News & Blog

Anti-Phishing Security Control Checklist

Phishing is a significant problem for most organizations.  As a partner in helping to minimize the impact from phishing attacks on organizations, PhishingBox has created a checklist of controls an organization should implement.  This anti-phishing checklist is designed primarily for the technical administrators along with other members of an organization’s security team or partne...

Verizon Data Breach Investigations Report (DBIR) - 2019

The 2019 Verizon Data Breach Investigations Report (DBIR) provides valuable information on the threats facing organizations today.  The DBIR is produced by Verizon with a collaboration of many security entities.  The following is a summary of finding that relate to the human element of security.Through the analysis from Verizon, and the report contributors, several threats emer...

Ten Steps to Creating a Phishing Awareness Campaign

The following slideshare, authors Christopher Hadnagy and Michele Fincher outline ten steps to creating a phishing awareness campaign for an organization.  PhishingBox provides the tools needed to easily implement such a program.   10 Steps to Creating a Corporate Phishing Awareness Program from Wiley Please contact us if you have any questions about develo...

Social Tactics Remain a Significant Threat

Social tactics includes phishing and other related social engineering activities.  Basically, social tactics are methods used to penetrate an organization’s cybersecurity defenses by attacking the human.  The employee is often considered the weakest link in the security chain.  The primary reason that the employee is often a security risk is that it is very difficult to en...

What is the phishing failure rate by industry?

Employee security awareness should include phishing prevention training.  This training should include phishing simulation.  However, what is an expected phishing failure rate? The following article outlines phishing failure rates by industry.Employee security awareness should include phishing prevention training.  This training should include phishing simulation.  Howe...

Internet Security Threat Report (ISRT) - 2019

The Symantec Internet Security Threat Report (ISRT) for 2019 is continues to provide valuable information for the security professional.  This annual security report provides key statistics that outline cybersecurity risks experienced by various organizations worldwide.  Some of the key takeaways from this report include, but are not limited to, the following:  65 pe...

Presbyterian Healthcare Services Data Breach Impacts 183,000 Patients

"Presbyterian Healthcare Services became aware of the breach on June 9 and immediately secured the affected accounts. The breach investigation uncovered no evidence to suggest any personal information was accessed or stolen by the attacker and no reports been received to suggest any PHI has been misused.  The breach affected approximately 21% of Presbyterian Healthcare Servi...