tha security awareness training
TRANSCRIPT
The link you clicked on was part of a
phishing awareness campaign.The following is for your education, so please continue
through this exercise. You will learn about the risks of
phishing and some common traits to help identify phishing
attacks. Please read each slide carefully and completely.
What is Phishing?( hint: it’s tricking an end user via a fake email! )
What is Phishing?Phishing refers to emails sent to legitimate email
accounts, constructed to simulate REAL email
messages, in hopes that unsuspecting, trusting
users will “click” on a link or open an infected
attachment. The perpetrators are “phishing” for
usernames and passwords so that they can gain
access to the corporate network.
Phishing Emails Work
50%open emails and
click on phishing
links within the
first hour
11%click on
attachments
Two thirds of
incidents feature
phishing Phishing is
the most
used tactic in
Cyber-Espionage
91%of targeted
attacks use
spear-phishing
emails.
What can be done?
Improved
e-mail filtering
(technology)
Human sensor
network
(YOU!)
A NETWORK OF HUMAN SENSORS ARE MORE EFFECTIVE AT
DETECTING PHISHING ATTACKS THAN ALMOST ANY TECHNOLOGY
Source: 2015 Verizon Data Breach Investigations Report
Phishing in the News
Phishing
in the
News
A single victim
of a phishing
attack can
impact on
millions.
Phishing
in the
News
No Company
Is Immune!Even security
companies can
fall victim.
Phishing
Attacks
Look Real
Phishing
Attacks
Look Real
Phishing
Attacks
Look Real
Phishing
Attacks
Look Real
Phishing
Attacks
Look Real
What can you do?
Know the signs
of a phishing
attack
Report phishing
attacks to the IT
Department
How to
detect a
Phishing
Common Phishing Traits
1
2
3
4
5
6
1. Generic greeting
2. Invokes fear
3. Requires action
4. Threatening language
5. Grammar issues
6. Generic closing
DO hover over links verify its location
DO NOT click on unknown links
DO NOT reply to suspicious requests
DO report the suspected attack
What to do?
When in doubt, contact the
I.T. department or Your Supervisor
DO NOT CLICK, RESPOND OR DOWNLOAD!
Courtesy: Action Fraud and the National Fraud Intelligence Bureau
Thank you for your attention
and participation.
If you have questions or wish to provide feedback or
comment, please email