Social Tactics Remain a Significant Threat

Social tactics includes phishing and other related social engineering activities.  Basically, social tactics are methods used to penetrate an organization’s cybersecurity defenses by attacking the human.  The employee is often considered the weakest link in the security chain.  The primary reason that the employee is often a security risk is that it is very difficult to ensure the behavior of an individual.  Attackers use a variety of methods to trick employees into performing an action such as installing malicious software, divulging non-public information, or performing an unauthorized transaction. 

The annual Internet Security Threat Report (ISTR) from Symantec provides key statistics on various threats facing organizations today.  With regards to social tactics, several key statistics are outlined below.

 

In today’s threat environment, organizations of all sizes must address the human element of cybersecurity.  By performing security awareness training and testing, an organization can augment technical controls and build a layered defense addressing social tactics.  PhishingBox provides tools and resources, including our downloadable guide on key security controls to implement.  In addition, PhishingBox provides security awareness training and testing solutions.  If you don’t have the time or resources to implement controls yourself, talk to us about our Socially Secured program, which provides fully managed cybersecurity awareness training and testing.