Wombat Security Technologies published a report on simulated phishing attacks as a means of staff awareness training back in April 2013. This is the process of targeting a company's own staff with benign phishing or spear-phishing attacks. By tricking staff into clicking a link that takes them to a 'you've been phished page,' the theory (proven in practice) is that they will be less likely to be phished for real.
The report included the comment: "Some brave CSOs have even phished their own executives just to prove the point about everyone’s vulnerability." Now Wombat has put some numbers to that statement, and has found that 33% of Fortune 500 corporate executives fall for phishing attacks.
Read the full article on: