Security awareness training resources and blog

The Stryker-Handala incident: Should you send out an employee alert?

TL;DR— US medical device company Stryker experienced a cybersecurity incident on March 11, 2026, after the Iranian hacktivist group Handala allegedly wiped “data from over 200,000 systems, servers,…

Headline or habit? How to choose your next awareness training topic

TL;DR— Part five of six-part blog series on must-ask questions when creating net-new awareness training. When Fable Security clients request briefings covering specific attacks, we ask,…

Emerging threat: Permit lures victims with new invoice fraud scheme

TL;DR— The FBI warned about an active invoice fraud scheme in which attackers are: Scraping publicly available city and county permitting information, Impersonating local officials via emails from almost-official…

Turn “security awareness” into “security actions”

TL;DR— Part four of six-part blog series on must-ask questions when creating net-new awareness training. Teams creating impactful security training should ask themselves, “What can employees actually…

RSAC 2026: Exchange security awareness training you hate for something you’ll love

The TL;DR Visit us at RSAC – South Hall (S-263) Tell us how you feel about security training The threat landscape in 2026 doesn’t give anyone…

Emerging threat: Resume lure delivers ‘BlackSanta’ control killer

TL;DR— Researchers discovered a year-long campaign targeting HR recruiters and hiring managers with fake job applications hosted on legitimate cloud storage. The “CV” / resume download…

Get the goods

The Stryker-Handala incident: Should you send out an employee alert?