Erich Kron

Erich Kron is Security Awareness Advocate for KnowBe4, which hosts the world’s most popular integrated security awareness training and simulated phishing platform with over 70,000 customers and more than 60 million users. A 25-year veteran information security professional with experience in the medical, aerospace, manufacturing and defense fields, he was a security manager for the U.S. Army's 2nd Regional Cyber Center-Western Hemisphere and holds CISSP, CISSP-ISSAP, SACP and other certifications. Erich has worked with information security professionals around the world to provide tools, training and educational opportunities to succeed in information security.

Gen Z’s Rising Susceptibility to Social Engineering Attacks

Erich Kron | March 31, 2025 | Cybersecurity, Gen Z, online scams, Phishing,

Gen Z, or individuals born between 1997 and 2012, have certain types of lifestyles, upbringings and character traits that make them ideal for social engineering exploitation ... Read More

Security Boulevard

NIST, Attacks, data privacy FTC NIST data Privacy Framework

Using the NIST Phish Scale Framework to Detect and Fight Phishing Attacks

Erich Kron | February 3, 2025 | NIST phish scale, NIST Phishing Framework, Phishing, phishing awareness training

The NIST Phish Scale framework offers a structured and effective approach to improving phishing awareness training in organizations ... Read More

Security Boulevard

identity, JumpCloud, digital wallets, identity, identity phishing, attacks, Badge identity Teleport auth AI Adoption Lags cloud bias AI identity verification Open Raven

Identity Phishing: Using Legitimate Cloud Services to Steal User Access

Erich Kron | December 5, 2024 | cyberattacks, File hosting services, Identity phishing

Identity phishing doesn’t just lead to data theft – it can also lead to financial fraud, targeted social engineering attacks and lateral movement across endpoints ... Read More

Security Boulevard

digital, deception, deepfake, businesses, survey, attacks, deepfake, AI, security, deepfake, vishing, businesses, deepfake, misinformation, AI, deepfake technology

Five Tools That Can Help Organizations Combat AI-powered Deception

Erich Kron | September 16, 2024 | deception, Digital Deception, Digital Watermarking

As digital exploitation, fraud and deception move deeper into society, it is incumbent on organizations to educate their employees on digital literacy skills, make them aware of the risks posed by phishing and social engineering threats ... Read More

Security Boulevard

The Human Adaptability Gap and How to Close It

Erich Kron | July 22, 2024 | change culture, culture, Cybersecurity, human adoption, security, technology gap

The “adaptability gap”—the widening difference between the rapid pace of technological progress and the slower rate of human, or employee adaptation ... Read More

Security Boulevard

MFA is No Cure for Phishing

Erich Kron | May 31, 2019 | highlight, krebs, Kron, MFA, mitnick, Opinion, Phishing

Last year my Twitter feed became full of stories and retweets about how Google “solved the phishing problem” using hardware multi-factor authentication (MFA) tokens. One such article covering this topic was “Google: Security Keys Neutralized Employee Phishing” by the venerable Brian Krebs. While I have a lot of respect for ... Read More

The Ethical Hacker Network

Security Assumptions – Don’t Make an ASS of U and ME

Erich Kron | March 22, 2019 | fde, firewalls, highlight, Kron, MFA, Opinion, passwords

Have you ever stopped to ask yourself if the things you are defending against are really your biggest security problems? I am going to challenge you to think about things a little differently, as I have been myself recently. Prepare yourself, as this may challenge some of your core security ... Read More

The Ethical Hacker Network

Travel Hacking for the Successful InfoSec Pro

Erich Kron | November 5, 2018 | Business, career, highlight, Infosec, Kron, travel

So, you want to be a road warrior? Maybe your job has morphed into something where travel is now part of the fun. Or maybe travel is required to reach that InfoSec rock star status you've always desired. Either way I want to share some of the tips and tricks ... Read More

The Ethical Hacker Network

EH-Net - Kron - Credential Phishing - Hook

Credential Phishing – Easy Steps to Stymie Hackers

Erich Kron | July 10, 2018 | highlight, Kron, MFA, Phishing, smart card, , Vault

Phishing attacks have become a common factor in our daily routines for businesses and in our personal lives. There are many different types of phishing attacks, each of which requires a slightly different defense while having some commonalities as well. This article covers a specific type of attack called credential ... Read More

The Ethical Hacker Network