Phishing Awareness Exercises

Author:
Ronald Dodge, Ericka Rovira, Radwick Zachary, Shevchik Joseph
File Size:
220.27 kB
Date:
01 July 2011
Downloads:
3927 x

The vulnerability of users to social engineering is well known, however very few techniques have been developed to successfully mitigate the threats users unwittingly expose our infrastructure to. Annual training and awareness campaigns have done little keep users vigilant against the many forms social engineering, especially phishing emails. Phishing is regarded as one of the most effective social engineering attacks. In this paper we describe an effort to increase the awareness of users through a campaign of training, policies, and assessment.

Phishing Awareness Exercises