Office notebook. The increase in teleworking and the acceleration of digital transformations of companies on the move have made security breaches more numerous: they are said to be at the origin of 20% of cyber attacks, notes the annual PWC Global CEO Survey 2021. French leaders are increasingly worried: 47% of them fear a cyber threat against 33% in 2020. “91% of French organizations were the object of cyber attacks in 2020”, specifies the study of the audit firm.
If investments in the field are still lagging behind – only 20% of French leaders plan to increase them by more than 10% within three years – the awareness of employees, financially more accessible, has started. Training modules are designed to teach employees to detect attacks and adopt prudent practices to reduce the risk of attack via fake login pages, without transforming them into IT specialists.
“It’s about adapting to the working day without being intrusive, explains Caroline Boxberger, development director of the 2SPark platform, which has developed an awareness program of one minute per day for two months. The aim is to create the right cognitive environment and to repeat the messages to promote memorization. “
Every day, the employee receives two contextualized questions which are based on real elements of his daily work and on feedback from IT support services, which know the traps set for employees.
Business simulation
Email is the most common form of phishing. Mimicking internal company communication to obtain confidential data or install malware on the computer, it tricks the sender to click on a fraudulent link. The “Spear phishing” – “targeted phishing” – or the “CEO phishing” – “CEO phishing” – have even been specially designed for companies targeting not only one particular organization, but departments or individuals directly.
Phishing simulation is already practiced in companies to test the reaction of employees by sending them an email such as: “Problems concerning your service” ; “Your account is closed”; “You have exceeded your email quota. To increase your email quota limit to 1.7 GB, click on the link below: http://www.hamecon.com/corporate. “ The departments of the internal IT department thus identify employees who are easy to trap and the extent of the safety net to deploy.
You have 20.92% of this article left to read. The rest is for subscribers only.