by Lisa Brownlee 15th October 2015
http://inhomelandsecurity.com/wp-content/uploads/2015/10/wpid-thumbnail-6b894efee45416ade2e0120ec55d3a08.jpg
Simulated phishing attack training yields up to a 37 percent return on investment, according to that Ponemon study. Training employees by having them experience, rather than read about, phishing attacks successful, but unfortunately is an underutilized security training tool. Phishing simulation training is “one of the premiere examples of what security training should look like” but that “comprehensive, ongoing simulation-based security training is rare,” a senior director of technology analysis at the Computing Technology Industry Association told CSO Online.
Infosec Institute has generously set up a webapp to help the general public send fake, harmless phishing emails to friends, family and colleagues. The site, Phish.io, is a free phishing simulator that you sign up for and send simulated phishing emails. Infosec Institute assures me that it does not use your information or that of the recipients of the mails for unsolicited promotional emails.
Full Article
Simulated Phishing Attacks Yield 37 Percent Return On Investment
+54
Excellent article on this approach to security training.. by training and simulation examples puts hands on experience for those that are learning about these exploits.
+54I remember a topic I posted quite a while ago about phishing, and it gave examples and we had to work out which were the phishing scams, it was extremely hard with some of them and that was if we were actually looking hard. People need educating more and at an earlier age. Although there will be improvements with the launching and detection of phishing scams, awareness may be one of the key approaches to prevention.
Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.