According to estimates, 91% of all cyberattacks begin with a phishing email and phishing techniques are involved in 32% of all successful data breaches.
To provide more insight into this threat, Kaspersky has analyzed data collected by the phishing simulator voluntarily provided by users to check whether its staff can distinguish a phishing email from a real one without putting corporate data at risk. An administrator chooses from the templates, mimicking common phishing scenarios, or creates a custom template. You then send it to the group of employees without warning them and track the results. Many users click on the link, which is a clear indication that additional cybersecurity awareness training is required.
According to recent phishing simulation campaigns, the five types of phishing emails most effective for cybercriminals are:
Other phishing emails that garnered a significant number of clicks included reservation confirmations from a booking service (11%), a notification about placing an order (11%), and a contest announcement from IKEA ( 10%).
On the other hand, emails that threaten the recipient or offer instant benefits appear to be less “successful.” A template with the theme “I hacked your computer, and I know your search history” got 2% of clicks, while offers of free Netflix and $1,000 for clicking a link fooled only 1% of employees.
“Phishing simulation is one of the easiest ways to track employees’ cyber resilience and evaluate the efficiency of their cybersecurity training. However, important aspects must be taken into account when carrying out this evaluation so that it is truly impactful,” comments Alfonso Ramírez, general director of Kaspersky Iberia. “As the methods used by cybercriminals are constantly changing, the simulation must reflect up-to-date social engineering trends, along with common cybercrime scenarios. “It is crucial that simulated attacks are carried out regularly and complemented by appropriate training so that users develop a strong vigilance skill to avoid falling into targeted attacks or spear phishing.”
To prevent data breaches and any related financial and reputational loss caused by phishing attacks, Kaspersky makes the following recommendations to businesses:
Buying a second hand laptop can be quite an quest, and there are many times…
Augmented Reality is an immersive technology that enhances product presentation in retail by overlaying digital…
When it comes to shopping, every user turns to Google at one point or another,…
Drawing:acotuuvra54= harry potter is related to a Harry Potter character art; you can also call…
In this article, we explain what long-tail keywords are and why it is important to…
New Meta updates have arrived that will transform the way we manage and optimize advertising…