Cybercriminals know many doors to open for many other types of attacks, or exploitations of vulnerabilities. Therefore, as a role-based approach to security awareness education, phishing simulations and training are important to any organization that will be an integral part of overall security awareness education and training programs. Phishing simulation can help organizations to deliver the right training to the right people at the right time, considering that colleagues or employees have become the weak link in the cybersecurity chain thanks for phishing.
Keepnet Labs' phishing simulation is important owing to the fact that it basically has selected the human element as the baseline.
In this longitudinal study, we took our case from Keepnet Labs' phishing simulation platform in which more than a hundred companies exercised phishing simulation. We investigated this section in three parts:
- Analysis of top 10 industries
- Examination of total emails sent within one year
- Evaluation of social engineering attacks of top five companies with the largest number of users