PhishMe’s hands-on training provides the opportunity to actually change behavior, rather than just warn users of the potential dangers an attack can pose to an organization. The simulated phishing experience provides heightened engagement and awareness of the strategies and techiniques used in these attacks and immediately trains users that fall prey to an attack to understand why they fell for it, and most importantly, how to detect phishing attacks in the future!

There are several key factors in the method that enhance the recipient’s opportunity to learn. Firstly and most critical, the experience is completely immersive. Team members receive the training scenarios while performing their normal day-to-day work activities – just like when a real attack would arrive. This prevents them from ‘tuning out’ during a scheduled training course or CBT.

Secondly, the training is provided immediately when they fall for the bait in the exercise. This takes advantage of a psychological reaction that is very similar to techniques used by investigators to obtain information during a structured interview. Instead of trying to elicit data like an investigator – PhishMe captures the individual’s attention with the training message and provides brief yet very focused information that the recipient can use to avoid real world attacks.

Lastly, the process of frequent, repeated training allows you to keep the topic fresh in the recipients mind, while teaching them about increasingly complex phishing techniques. Our clients find that regular training of the staff every two to three months provides the best return.

Using this method, PhishMe customers reduce risk by approximately 50% during the first 6 months of an effort, and can drop it by up to 85% after a year. Continual training keeps the risk levels low and helps them minimize the impact of new attacks.

NEXT: Real World Experience >>

Back to top ↑