CC2i Fundamentals - Simulated Phishing
WHAT IS SIMULATED PHISHING?
As an effective educational tool, simulated phishing helps staff to identify and respond to malicious content, whether it be emails, URLs, web pages and more, all within a safe test environment. Phishing comes in many forms and simulated training expands on this, by teaching staff about the different, sophisticated techniques that attackers use to steal sensitive information such as logins, credit card numbers, identities and more. By experiencing these scenarios first hand, employees become more adept at recognising and preventing real-world attacks, thereby strengthening the organisation’s overall security posture.
WHAT IS OUR PHISHING TOOL?
Our user-friendly tool manages and automates regular organisational phishing simulation campaigns, providing clients with ease of use and a wealth of data from each campaign for detailed review. With a wide range of templates to choose from, which all mirror real life examples, staff can be robustly tested on a variety of phishing scenarios, with an emphasis on learning and reassurance, if an email or webpage is engaged with.
FEATURES
Real-time reporting and exportable pdfs per campaign
Easily configurable phishing testing through the Hut Six wizard
Consistently updated phishing attack template library
Personal information placeholders allow you to simulate spear phishing at scale
Multi-stage attacks which test the user and “steal” personal information
Randomised email scheduling, automated accounting for time zones
On-the-spot training for users who fall victim to the phishing attack
Accessible across browsers and mobile compatible
Phishing results reports across user groups and individuals
Analysis of phishing risk by attack template and attack type
BENEFITS
Improved email security within your organisation
Change employee actions with simulated phishing campaigns
Assess employee response to cyber threats with customised phishing templates
Meet compliance obligations such as ISO27001, Cyber Essentials, GDPR
Help your security team manage phishing risk for your organisation
Interactive landing pages improve the realism and the learning experience
Concise on-the-spot training educates users at the crucial moment
All-in-one phishing simulation and training cybersecurity awareness reports
Track your phishing performance over time to see risk reduction
Automated setup reduces your workload in delivering phishing campaigns
Reinforce security training with tests in the real world
Demonstrate risk to your board and stakeholders with metrics
WHY INCLUDE SIMULATED PHISHING ALONGSIDE YOUR TRAINING PACKAGE?
Phishing continues to be a leading cause of cyber attacks, with approximately 1.2% of all emails sent being malicious, which equates to around 3.4 billion phishing emails, and (on average) 57% of organisations experiencing phishing attempts on a weekly or daily basis. Engaging cyber training can help staff to recognise the telltale signs of a malicious email but to reinforce and measure this awareness, regular phishing simulation campaigns should also be conducted to ensure effective, long term change.
As Phishing continues to change and evolve, it’s also important to stay abreast of the latest techniques and methods applied by hackers to get users to hand over sensitive information. The flexibility of phishing simulator tools allows users to be continuously refreshed and tested with different templates, whilst simultaneously allowing them to recognise and mitigate any threats both in and out of the workplace.
