Scribd Logo
Upload

Welcome to Scribd!

  • Sophos Phishing Insights Infographic

    Uploaded by

    kushalvarshney
    8 views1 page
    The document summarizes the findings of a survey of 5,400 IT professionals across 30 countries on the topic of phishing. Some key findings include: 1) There are differing understandings of what constitutes phishing among professionals and users. 2) Phishing attacks have increased considerably since the start of the COVID-19 pandemic, especially in the government, business, and healthcare sectors. 3) Most organizations run cybersecurity awareness programs focused on computer-based training and phishing simulations to address phishing threats.

    Original Description:

    Original Title

    sophos-phishing-insights-infographic

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document summarizes the findings of a survey of 5,400 IT professionals across 30 countries on the topic of phishing. Some key findings include: 1) There are differing understandings of what constitutes phishing among professionals and users. 2) Phishing attacks have increased considerably since the start of the COVID-19 pandemic, especially in the government, business, and healthcare sectors. 3) Most organizations run cybersecurity awareness programs focused on computer-based training and phishing simulations to address phishing threats.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    8 views1 page

    Sophos Phishing Insights Infographic

    Uploaded by

    kushalvarshney
    The document summarizes the findings of a survey of 5,400 IT professionals across 30 countries on the topic of phishing. Some key findings include: 1) There are differing understandings of what constitutes phishing among professionals and users. 2) Phishing attacks have increased considerably since the start of the COVID-19 pandemic, especially in the government, business, and healthcare sectors. 3) Most organizations run cybersecurity awareness programs focused on computer-based training and phishing simulations to address phishing threats.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 1

    Phishing

    Insights
    Findings from an independent survey of
    5,400 IT professionals across 30 countries

    Phishing means different things to different people

    57% 46% 36%

    consider emails that falsely consider Business Email consider threadjacking to be


    claim to be from a legitimate Compromise (BEC) to phishing i.e. when attackers
    organization, usually combined be phishing insert themselves into a
    with a threat or request for legitimate email thread as
    information to be phishing part of an attack

    TAKEAWAY: BE MINDFUL THAT PEOPLE UNDERSTAND THE TERM ‘PHISHING’


    DIFFERENTLY WHEN PROVIDING USER EDUCATION AND TRAINING. WITHOUT
    THE CORRECT CONTEXT, THE TRAINING WILL BE LESS EFFECTIVE.

    Phishing has increased considerably


    since the start of the pandemic
    70% of IT professionals have seen an increase in phishing attacks on their organization.
    The most affected sectors are:

    +77% +76% +73%


    Central government Business and Healthcare
    professional services

    TAKEAWAY: DON’T LET UP IN YOUR ANTI-PHISHING EFFORTS.


    CYBER CRIMINALS ARE INCREASING THEIR USE OF THIS
    TECHNIQUE AND NO INDUSTRY OR COUNTRY IS SPARED.

    Most organizations run cybersecurity


    awareness programs to address phishing

    90%
    Run cybersecurity
    58% run computer-based training
    53% run human-led training
    43% run phishing simulations
    awareness programs

    TAKEAWAY: IF YOU’RE IN THE 10% THAT DOESN’T YET HAVE


    A CYBERSECURITY AWARENESS PROGRAM TO ADDRESS
    PHISHING, PUT ONE IN PLACE WITHOUT DELAY.

    Phishing awareness programs are well established

    65% 98%
    of programs were of programs were in
    implemented between place before COVID-19 hit
    one and three years ago

    TAKEAWAY: BE SURE TO REGULARLY REVIEW AND UPDATE YOUR


    PHISHING AWARENESS MATERIALS AND ACTIVITIES TO ENSURE
    THAT THEY ARE STILL RELEVANT AND ENGAGING FOR YOUR USERS.

    Positive tracking measures dominate


    training effectiveness assessment

    68% 65% 50%

    track number of track level of reporting track click rate on


    phishing-related of phishing emails phishing emails
    tickets raised with IT raised by users

    TAKEAWAY: REGULARLY REVIEW YOUR USER EDUCATION PROGRAMS


    IN LIGHT OF THE RESULTS OF YOUR ASSESSMENTS AND FOCUS ON
    RECOGNIZING AND CELEBRATING POSITIVE BEHAVIORS.

    Get AI-powered phishing


    protection with Sophos Email
    Real-time scanning for
    Advanced machine Pre and post delivery
    key phishing indicators
    learning identifies phishing protection stops malicious
    blocks social engineering
    imposters and BEC attacks links and malware
    techniques

    Learn more and try for free at sophos.com/email

    You might also like