Don’t skimp on IT security training: 27% of employees fall prey to phishing attacks>
Tech Republic – Alison Denisco Rayome
⢠17% of social engineering attacks are successful, and could lead to the compromise of a company’s entire corporate infrastructure. â Positive Technologies, 2018 ⢠27% of employees clicked an emailed phishing link, making it the most effective method of social engineering. â Positive Technologies, 2018 Employees not only open unknown files and click suspicious links, they sometimes correspond with attackers, the report found. In 88% of cases of correspondence, the employees worked outside of the IT department. However, 3% of security professionals did so as well. Hackers have also learned that sending messages from fake companies is less effective than in the past, causing only 11% of risky actions from employees, the report found. However, sending messages from the fake account of a real company and person increases the odds of success to 33%. These attackers also carefully select email subject lines to illicit a response from employees, including “list of employees to be fired” (which caused 38% of risky actions), and “annual bonuses” (which caused 25%).
Link: https://www.techrepublic.com/article/dont-skimp-on-it-security-training-27-of-employees-fall-prey-to-phishing-attacks/