I was just sent a link to video of Kevin Mitnick's testimony before a congressional committee of March 2, 2000 where he explained how he was able to hack into dozens of large organizations including the IRS using social engineering as his only tool.
The sender asked: "Stu, is this the first recorded statement on, or possibly the genesis of, Security Awareness Training?"
Excellent question and I am asking all subscribers the same thing. Are you aware of any earlier mention of this in any form? Email me at [email protected] please.
We might be not only the most popular, but Kevin, our Chief Hacking Officer might perhaps also be the first to bring up the idea. Forward to the video until about 13 minutes in, where he mentions: "extensive user education and training" at 13:50: