Don't be Phish seems to be going great! Since the beginning of the safety training, we have been observing and reporting on this campaign again and again.

With the support of Cologne Mayor Henriette Reker, various partners from Cologne, Leverkusen and the Rhein-Erft district (including the police, the cities of Leverkusen and Cologne, the internet association eco eV as well as the companies Trusted Shops and eyeo) started on October 1st, 2019. Together with the IT security company SoSafe, we offer free IT security training to protect against fraudsters on the Internet. at www.phish-test.de and receive three simulated phishing emails within a week.

This allows you to check the spam filter (on average, more than half of the emails get through and end up in your inbox) and to put your own attentiveness to the test. If you “fall for” one of the emails – for example by clicking on a link or opening an attachment – ​​a learning page opens where you learn how you could have recognized the attempted fraud. At the end of the campaign, each participant receives an individual evaluation.

[mk_ad]

Don't be a Phish halftime results

After more than a thousand registrations, various press reports - including extensive reporting on the tech blog mimikama.org - as well as a criminal complaint (!) based on a “www.phish-test.de” email, it is time to take a short interim assessment:

  • More than half of the emails sent passed the spam filters, ended up in the participants' inboxes and were then opened by them (58.2%)
  • The average click rate was 19.8% - that is, one in five phishing emails sent is successful and lets users fall for the bait! The most successful psychological tactic used was to build up pressure/fear, for example in the form of a warning letter.
  • The email classified as “difficult”, although it also contains several clear signs of attempted fraud, was apparently so convincing that one participant filed a criminal complaint with the criminal police. Fortunately, our colleagues were able to clear this up quickly.

The quote from a user, which was submitted in the feedback form associated with the campaign, goes in a similar direction:

“Wow… and I thought I was well prepared. Think. 2 emails, fell in twice.”

This all shows how phishing emails, even if they are not individualized and even expected by participating in the campaign, can still pose a significant threat. For this reason, SoSafe also offers companies the opportunity to train their entire workforce in the area of ​​IT security with appropriate phishing simulations and interactive e-learning.

Join now!

The emails are very well done, the irregularity in which they are sent makes it all the more difficult to immediately expose them as fake. We at Mimikama can therefore highly recommend the “Don’t be a Phish” security training course.

Put yourself and your spam filters to the test and take part in the “Don’t be a Phish!” campaign at www.phish-test.de – the campaign only runs until the end of October, so it’s best to register now!

Article Image By Cookie Studio / Shutterstock.com
Sign up for the Mimikama newsletter

Notes:
1) This content reflects the current state of affairs at the time of publication. The reproduction of individual images, screenshots, embeds or video sequences serves to discuss the topic. 2) Individual contributions were created through the use of machine assistance and were carefully checked by the Mimikama editorial team before publication. ( Reason )