• Home
  • Advertising
    • Why Advertise
    • Create Your Campaign
  • About
    • About Security on Screen
    • Privacy Policy
  • Webinars
  • Social Wall
  • Contact Us
Monday, July 4, 2022
No Result
View All Result
  • Login
  • Register

No products in the basket.

Submit News
Submit video
  • Create Your Campaign
  • Product Groups
    • Access Control
    • Biometrics
    • Physical Security
    • Smart City
    • Surveillance
    • Systems Integration
  • Cyber-Security
  • Industry sectors
    • Banking
    • Casinos
    • City Surveillance
    • Data Centres
    • Government
    • Healthcare
    • Leisure
    • Manufacturing
    • Retail
    • Schools and Campus Security
    • Transport
    • Utilities
  • Business News
    • New Technology
    • Opinion
    • People
    • Education & Events
  • Create Your Campaign
  • Product Groups
    • Access Control
    • Biometrics
    • Physical Security
    • Smart City
    • Surveillance
    • Systems Integration
  • Cyber-Security
  • Industry sectors
    • Banking
    • Casinos
    • City Surveillance
    • Data Centres
    • Government
    • Healthcare
    • Leisure
    • Manufacturing
    • Retail
    • Schools and Campus Security
    • Transport
    • Utilities
  • Business News
    • New Technology
    • Opinion
    • People
    • Education & Events
No Result
View All Result
No Result
View All Result

Opinion | Phishing for humans – what do the numbers teach us?

by Zoe Deighton Smythe
20/05/2021
in Cyber Security, Opinion, PRESS RELEASE
Opinion | Phishing for humans – what do the numbers teach us?

Top social media email subjects - phishing tests

Javvad Mailk, Security Awareness Advocate of KnowBe4, gives his insight on phishing attempts over the last quarter

Humans are curious. They also want to inherently “fix” things”. And they’re social beings. These are all traits that cyber attackers prey on – it’s what makes phishing so successful. Every quarter, we look to analyse what types of phishing attacks (simulated and in the wild) are the most clicked, so it gives organisations intelligence that they can use to improve security awareness within their businesses.

This last quarter showed us that, hey, this education does not fall on deaf ears – since those duped by COVID themed phishing emails actually decreased from previous quarters. This is a great sign; however, we also saw an increase in emails purporting to be from HR or even security-related notifications.

What this tells us is that the bad guys are unrelenting and always coming up with new ways to trick humans into clicking their links or downloading files. One only needs to look back a few weeks to see how much devastation ransomware has caused, particularly on critical infrastructure and services. And its route into the organisation? Phishing.

So, what are the most successful phishing attempts? LinkedIn phishing messages have dominated the social media category for the last three years. Users may perceive these emails as legitimate since LinkedIn is a professional network, which could pose significant problems because many LinkedIn users have their accounts tied to their corporate email addresses. Top-clicked subjects in this category also include Facebook and Twitter notifications, message alerts and login alerts.

The Top 10 Most-Clicked General Email Subject Lines Globally for the past quarter Include:

  1. Password Check Required Immediately
  2. Revised Vacation & Sick Time Policy
  3. COVID-19 Remote Work Policy Update
  4. COVID-19 Vaccine Interest Survey
  5. Important: Dress Code Changes
  6. Scheduled Server Maintenance — No Internet Access
  7. De-activation of [[email]] in Process
  8. Test of the [[company_name]] Emergency Notification System
  9. Scanned image from MX2310U@[[domain]]
  10. Recent Activity Report

Most Common ‘In-The-Wild’ Emails for the quarter Included:

  • Microsoft 365: Scheduled Server Backup
  • IT: IT-Help Ticket Survey Invitation
  • Warning: Your E-mail account has just sent 260 E-Mails
  • Amazon Prime: Action required – Card on file has been declined
  • License Update
  • Google: Take action to secure your compromised passwords
  • Apple: Prize winner! We need your confirmation
  • Zoom: You missed a Zoom meeting
  • HR: Your payroll details needs updating
  • Facebook: Important message regarding your Facebook profile

Studies such as this are important resources for organisations because they can use results to inform employees. In fact, other more general schemes like the NCSC’s suspicious email reporting service are vital to raise awareness. In the first two months of launching this tool, the NCSC received over a million reports of suspicious emails.

It goes to show that people can play an important role in identifying and reporting fraud and phishing emails and organisations should make it easy for employees and customers to report any suspicious activity. When employees feel involved as part of the solution, they are more likely to take security seriously and be vigilant with their emails.

Tags: Cyber attackscyberawareKnowBe4opinion piecePhishingsecurity awareness
ShareTweetShare

Related Posts

British Security Awards announces 2022 winners
Education & Events

British Security Awards announces 2022 winners

OneQode teams with up Corero Network Security to protect customers from malicious DDoS attacks
Cyber Security

OneQode teams with up Corero Network Security to protect customers from malicious DDoS attacks

Seagate and Secure Logiq release recording of surveillance industry storage webinar
PRESS RELEASE

Seagate and Secure Logiq release recording of surveillance industry storage webinar

Euralarm releases revised study on False Fire Alarms in Europe
PRESS RELEASE

Euralarm releases revised study on False Fire Alarms in Europe

KnowBe4 kicks off ransomware awareness month with resource kit
Cyber Security

KnowBe4 kicks off ransomware awareness month with resource kit

Panasas teams up with MLCommons for advanced machine learning
PRESS RELEASE

Panasas teams up with MLCommons for advanced machine learning

Load More

The Tannery, 3a John Street, Tunbridge Wells,
Kent TN4 9RU
All enquiries: +44 (0)1892 525141

  • Home
  • Advertising
  • About
  • Webinars
  • Social Wall
  • Contact Us
No Result
View All Result
  • Login
  • Sign Up
  • Cart
  • Home
  • Why Advertise
  • Create Your Campaign
  • About Security on Screen
    • Privacy Policy
  • Webinars
  • Social Wall
  • Contact Us
  • Business News
    • New Technology
    • Opinion
    • People
    • Education & Events
  • Product Groups
    • Access Control
    • Biometrics
    • Cyber Security
    • Physical Security
    • Smart City
    • Surveillance
    • Systems Integration
  • Industry Sectors
    • Banking
    • Casinos
    • City Surveillance
    • Data Centres
    • Government
    • Healthcare
    • Leisure
    • Manufacturing
    • Retail
    • Schools and Campus Security
    • Transport
    • Utilities

© 2020 SecurityOnScreen.com

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms below to register

*By registering into our website, you agree to the Terms & Conditions and Privacy Policy.
All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.