Phishing messages successfully entice about 18% of recipients into clicking on a malicious link, according to ThreatSim, a training firm. "Phishing education should be part of an overall program," ThreatSim CEO Jeff LoSapio says. "The goal of security awareness training is to make 'security-minded' users and change user behaviors that expose the organization to risk. Phishing is currently one of the top areas in which users can have a direct, near-daily impact on the organization's security."
Published in Brief: