise

The compromise of email addresses, or...

Thomas Le Coz

Thomas Le Coz

Instagram Phishing: Risks and Protection Measures

Instagram Phishing: Risks and Protection Measures

Instagram is a highly popular social...

Thomas Le Coz

Thomas Le Coz

Vishing examples: real world attacks and consequences

Vishing examples: real world attacks and consequences

"Vishing may be less known than...

Thomas Le Coz

Thomas Le Coz