Kaspersky Lab reported that employee education is not just a nice add-on but it’s “the core element of prevention.”  The November 15, 2015 “Threats from Within” report included this statement which is hardly a surprise:

Top threats came from software vulnerabilities and accidental actions by staff, including mistakenly leaking or sharing data.

To make things worse smaller business should be on high alert since small businesses have great risk as Kaspersky reported that according to The U.S. Department of Homeland Security 31% of Cyberattacks are:

…directed at businesses with less than 250 employees.

So cyber training continues to be paramount, but apparently most businesses, big and small, are doing a poor job