Erfaringer med simulert phishing

Vurderer du å gjennomføre simulert phishing i virksomheten din? Se denne videoen for tips til forberedelse og gjennomføring av deres egen interne phishing-kampanje.

På konferansen PreParanoia, 21. mai 2019 i Oslo, deltok Erlend Andreas Gjære med foredraget «Experiences with simulated phishing». Hele presentasjonen kan du se i videoen under.

Is it okay to trick your own colleagues? With simulated phishing, this is precisely what we do, when sending employees fake emails to increase their awareness. Maybe you have tried something like this in your company already, or maybe you are still assessing whether this is really a good idea or not.

In any case, this talk will offer useful steps to prepare and launch your own internal phishing campaign. We will also discuss how to measure and get value from the results, including on the long term, and how to ensure all of this is done in a privacy friendly way with «teachable moments» for everyone.

Les også:

Last updated:

10 December 2019

Share this:

Language:

Norwegian

Show translation:

English

Engage

MailRisk analysis and response

Stop suspicious emails →

Influence

Simulated phishing and e-learning

Make training personal →

Cultivate

Metrics and measures for change

Build security culture →

Contact the author:

Erlend Andreas Gjære

Co-founder / CEO

(+47) 90 61 24 35

erlend@securepractice.co

MailRisk integrerer simulert phishing med effektiv rapportering.

Prøv selv med en helt uforpliktende prøveperiode.

Bestill her →

Continue reading

Simulated phishing: How to design a suitable scam

How do you prepare the most effective phishing email to serve the goal of your exercise? In the third part of this series on simulated phishing, we describe various approaches to designing phishing content.

How to succeed with security behavior change

To stay safe online, people need to care more about the security decisions they face every day. But unless the obvious gains obviously exceed the required effort, change is often avoided. Luckily, behavior change in general has been subject to a lot of research, and here are some takeaways for information security professionals.

Simulated phishing: Communications strategy

How do you prepare an organization for you to try and trick them? In the second part of this series on simulated phishing, we provide the outline for a communications plan.

See all posts →

Human security sensors ebook cover

Ready to get started?

We have written a guide for you to get started with human-centered security. Access our free resource now, and learn:

  • How to nurture drivers for employee engagement
  • How to avoid common obstacles for reporting
  • Practical examples and steps to get started

Download free PDF →