Download Now
Blog

Insights on Enterprise Risk, Behavior, and Security

Daily POVs from our founder. Deep dives from our experts. Everything you
need to stay ahead of the human risk curve

Dune Security and Reality Defender announce new cybersecurity partnership to stop deepfake attacks and AI-generated media threats targeting employees.
Blog

Dune Security and Reality Defender Partner to Stop AI-Generated Media Threats Targeting Enterprises

Deepfakes and AI-generated attacks are targeting employees faster than legacy tools can keep up. Dune Security and Reality Defender are partnering to deliver layered protection against these threats, combining real-time detection with user layer intelligence.
11 Sep 2025
4 min read
Founder POV
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

CyberVault Podcast: Why Security Awareness Training Fails with David DellaPelle

David DellaPelle, Co-Founder and CEO of Dune Security, joined The CyberVault Podcast to discuss why most security awareness programs fall short and what it takes to build a true human-first security culture.

Minutes to listen:
21 minutes
22 Sep 2025
Featured Podcasts

Insecure Agents Podcast: Weaponizing AI with Kyle Ryan

Kyle Ryan, Head of Artificial Intelligence at Dune Security, joined the Insecure Agents podcast to discuss how advanced threat actors are weaponizing AI and the human vulnerabilities they exploit.

Minutes to listen:
21 minutes
24 Jul 2025
Featured Podcasts

Alumni Ventures Podcast: User Error in Cybersecurity

David DellaPelle, Co-Founder and CEO of Dune Security, joined Alumni Ventures CEO Mike Collins to discuss how Dune is tackling one of the most common causes of cybersecurity breaches: employee error.

Minutes to listen:
1 hour
21 May 2024
Featured Podcasts

The Hustle Daily Show: The Billion-Dollar Value of Cybersecurity Startups

David DellaPelle, CEO of Dune Security, joined The Hustle Daily Show to discuss the billion-dollar value of cybersecurity startups, why the industry is booming, and how to break into it.

Minutes to listen:
22 minutes
04 Aug 2024
Featured Podcasts

Cyber Security Matters Podcast: Tackling Social Engineering Prevention

David DellaPelle, Co-Founder and CEO of Dune Security, joined the Cyber Security Matters Podcast to discuss defending against social engineering, the rise of deepfakes, and his journey as a cybersecurity entrepreneur.

Minutes to listen:
34 minutes
21 Oct 2024
Featured Podcasts

The Security Sessions Podcast: Deepfakes & AI with Kyle Ryan

Kyle Ryan, Head of AI Engineering at Dune Security, joined The Security Sessions Podcast to discuss how hackers are weaponizing AI and deepfakes to target organizations, and what can be done to stop them.

Minutes to listen:
33 minutes
30 Jan 2025
Featured Podcasts

The ITSM Practice Podcast: Future-Proofing Cybersecurity

Kyle Ryan, Head of AI and Backend Engineering at Dune Security, joined The ITSM Practice Podcast to discuss the rise of AI-enhanced phishing and how data-driven, behavior-based defenses are helping security teams stay ahead.

Minutes to listen:
10 minutes
15 Nov 2024
Featured Podcasts

Security Architecture Podcast: Securing Tomorrow

David DellaPelle, Co-Founder and CEO of Dune Security, joined the Security Architecture Podcast to discuss Dune’s mission to reduce attack surfaces, counter AI-powered social engineering, and build resilient security cultures.

Minutes to listen:
25 minutes
18 Apr 2024
Featured Podcasts

The ITSM Practice Podcast: Exploring Scattered Spider Cloud Attacks

Tarun Ramesh, Senior Backend Engineer at Dune Security, joined The ITSM Practice Podcast to discuss how Scattered Spider and similar threat groups exploit cloud environments using advanced social engineering and defense strategies.

Minutes to listen:
8 minutes
22 Nov 2024
Featured Podcasts

Inside the Round Podcast: Building Dune Security with David DellaPelle

Dune Security Co-Founder and CEO David DellaPelle joined the Inside the Round Podcast to share how Dune is tackling user risk and what it takes to build a modern cybersecurity company from the ground up.

Minutes to listen:
37 minutes
08 Apr 2025
Featured Podcasts
The Dune Security team standing in front of a six-story Times Square billboard showcasing the company’s mission to prevent insider threats, reduce user risk, and protect enterprises from social engineering attacks and AI risks.

Dune Security Takes Over Times Square

In less than three years, Dune Security has grown from an idea into a platform trusted by Fortune 1,000 enterprises. Our Times Square milestone celebrates that journey and our mission to stop insider threats and social engineering at scale.

Minutes to listen:
16 Sep 2025
3 min read
Blog

AI in Action Podcast: Fighting Cyber Threats with AI

Kyle Ryan, Senior Manager of Engineering and AI at Dune Security, joined the AI in Action Podcast to discuss how generative AI is fueling hyper-personalized phishing and multi-channel social engineering, and how Dune is replicating these threats to lower user risk and strengthen enterprise defenses.

Minutes to listen:
21 minutes
15 Sep 2025
Featured Podcasts

Reality Defender, Dune Security partner to tackle fraud from two angles

Technical blocks and employee training combine to protect the user layer

Minutes to listen:
12 Sep 2025
Industry News

US Investment in Spyware Is Skyrocketing

A new report warns that the number of US investors in powerful commercial spyware rose sharply in 2024 and names new countries linked to the dangerous technology.

Minutes to listen:
10 Sep 2025
Industry News

CISOs, stop chasing vulnerabilities and start managing human risk

Breaches continue to grow in scale and speed, yet the weakest point remains unchanged: people.

Minutes to listen:
10 Sep 2025
Industry News

How Effective Is Corporate Cybersecurity Training? Not Very, It Seems

A new study suggests that employees fall for phishing scams at about the same rate, whether they’ve had legacy training or not

Minutes to listen:
04 Sep 2025
Industry News

Dune Security Is Now Available on AWS Marketplace

Dune Security is now available on AWS Marketplace, allowing enterprises to deploy User Adaptive Risk Management through AWS for faster protection against social engineering and insider threats.

Minutes to listen:
04 Sep 2025
3 min read
Blog

Innovator Spotlight: Dune Security

Cyber Defense Magazine spotlights Dune Security for redefining user security through multi-channel simulations, adaptive training, and real-time risk scoring that deliver measurable results.

Minutes to listen:
03 Sep 2025
Industry News
Modern glass skyscrapers representing interconnected enterprise infrastructure, highlighting lateral movement risks in cybersecurity and the need for user layer threat detection.

Lateral Movement: How Attackers Expand Access After Initial Compromise

Lateral movement turns a single compromise into an enterprise-wide breach. Learn how attackers spread, why it evades detection, and how CISOs can contain it.

Minutes to listen:
03 Sep 2025
5 min read
Blog
Dune Security and Reality Defender announce new cybersecurity partnership to stop deepfake attacks and AI-generated media threats targeting employees.

Dune Security and Reality Defender Partner to Stop AI-Generated Media Threats Targeting Enterprises

Deepfakes and AI-generated attacks are targeting employees faster than legacy tools can keep up. Dune Security and Reality Defender are partnering to deliver layered protection against these threats, combining real-time detection with user layer intelligence.

Minutes to listen:
11 Sep 2025
4 min read
Blog

Cybercriminals Use AI to Create Fake Websites That Look Just Like the Real Thing

As scammers expand their targets beyond large companies, cybersecurity experts urge consumers to study web addresses carefully.

Minutes to listen:
20 Aug 2025
Industry News
Businessman on mobile phone, illustrating how vishing attacks use voice-based social engineering to impersonate trusted contacts and bypass enterprise security.

What Is Vishing? How Voice Phishing Works and How to Stop It

Vishing attacks use voice-based social engineering to bypass traditional defenses. Learn how attackers exploit urgency, trust, and AI-generated audio to trigger breaches – and what enterprises must do to stop them.

Minutes to listen:
11 Aug 2025
5 min read
Blog

FBI Sounds Alarm As Airline Cyber Threats Escalate

The FBI confirmed that Scattered Spider, one of the most dangerous and sophisticated cybercrime gangs operating today, is now targeting the airline industry.

Minutes to listen:
06 Jul 2025
Industry News

Third-Party Access Is the New Insider Threat

Third-party breaches now drive 30% of incidents. Learn how attackers use valid vendor credentials to move undetected, escalate access, and operate like insiders inside your network.

Minutes to listen:
27 Jun 2025
5 min read
Blog

16 billion passwords exposed in record-breaking data breach: what does it mean for you?

Several collections of login credentials reveal one of the largest data breaches in history, totaling a humongous 16 billion exposed login credentials. The data most likely originates from various infostealers.

Minutes to listen:
25 Jun 2025
Industry News

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages

The April 2025 cyber attacks targeting U.K. retailers Marks & Spencer and Co-op have been classified as a "single combined cyber event."

Minutes to listen:
21 Jun 2025
Industry News

How Hackers Are Turning Tech Support Into a Threat

Attacks on call centers lead to hundreds of millions of dollars in crypto thefts and disrupt retail sales.

Minutes to listen:
19 Jun 2025
Industry News

Customer data possibly leaked in Aflac cyberattack, the third insurance hack this month

The Aflac breach potentially impacted files with customers’ Social Security numbers and health details.

Minutes to listen:
21 Jun 2025
Industry News

‘Anthony from Staten Island’ said he developed a chat tool for Meta. His entire identity was fake.

A provider of identity verification and fraud tools was recently targeted by what appear to be multiple North Korean IT workers managing dozens of personas.

Minutes to listen:
30 May 2025
Industry News

Financial aid fraud is on the rise. Here’s how scammers are stealing funds

As fake enrollments for online courses surge, some professors discover that no one in their classes is real.

Minutes to listen:
10 Jun 2025
Industry News

Accenture: What we learned when our CEO got deepfaked

Rather than a mere advance in social engineering, deepfakes represent ‘a paradigm shift in the attack vector,’ says security lead Flick March

Minutes to listen:
07 May 2025
Industry News

The Age of Realtime Deepfake Fraud Is Here

Fraudsters are able to change their race, facial hair, voice, and more during live video calls with very little effort. Scammers are already fooling the elderly and verification systems.

Minutes to listen:
28 Apr 2025
Industry News

Former FBI agent thought he had seen it all in cybercrime. Then he became a corporate executive in charge of information security

For cybersecurity workers, 2021 was intense. There was the Russian-based ransomware attack on Colonial Pipeline, a key transit system for U.S. oil, that set off panic-buying at the gas pumps. Meanwhile, major U.S. meat packer JBS was shut down by yet another attack. And then there was the U.S. federal government, which suffered one of its worst cyber espionage breaches ever, due to aftershocks created by the hacking of software maker SolarWinds.

Minutes to listen:
11 Mar 2025
Industry News

Fake job seekers are flooding U.S. companies that are hiring for remote positions, tech CEOs say

Companies are facing a new threat: Job seekers who aren’t who they say they are, using AI tools to fabricate photo IDs, generate employment histories and provide answers during interviews.

Minutes to listen:
08 Apr 2025
Industry News
Stylized glowing email icon surrounded by digital debris, symbolizing the spread of phishing emails and Business Email Compromise attacks in corporate environments.

BEC Has Already Cost $55 Billion and AI Is Making It Worse

Business Email Compromise has already caused over $55 billion in losses. Now AI is scaling these attacks with deepfakes, voice clones, and urgent pretexts. Learn how modern BEC works and what CISOs can do to stop it.

Minutes to listen:
16 Jun 2025
Blog

How Ghost Students Are Exploiting College Enrollment Systems to Steal Federal Aid

Criminal fraud rings are targeting college aid systems with fake student identities. These scams use automation, identity theft, and AI to steal financial aid, lock out real students, and overwhelm public institutions. Here’s how it works and what security leaders in higher ed need to know.

Minutes to listen:
13 Jun 2025
7 min read
Blog

How Employee Fatigue Drives Human Error in Cybersecurity

Employee fatigue fuels human error and cybersecurity breaches by creating behavioral blind spots attackers exploit through social engineering and cognitive overload. Replace static awareness training with adaptive, real-time protection built for enterprise-scale risk.

Minutes to listen:
06 Jun 2025
5 min read
Blog

ChatGPT in the Wrong Hands: How AI is Being Used in Cybercrime

Generative AI is reshaping enterprise cybersecurity by targeting trust, behavior, and user access. Learn how AI-powered threats bypass static defenses and what CISOs must do to protect the human layer.

Minutes to listen:
27 May 2025
5 min read
Blog

Why Static Defenses Leaves Enterprises Vulnerable to Insider Risk

Insider threats are costly and hard to detect. Learn why static defenses fail and how User Adaptive Risk Management stops insider breaches early.

Minutes to listen:
22 May 2025
5 min read
Blog

Deepfake Impersonation in Remote Hiring

Deepfake impersonation is reshaping insider threats in remote hiring. Learn how AI-generated applicants are bypassing interviews – and how to stop them.

Minutes to listen:
14 May 2025
5 min read
Blog

Quishing Explained: How QR Code Phishing Bypasses Enterprise Defenses

Quishing is a growing phishing threat that uses malicious QR codes to bypass enterprise defenses. Learn how it works and why traditional tools fall short.

Minutes to listen:
12 May 2025
5 min read
Blog
Piggy bank surrounded by Bitcoin symbols, set against a blurred cryptocurrency chart, representing pig butchering scams and fake investment platforms in the cryptocurrency space.

Pig Butchering Scams: A Rising Enterprise Threat Every CISO Must Understand

Learn how pig butchering scams use social engineering and fake crypto platforms to exploit human error and bypass enterprise defenses.

Minutes to listen:
07 May 2025
7 min read
Blog

Why Traditional Security Awareness Training Can’t Stop Phishing 3.0

Phishing 3.0 weaponizes human error across email, SMS, voice, and apps. Learn how attackers use AI-driven deception to bypass static defenses and how your team can respond in real time.

Minutes to listen:
02 May 2025
3 min read
Blog

From the Founder

View Linkedin
September 17, 2025

Officially launched: our newest case study featuring HUGO BOSS 🔥

Read Full Post
September 16, 2025

🚀 Being in New York has been one of Dune Security’s greatest advantages.

Read Full Post

Never Miss a Human Risk Insights

Subscribe to the Dune Risk Brief - weekly trends, threat models,
and strategies for enterprise CISOs.
Thanks for submitting the form!
Oops! Something went wrong while submitting the form.