Computers are becoming an intricate part of our daily lives. Organizations and companies employ security specialist to protect their networks and databases. One of the weakest links in this chain of security is the employees and daily users. Attackers use social engineering tactics to lead their attack on the targeted company. One of the most popular ways to do this is “phishing” attacks. This is kind of attack is where the attacker will design an email that mimics a legitimate source and fool the user into clicking on the link. An example of this would be where you get an email that your account has been changed and it request you to log in. You click on the link and enter your credentials to fix the problem. The attacker has now successfully employed his attack and has your information.
Companies that are looking protect their assets can promote cyber awareness. They can do this by creating a mock “phishing” attack. This is usually free to do and does not require excessive time to setup this. Once the pesudoattack has been deployed, it will allow the companies to see which users easily fall prey to these attack. The amount of users that fall prey will usually be surprisingly high. This information can be used to help educate the employees of safer practices. It will give them an idea of how attacks are used and how easy it is to fall into an attackers traps. Cyber security training is no longer optional. It has become an extremely important task. This type of training should be done regularly to insure users are practicing safe work habits.
