Every minute, three new phishing sites pop up on the internet, according to Wandera’s 2020 Mobile Threat Landscape Report. Due to the pandemic and working from home, phishing is resurging as a criminal’s go-to tool. In April 2020, Google blocked over 18 million phishing attempts each day for a week. That’s over 126 million phishing attempts in one week. And with almost all malware (94%) being delivered by email, making sure employees are cyberaware and well trained must be a top priority to chief information security officers (CISOs) and chief security officers (CSOs).
Traditional enterprise-wide training of cybersecurity consists of an annual lecture followed up by attempts at reminding employees throughout the year with posters, emails and newsletters — things that are often overlooked or ignored. Every so often, there will be a phishing test. The results are generally unsurprising and unsatisfactory. KnowBe4 reports that about 38% of untrained employees fail phishing tests.