Over the course of the two-day briefings at Black Hat 2017, a lot of interesting topics were discussed. Perhaps one of the more interesting topic areas was cybersecurity education. In fact, there were at least three panels on the topic.
An interesting point came up during a presentation from Arun Vishwanath of the University at Buffalo. He was discussing the problems with many cybersecurity training programs.
During his talk, Vishwanath focused on the high proportion of employees who fall victim to spear-phishing despite having training in the workplace.