Humans can be either the strongest or weakest defences against threats. Security leaders are, more than ever, seeking to increase security awareness and influence end-user behaviour while also boosting security performance, as well as supporting productivity, accountability and compliance.

A good security awareness program should educate employees about corporate policies and procedures for working with information technology.  Employees should receive information about who to contact if they discover a security threat and be taught that data as a valuable corporate asset. Regular training is particularly necessary in organizations with high turnover rates and those that rely heavily on contract or temporary staff.  Confirming how well the awareness program is working can be difficult. The most common metric looks for a downward trend in the number of incidents over time.

Train your users with PhishMe Simulator

In Q1 2016, the PhishMe Research team determined that ransomware now accounts for 50% of all phishing emails. As of the end of March, 93% of all phishing emails analysed contained encryption ransomware. And the number of phishing emails hit 6.3 million in the first quarter of this year, a 789% increase over the last quarter of 2015.

The numbers are alarming. Empower your employees to be your last line of defence with PhishMe Simulator which uses industry-proven behavioural conditioning methods to better prepare employees to recognize and resist malicious phishing attempts–transforming one of your biggest liabilities into your strongest defence.

PhishMe Simulator was designed to change risky behavior and enable employees to recognize and report malicious phishing emails.The PhishMe methodology entails periodically immersing employees in simulated real-life phishing scenarios that deliver hands-on experience with safe examples and on-the-spot education opportunities.  The PhishMe research teams use real phishing emails to create timely examples and content focused on today’s greatest threats such as Business Email Compromise (BEC) and ransomware.

PhishMe scenarios recreate a variety of such real-world attack techniques and escalate the latest and most critical phishing simulations as ‘Active Threats’ that include:

  • Ransomware
  • Business Email Compromise (BEC)
  • Spear phishing attacks
  • Social engineering attacks
  • Malware and malicious attachments
  • Drive-by attacks
  • Advanced conversational phishing attacks

By leveraging phishing examples analyzed as part of the PhishMe Intelligence service, PhishMe Simulator delivers the latest tricks and tactics being used in real-world phishing attacks.