Help us at Duffy Compliance Services celebrate Cybersecurity Awareness Month, first started by the Cybersecurity and Infrastructure Security Agency (CISA) 18 years ago. The mission has been – and continues to be – to raise awareness of the importance of cybersecurity and keeping us as secure as possible online.
To help do our part to #BeCyberSmart, we are launching a weekly series this month to provide resources, tips, articles, and checklists to help you and your organization raise awareness and be more secure.
This week, we’re focusing on security awareness training, especially in the form of phishing emails.
Here’s what you need to know:
- Phishing is a cyber-attack that covers ANY attempt to collect sensitive information in which the perpetrator disguises their identity.
- Criminals are usually after Information, Access, Data, or Cash (Cryptocurrency).
- Security Awareness Training is an education program that teaches employees about security and phishing while creating best practices and good habits.
We’ve partnered with Hook Security to help train and test our clients (and even our own DCS staff) on how to spot phishing emails, as well as other elements of security awareness training, including mobile security, passwords, physical security, insider threats, and more.
What can you do now?
First, take this phishing quiz offered for free by Hook Security. It tests how well you can spot a phishing email versus a real one.
Side note: our own Director of Security Awareness Training took the quiz, and while she ended up passing, she wasn’t 100% sure of all her answers…. the cyber criminals are always honing their craft to catch us unawares.
How well will you do? Take the quiz and find out!
Good luck!
P.S. If your organization does not currently have a security awareness training program, please reach out to us to see what’s possible.