What Is Phishing?
Phishing is a form of email or social media-based cyber attack whereby cyber criminals pose as legitimate contacts to obtain sensitive information or install malware. Phishing emails encourage users to click suspicious links that will download malware or direct them to a malicious website.
Attacks can install ransomware, disrupt systems or result in money loss and stolen intellectual property. Users can also be encouraged to pass over their personal information such as passwords, bank account details and other sensitive information.
The term ‘Phishing’ is mainly used to describe attacks through email, however phishing can be conducted via social media, phone and text messages. Phishing campaigns are generally broken down into two categories:
- Mass campaigns: Where criminals target a large number of potential victims by posing as a general entity, such as a large bank or government organisation.
- Spear campaigns: Where criminals target a more refined group of potential victims, using employee information to make their messages even more realistic and persuasive.
Why Is Phishing Awareness Training Required?
- 90% of malware, including ransomware, is delivered by phishing attacks.
- Training your staff to recognise them – and take appropriate action – is one of the most important things you can do to keep your organisation secure. Your users cannot compensate for cyber security weaknesses elsewhere. Responding to emails and clicking on links is a huge part of the modern workplace, so it’s unrealistic to expect users to remain vigilant all the time.
- Spotting phishing emails is hard, and spear phishing is even harder to detect. Even experts from the National Cyber Security Centre (NCSC) struggle. Phishing Awareness Training is your opportunity to test users with real-time, realistic phishing emails. Will they spot something ‘phishy’ going on?
Our Phishing Awareness Offering
Our fully-managed Phishing Awareness Training programme includes extensive phishing simulations and annual subscriptions to our Security Awareness Training Platform.
Full Support
Our team creates and executes phishing simulation tests alongside awareness training. Sitback and let us do the work.
No Hardware Or Software To Buy Or Maintain
Simply get the data you need to identify security weaknesses.
Security Awareness Is Always Top of Mind
Simulated phishing attack emails help reinforce security awareness training.
Professional Campaign Design
An extensive phishing template library allows for optimal testing.
Scheduling
Tests can be scheduled to run at any time in the future and can be configured with different time zones.
Detailed Reporting And Expert Analysis
Receive real-time reports and review the analysis with our team on completion of campaigns.