• Product
      • circleROAR Platform
      • cogwheelZenComply
      • lockZenRisk
      • globeZenGRC Platform
      • chartRisk Intellect
      • kes tagPricing
    • Solutions
      • By Industry
        • TechnologyTechnology
        • Financial ServicesFinancial Services
        • HospitalityHospitality
        • HealthcareHealthcare
        • GovernmentGovernment
        • Higher EducationEducation
        • retailRetail
        • MediaMedia
        • InsuranceInsurance
        • ManufacturingManufacturing
        • Oli & GasOil & Gas
      • By Framework
        • PopularPopular
          • ISO
          • PCI
          • SOC
          • COSO
          • SSAE 18
        • PrivacyPrivacy
          • CCPA
          • GDPR
        • HealthcareHealth Care
          • HIPAA
        • GovernmentGovernment
          • NIST
          • FedRAMP
          • FERPA
          • CMMC
          • FISMA
        • FinanceFinance
          • SOX
          • COBIT
    • Success
      • customer-successCustomer Success
    • Resources
      • Resource CenterResource Center
      • Reciprocity CommunityReciprocity Community
      • NewsroomNewsroom
      • EventsEvents
      • BlogBlog
      • Customer StoriesCustomer Stories
      • Content RegistryContent Registry
    • Company
      • About UsAbout Us
      • Contact UsContact Us
      • CareersCareers
      • Leadership
      • Trust CenterTrust Center
      • PartnersPartners
      Get a Demo

        Cybersecurity Awareness Month: Don’t get Caught! How Phishing Attacks Can Sink Your Organization

        Published October 18, 2022 • By Chasserae Coyne, Technical Product Manager • Blog
        Cybersecurity Awareness Month: Phishing

        When I was an Information Security Manager, it was my team’s job to keep our networks and data safe from bad actors who wanted to compromise them. We put in state-of-the-art systems and tools, stayed up to date on all the latest trends and threats, attended security conferences, and worked with ethical hackers. We even hired a security consulting team that would, twice a year, try to breach our systems to assess how well our security mechanisms worked. And they confirmed what we already knew – our systems were super secure, and the security team was at the top of their game.

        Curious about how the security consultants finally breached our organization?

        They sent a group of our employees a phishing email to renew their license, and one of them clicked the malicious link inside it. When our tools stopped the malware from running, they performed another type of social engineering – they called the employee directly and, while pretending to be someone on our security team, asked her to type a malicious URL into her browser address bar.

        See also

        [Webinar] Powerful Cybersecurity Lessons from the Movies

        How Phishing Impacts Your Organization

        Phishing is a type of social engineering done through email that convinces the person receiving the message to click malicious links, download malicious attachments, and reveal confidential information to compromise an organization. Phishing emails are one of the most pervasive threats we face in keeping our networks and data secure and affect every industry, organization, and employee.

        Here are just a few phishing statistics1 according to CISCO’s Cybersecurity Threat Trends Report2 to put this in perspective:

        • Phishing is responsible for 90% of data breaches
        • 86% of organizations have had at least one person click a malicious link in a phishing email
        • 65% of targeted attacks were spear phishing, which is when the bad actors target a specific person or group of people in an organization
        • When a phishing attack is successful, organizations lost data (60%), had credentials or accounts compromised (52%), were infected with ransomware (47%), were infected with malware (29%), and experienced financial loss (18%)
        • Phishing is the second most expensive cause of a data breach, with an average cost to businesses of a whopping $4.65 million

        And the most telling statistic of all? When asked “What is phishing?,” only 52% of people in the United States could answer the question correctly.

        Address Phishing With the Reciprocity ROAR Platform

        But it’s not all bad news! It’s clear that effective security awareness programs and security-minded employees are crucial components in preventing breaches. With the Reciprocity® ROAR platform, you can keep track of your program’s effectiveness to ensure your employees are learning the right information at the right time to keep your organization safe and your data secure. And bonus, you can also ensure you’re staying compliant with your security frameworks! That’s a win-win for both risk and compliance.

        Why not give it a try? Sign up for our FREE trial of the Reciprocity ROAR Platform. No credit card required, unlimited time to explore. Or register for a FREE live demo to see ROAR in action.


        1 Must-Know Phishing Statistics (Tessian)

        2 CISCO’s Cybersecurity Threat Trends Report

        Why sign up for the Risk Insiders newsletter?

        To stay in the know! Get new blogs, resources, CPE opportunities, industry research & more — direct to your inbox.

        Thank you for subscribing to the Risk Insiders newsletter!

        Recommended

        Image
        Cybersecurity Awareness Tip: Using Strong Passwords
        Cybersecurity tip: Use strong passwords
        Security

        Cybersecurity Awareness Tip: Using Strong Passwords

        Read more
        Image
        Your Security Approach Could Be Putting Your Business at Risk
        taking a risk-based approach to business security
        Security

        Your Security Approach Could Be Putting Your Business at Risk

        Read more
        Image
        Cybersecurity Awareness Month: Enable Multi-factor Authentication
        Cybersecurity Awareness Month: Enable Multi-factor Authentication
        Compliance

        Cybersecurity Awareness Month: Enable Multi-factor Authentication

        Read more

        Discover the Power of the Reciprocity ROAR Platform

        Get a Demo
        Reciprocity Logo
        Product
        • ROAR Platform
        • ZenComply
        • ZenRisk
        • ZenGRC Platform
        • Risk Intellect
        • Pricing
        Solutions
        • Industries
        • Frameworks
        Success
        • Customer Success
        Resources
        • Resource Center
        • Reciprocity Community
        • Newsroom
        • Events
        • Blog
        • Customer Stories
        • Content Registry
        Company
        • About Us
        • Contact Us
        • Careers
        • Leadership
        • Trust Center
        • Partners
        Contact Us
        Contact Us

        © 2023 All rights reserved

        Privacy Policy