New-school Security Awareness Training
“But we have firewalls and intrusion-detection…”
We hear the above comment quite often but what the organisations don’t realise is that employees are the weak link in their network security. Staff members are frequently exposed to sophisticated phishing and ransomware attacks, which bypass the firewalls and IDS. In fact, 91% of successful data breaches started with a spear phishing attack. Employees need to be trained and remain on their toes with security top of mind.
Exactech Forensics have partnered with KnowBe4 to provide you with a platform to better manage the urgent IT security problems of social engineering, spear phishing and ransomware attacks. KnowBe4 is the world’s largest Security Awareness Training and Simulated Phishing platform with over tens of thousands of customers.
With this new service offering, you can know before the hackers and fraudsters strike if you are vulnerable, and then plug the hole/s – or you can wait until you become a victim.
If you would like to ‘KnowBe4’, it’s a simple four step process:
The System Really Works!
After years of KnowBe4 helping customers train their employees to better manage the urgent IT security problems of social engineering, spear phishing and ransomware attacks, they decided to go back, and look at the actual numbers over a 12-month period.
KnowBe4 aggregated the numbers and the overall Phish-prone percentage drops from an average of 30% to 15% after just three months and then to an amazing 2% in just 12 months.
The combination of web-based training and frequent simulated phishing attacks really does work!
These results clearly show the sequence of:
1) The initial Phishing Security Test (PST) that shows the baseline Phish-prone percentage.
2) Stepping all employees through our Security Awareness Training.
3) Follow up with frequent PSTs that continue to keep them on their toes. All our customers’ graphs start out high on the left (baseline) and drop dramatically over time.
Employees get the understanding that each email could be a phishing attack and they need to STOP, LOOK and THINK for a second or two before they click on any link in an email or open an attachment.
The monthly PSTs make sure that this behavioural change that was started by the training, actually gets reinforced and applied in their day-to-day office life.
“People are used to having a technology solution but social engineering bypasses all technologies, including firewalls. Technology is critical, but we have to look at people and processes. Social engineering is a form of hacking that uses influence tactics”
– Kevin Mitnick (the world’s most famous hacker)