Anti-Phishing Training Modules Teach employees to recognize and avoid phishing and spear phishing attacks

Transcription

1 Anti-Phishing Training Modules Teach employees to recognize and avoid phishing and spear phishing attacks Improve Phishing Knowledge and Reduce Susceptibility to Attack Do you already have some form of security awareness training? Do you know if it is effective? Don t you want to keep improving it? Phishing attacks are getting better every day. Are your users prepared? Minutes of our training can reduce your employee s susceptibility to falling for a phishing attack by over 50%. Wombat can help. We offer the most effective and comprehensive anti-phishing training suite in the market. In addition to our mock phishing attack service, PhishGuru we also offer three different anti-phishing training modules, Anti-Phishing Phil, a training game for identifying malicious URLs, Anti-Phishing Phyllis, an anti-phishing training game, and Security, an interactive anti-phishing training module. Both Anti-Phishing Phyllis and Security software-based training products, teach users to spot phishing traps in s, such as fake links, malicious attachments, cash prizes, reply-to s asking for sensitive information and much more. Each takes just over 5 minutes to complete and includes an extensive collection of randomized legitimate and fraudulent s with key areas highlighted. Users are asked to identify if the highlighted areas are security traps or safe areas in the . The moment after the user makes a decision, they receive immediate feedback for both correct and incorrect answers. We call this moment a teachable moment, a situation when the user is most open to learning and concepts taught are retained for longer periods of time. Wombat s approach of applying learning science principles to software-based training to teach employees how to recognize and avoid phishing attacks, does more than just check the box on security awareness training, it creates behavior change. Anti-Phishing Phyllis Security

2 Anti-Phishing Training Modules Teach employees to recognize and avoid phishing and spear phishing attacks We have developed these two different training products, Anti-Phishing Phyllis and Security on the same topic so that security officers and administrators can select the teaching style that best suits their organization s culture. Both modules teach the same concepts just in different ways. Anti-Phishing Phyllis and Security training products are just one part of the Wombat Security Training Platform that enables security officers to assess employees, deliver training, track results, and gain a comprehensive view of their cyber security posture. The platform provides detailed reports that show aggregate and individual data which can be used to develop follow-up training programs and show user knowledge gained over time. Wombat Core Features and Benefits Engaging and interactive training increases end user participation Learning science principles ensure users learn by doing and retain content much longer Short training modules are focused and respectful of busy schedules Collect valuable data about individual and organizational vulnerability to attack Cost effective - likely to cost less than your current training SCORM compliant to enable integration with your LMS 508-compliant to support people with learning, visual, hearing and physical disabilities Assessment Simulated Phishing Attacks Training Safe Browsing - NEW Security Beyond the Office - NEW Smartphone Security Safe Social Networks Phishing Traps Social Engineering Mobility and Travel Malicious URL Training Password Security Security Reporting Completion Data Average Score Most Missed Items User Activity Contact us today for a demonstration of our complete suite of anti-phishing assessment and training products Henry Street, Third Floor Pittsburgh, PA Wombat Security Technologies, Inc. All rights reserved. Wombat Security Technologies name, logo, PhishPatrol and PhishGuru are all trademarks of Wombat Security Technologies, Inc.

3 PhishGuru Phishing Attack Simulation Service Assess vulnerability and teach employees not to click Reduce your susceptibility by up to 70% Phishing Your Employees: Criminals are Doing It Right Now Every day new phishing s are reaching your employees inboxes and, as a security officer, you are constantly wondering when someone will click, or reply, and expose the company s network and intellectual property. What if you could send your employees phishing s to train them, and what if every person who falls for the phishing is immediately trained what not to do the next time? PhishGuru, a software-as-a-service product, is an easy-to-use tool that assesses and trains employees with simulated phishing s. This creates a unique teachable moment when employees fall for the simulated attack and are open to learning. Just-in-time training explains what they did wrong and how to avoid it the next time. PhishGuru is not a penetration test, it s much more. It s a way to change behavior. Campaign 1 Campaign 2 Campaign viewed and clicked on link Capturing Valuable Security Posture Intelligence Not only are employees being trained, but valuable data is being captured. The intelligence gathered from the mock attacks such as which attacks your organization is most susceptible to, which people are vulnerable, what devices they were using, and how people have changed their behavior after just one mock attack is available instantly. This intelligence can be used to understand your organization s security posture and assign targeted training to the people who need it most. NEW! Our multi-panel training references the specific mock phishing attack that you send, showing users point by point what they did wrong.

4 PhishGuru Phishing Attack Simulation Service Assess vulnerability and teach employees not to click NEW! Customizable s and Training to Meet Your Unique Needs Send a phishing from a number of templates or craft your own Select the training method that suits your organization in terms of style and content Create your own training from our templates using a simple WYSIWYG editor You can edit all content in our training to fit your unique needs. The Wombat Security Training Platform The PhishGuru service is just one of the security awareness tools available in the Wombat Security Training Platform that enables security professionals and administrators to assess employees, deliver training, track results, and improve their cyber security posture. Reporting capabilities in the Platform provide both aggregate and individual data to guide follow-up training programs and show improved results over time. Wombat Core Features and Benefits Engaging and interactive training increases end user participation Learning-science principles ensure users learn key concepts and retain content much longer Short training modules are focused and respectful of busy schedules Training modules based upon scientific research in cyber security and learning science Cost effective likely to cost less than your current training SCORM compliant to enable integration with your Learning Management System (LMS) 508-compliant to support people with learning, visual, hearing and physical disabilities Assessment Phishing Attack Simulation Training Safe Browsing NEW Security Beyond the Office NEW Smartphone Security Social Network Safety Phishing Traps Social Engineering Mobility and Travel Malicious URL Training Password Security Security Reporting Completion Data Average Score Most Missed Items User Activity Combine PhishGuru with Wombat s anti-phishing training modules, for the most comprehensive anti-phishing training available today Henry Street, Third Floor Pittsburgh, PA Wombat Security Technologies, Inc. All rights reserved. Wombat Security Technologies name, logo, PhishPatrol and PhishGuru are all trademarks of Wombat Security Technologies, Inc.

5 Anti-Phishing Phil Training Game Teaches Employees How to Identify Malicious URLs 10-minutes of training can reduce the chance of your employee falling for a phishing attack by over 50% compared to traditional training methods! To drive lasting change in employee behavior, cyber security training must be engaging, efficient and effective. who had played the game to distinguish legitimate URLs from fraudulent ones improved nearly twice as much as that of those trained with standard materials. Like Wombat s other products, Anti-Phishing Phil offers extensive reporting functionality to enable security professionals to track the performance of users and target training appropriately. Classroom training lectures are ineffective; online video training doesn t work. Static cyber security training s don t work. What works to reduce the number of people clicking on dangerous URLS? Wombat s Anti-Phishing Phil training game does! Developed using learning science principles, Anti- Phishing Phil is a SCORM-compliant computer security training game that teaches employees and customers to recognize fraudulent URLs. In just 10 minutes of play, the user makes decisions on the safety of 32 different URLs links. When employees make a mistake they learn why immediately. The latest release of the product incorporates a number of recent phishing attacks and the links used in the attacks. The game can also be customized to incorporate attacks that companies have seen themselves to ensure that employees are prepared. The ability of subjects who had played the game to distinguish legitimate URLs from fraudulent ones improved nearly twice as much as that of those trained with standard materials. - Scientific American Best of all, Anti-Phishing Phil training makes a lasting impact. According to the Scientific American article How to Foil Phishing Scams, which featured Anti-Phishing Phil, the ability of subjects You can deploy Anti-Phishing Phil on your intranet. You can also choose to customize the game by licensing a version with your organization s branding and specific URLs. A 508-compliant version is also available. Contact us to learn more about how we make a lasting change to employee behavior with Anti- Phishing Phil. [email protected] About Wombat Security Technologies With millions of users across North America, Europe, and Asia, Wombat Security Technologies is a global leader in cyber security awareness training and also offers unique anti-phishing filtering solutions. Wombat s products have been licensed for use in sectors as diverse as finance, government, insurance, healthcare, energy, e-tailing, logistics and education to name just a few.