I don’t think that’s how phishing can be prevented. It’s very different to do the quiz compared to actually getting a phishing message pressuring you to do something. People don’t even start questioning it before they act on that.
I think fake phishing messages over the same channel real ones would be in are the way to go.
hey!
our team developed this tool that allows security trainers and teams to develop their own anti-phihing-education trainings based on their own threats, apps, context and language.
So is the idea for Shira is that it is quizzes and other tools to teach people how not to be phished? Whereas I know some enterprise anti-phishing tooling I've seen lets IT/Security send a 'phishing email', where you are told good job if you report it and it is noted down on your employee record if you do fall for it
I don’t think that’s how phishing can be prevented. It’s very different to do the quiz compared to actually getting a phishing message pressuring you to do something. People don’t even start questioning it before they act on that.
I think fake phishing messages over the same channel real ones would be in are the way to go.
Maybe the link(s) in the phishing message go to the training site, styled for each client.
hey! our team developed this tool that allows security trainers and teams to develop their own anti-phihing-education trainings based on their own threats, apps, context and language.
would love to get your feedback on it :)
We are also aunching a free-program for 10 orgs on our Enterprise plan --> https://docs.google.com/forms/d/e/1FAIpQLSc5nl1K8IQWuvoR_6PH...
So is the idea for Shira is that it is quizzes and other tools to teach people how not to be phished? Whereas I know some enterprise anti-phishing tooling I've seen lets IT/Security send a 'phishing email', where you are told good job if you report it and it is noted down on your employee record if you do fall for it