Why It's Tough To Spot a Phishing Attempt

GETTING OUT PHISH NET OF THE HOW TO TURN PEOPLE INTO YOUR GREATEST SECURITY ASSET IN 2018 ALONE, OF PEOPLE RECEIVED OF BUSINESSES EXPERIENCE 83% PHISHING EMAILS 64% PHISHING ATTACKS WHY IT'S TOUGH TO SPOT A FAKE 49% OF HACKERS PREFER TO EXPLOIT HUMAN NATURE, NOT TECH THEY ATTACKS ARE INCREASING MORE THAN EXPLOIT DOUBLING FROM 2013-2018 EMOTIONS WHY ISN'T LOOKING OUT FOR RED FLAGS ENOUGH? »384 BILLION EMAILS ARE SENT EVERY DAY 85% ARE SPAM IN 2018 8 IN 10 PEOPLE EXPERIENCEDA PHISHING ATTACK MANY EMPLOYEES ARE LEFT IN THE DARK 2 IN 3 CONSUMERS 1 IN 3 HAVE BEEN HAD A COMPUTER INFECTED HAVE RECEIVED WITH A VIRUS OR MALWARE COMPROMISED PHISHING EMAILS BEEN NOTIFIED THEIR ACCOUNT WAS COMPROMISED TT HAD A SOCIAL MEDIA OR EMAIL ACCOUNT HACKED AS A RESULT, PHISHING VICTIMS EXPERIENCED 65% 49% O24% COMPROMISED ACCOUNTS MALWARE INFECTIONS LOSS OF DATA BUSINESSES LOSE NEARLY $2 MILLION PER INCIDENT 67% 54% 50% DECREASED PRODUCTIVITY DATA LOSS REPUTATION DAMAGE 1 IN 3 CONSUMERS WILL STOP USING A BUSINESS AFTER A SECURITY BREACH SOCIAL ENGINEERING 101 72% OF EMPLOYEES REPORT THAT PROTECTING THEMSELVES FROM EMAIL ATTACKS HAS BECOME MORE DIFFICULT SINCE 2016 THE PSYCHOLOGY OF PHISHING WHAT DO WE FALL FOR? TOLL VIOLATION NOTIFICATION CREATES A SENSE OF URGENCY INVOICE PAYMENT REQUIRED MIMICS REALISTIC PERSONALIZED MESSAGES UPDATED BUILDING EVACUATION PLAN PREYS UPON FEAR WITH NEED-TO-KNOW INFO 93% OF SOCIAL MEDIA ATTACKS WERE PHISHING RELATED CYBERSECURITY THAT WORKS: WHY YOU NEED PEOPLE, NOT JUST TECH ANNUAL TRAINING IS NOT ENOUGH OF INFOSEC PROFESSIONALS "RECOMMEND" TRAINING 95% EMPLOYEES TO IDENTIFY PHISHING ATTACKS DESPITE ANNUAL TRAINING, 35%% OF EMPLOYEES DON'T KNOW WHAT "PHISHING" MEANS 1 IN 10 HAVE CLICKED A LINK IN A PHISHING EMAIL CURRENT PHISHING SOLUTIONS ALONE AREN'T SCALABLE MANY EMPLOYEES FORWARD SUSPICIOUS EMAILS TO IT OF ALL EMAILS FLAGGED BY EMPLOYEES, JUST 15% ARE ACTUALLY MALICIOUS - AND MANY MALICIOUS EMAILS FALL THROUGH THE CRACKS PEOPLE LEARN BETTER THROUGH PRACTICE & REINFORCEMENT 76% 74 OVER HALF OF INFOSECURITY OF PROFESSIONAL PHISHING ICTIMS PROFESSIONALS BELIEVE RECEIVE ODITIONAL COU TRAINING HAS REDUCED FROM A MANAGER RATHER THAN PHISHING SUSCEPTIBILITY NEGATIVE CONSEQUENCES OF HACKERS SAY THEY'RE RARELY IMPRESSED BY AN ORGANIZATION'S SECURITY MEASURES THE KEY TO SECURITY IS PEOPLE TRAIN EMPLOYEES GIVE THEM GIVE THEM TOOLS THAT TO SPOT PHISHING FEEDBACK ON THEIR ALLOW THEM TO APPLY ATTACKS EFFECTIVENESS THEIR TRAINING N 2018 93% OF SECURITY BREACHES INVOLVED PHISHING* ATTACKS THE INTERNET IS FULL OF DARK ALLEYS – GIVE YOUR EMPLOYEES FLASHLIGHTS TO SEE THROUGH DECEPTION Sources: nuix.com/black-report/black-report-2018 symantec.com/security-center/threat-report talosintelligence.com/reputation_center/email_rep paypal.com/us/brc/article/what-is-phishing-or-spoofing fortune.com/2017/04/27/facebook-google-rimasauskas/ Presented by: PHISHCLOUD secuny magazine.com/news/mps-bombarded-spam-brexit-no-deal/ norton.cominternetsecurity-emerging-threats-what-is-formjacking.html us.norton.com/internetsecurity-malware-ransomware-5-dos-and-donts.html enterprise.verizon.com/resources/reports/2019-data-breach-investigations-report.pdf nhich phishingbox.com/downloads/Verizon-Data-Breach-Investigations-Report-DBIR-2017.pdf DEVELOPED BY N NOWSOURCING phishingbox.com/assets/files/images/Check-Point-Research-Information-Security-Report-2018.pdf cofense.com/wp-content/uploads/2017/11/Enterprise-Phishing-Resiliency-and-Defense-Report-2017.pdf info.wombatsecurity.com/hubfs/Wombat_Proofpoint_2019%20State%20of%20the%20Phish%20Report_Final.pdf tripwire.com/state-of-security/security-awareness/6-common-phishing-attacks-and-how-to-protect-against-them/ deloitte.com/content/dam/Deloitte/uk/Documents/consumer-business/deloitte-uk-consumer-review-nov-2015.pdf cisco.com/c/dam/m/digital/elq-cmcglobal/witb/1872724/ESG-Solution-Showcase-Cisco-Email-Oct-2018.pdf?oid=anrsc013962