Cybercriminals continue to target end users, requiring a people-centric security approach and demonstrating the importance of security awareness training.