What Is Phishing Simulation?
Phishing simulation is a security awareness activity that involves sending realistic phishing emails to employees to assess their awareness of similar attacks and what to do with phishing emails when they receive them. Phishing simulations are usually carried out in conjunction with a training, which educates employees on how these attacks work and how to avoid them.
Phishing Modeling and Training Stages
1
Development of a scenario for a fake phishing attack on company employees. This stage is carried out with the active assistance of company representatives in order to make the scenario as plausible and native for employees as possible.
2
Carrying out the attack itself by groups of employees: from less technically knowledgeable to more technically knowledgeable employees.
3
Showing the results of the fake attack to the team (depersonalized). Training the team to recognize and defend against phishing attacks.