Social engineering, or the act of attacking the human element of security, poses a risk to our industry. In order to improve our overall information security, we are recommending that we conduct simulated social engineering attacks to evaluate our employees’ susceptibility to such tactics.
Testing your employees with simulated phishing attacks is an important part of your overall security awareness program. Our PhishingLure technology makes it easy to measure and demonstrate your employees’ aptitude and progress on highly visual dashboards and reports. Your employees are on the front line in the anti-phishing battle and you can’t win without them.
Social engineering attacks are a significant threat to businesses. This is a concern for us as 91% of hacking attacks begin with a phishing or spear-phishing email and the average cost of data breach is $7.2 million or $156 per compromised record. In 2015, the number of spear-phishing campaigns targeting employees increased 55%. In addition, the threat is increasing every day. The number of phishing attacks in Q1 2016 was higher than any total since 2004. At same time, social engineering prevention and testing is often overlooked. Less than 46 percent of companies perform any type of social engineering training or testing.
Contact us with any questions regarding our web-based application for conducting social engineering testing. The system is offered as a software-as-a-service solution and may be used by companies directly of via a audit or security firm that tests the employees of their clients.