At The Identity Organisation, we're here to help!

    Or drop us a mail!

    Your privacy is important to us, and we want to communicate with you in a way which has your consent and which is in line with UK Law on data protection. As a result of a change in UK law on 25th May 2018, by providing us with your personal details you consent to us processing your data in line with current GDPR requirements.

    Here is where you can review our Privacy & GDPR Statement

    To remove consent at any time, please e-mail info@tidorg.com with the word "unsubscribe" as the subject.

    +44 (0) 1628 308038 info@tidorg.com

    Email Classified as ‘Malicious’ by Employees Has Increased by 35% in the Last Year

    employee-reporting-malicious-email

    New data shows Phishing, Vishing, Social Media attacks, and Microsoft 365 credential attacks are all on the rise as more users are demonstrating savviness around identifying malicious content.

    I like hearing that more employees are “getting it” and are being vigilant when interacting with email. But it’s equally important to understand why. Is it because users are paying more attention, because there are more attacks, or both. The information found within PhishLabs’ latest Quarterly Threat Trends & Intelligence Report has a lot to say about the increasing state of cyberthreats and how users are reacting to them. According to the report:

    • Phishing volume is up nearly 32% year-over-year
    • Vishing incidents have more than doubled for the second consecutive quarter
    • Social Media threats are up 82% from January

    So, it’s evident that attacks are increasing. Important to note, credential theft is also on the rise:

    • 59% of reported corporate emails were Credential Theft attempts
    • Of those, over half (51.6%) of the attacks reported targeted Microsoft 365 accounts

    All this means you should be expecting more attacks from every possible threat vector in the near future. And while it appears from the PhishLabs data that more employees are reporting emails as being potentially malicious, they do report that the average employee within an organization only reports 3.3 suspicious emails per year. Considering, roughly one in every 300 emails is a phishing attack, there’s probably many more phishing emails that potentially can (and do) get through to the users Inbox.

    It’s only through Security Awareness Training that users become more effective in identifying suspicious emails that may be harmful to the organization. And, while I’m happy to see the massive increase in employees reporting malicious emails, like me, you should want to see that percentage of vigilant employees in your organization be even higher.

    Free Phish Alert Button

    Do your users know what to do when they receive a phishing email? KnowBe4’s Phish Alert Button gives your users a safe way to forward email threats to the security team for analysis and deletes the email from the user’s inbox to prevent future exposure. All with just one click! Phish Alert benefits: 

    home-KnowBe4-Phish-Alert-2

    Here’s how it works:

    • Reinforces your organization’s security culture
    • Users can report suspicious emails with just one click
    • Incident Response gets early phishing alerts from users, creating a network of “sensors”
    • Email is deleted from the user’s inbox to prevent future exposure
    • Easy deployment via MSI file for Outlook, G Suite deployment for Gmail (Chrome)
    Get Your Phish Alert Button!

    PS: Don’t like to click on redirected buttons? Cut & Paste this link in your browser: https://info.knowbe4.com/free-phish-alert-partner?partnerid=001a000001lWEoJAAW

    Sign Up to the TIO Intel Alerts!

    Back To Top