In an attempt to stop phishing attacks, an increasing number of organisations run Simulated Phishing Campaigns to train their staff not to click on suspicious links. Organisations can buy toolkits and run their own campaigns, or hire a specialist company to provide such campaigns as a service.
To what extent this activity reduces the vulnerability of an organisation to such attacks is debated in both the research and practitioner communities, but an increasing number of organisations do it because it seems common practice, and are convinced by vendors’ claims about the reduction in clickrates that can be achieved. But does reducing clickrates for simulated phishing messages means simulated phishing campaigns are effective in reducing the risk? Furthermore, there are more or less security, legal, and trust issues depending on the way the campaign is implemented.
Thus, there are more effective security measures with less negative side-effects than simulated phishing campaigns. In particular, it is important to first improve the technical security measures and establish adequate security incident reporting before running intensive security awareness measures.
The webinar will include live interpretation services in three languages (English, Spanish and Portuguese), thanks to our collaboration with RedCLARA, the Latin American space for collaboration and development in education, science and innovation.
About the speaker
Prof. Dr. Melanie Volkamer is a full professor at KIT in the Department of Economics and Management. She leads the SECUSO research group. From 2016 to 2018 she was a Professor (Kooperationsprofessur) at the Department of Computer Science of Technische Universität Darmstadt Germany). From 2015 to 2018, she was appointed Full Professor for Usable Privacy and Security at Karlstad University (Sweden) and has also been an Assistant Professor at TU Darmstadt. Prof. Volkamer has been heading the research group “SECUSO – Security, Usability and Society” since 2011.
Also this year GÉANT joins the European Cyber Security Month, with the campaign 'A Community of Cyber Heroes'. Read articles from cyber security experts within our community and download resources from our awareness package on connect.geant.org/csm2022
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behaviour or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
