Techly NewsGet the app

Get the latest tech news

Employees learn close to nothing from phishing training, and this is why


A new study reveals that in the best-case scenario, success is measured in the single digits. Here's what companies should do instead.

The study, conducted by UC San Diego Health and Censys researchers, found that phishing-related cybersecurity training programs had no effect on whether or not employees were duped by phishing emails. By crafting messages that inspire fear or urgency, cybercriminals hope that their victims will not take a step back and think rationally, but will, rather, panic-click a button or hand over sensitive information that can be used in identity theft, to conduct fraudulent transactions, or for use in broader cybercrime. "Taken together, our results suggest that anti-phishing training programs, in their current and commonly deployed forms, are unlikely to offer significant practical value in reducing phishing risks," the researchers said.

Get the Android app

Or read this on ZDNet

Read more on:

Photo of training

training

Photo of employees

employees

Related news:

News photo

How Neural Super Sampling Works: Architecture, Training, and Inference

News photo

SoftBank Vision Fund To Lay Off 20% of Employees in Shift To Bold AI Bets

News photo

Fiverr is laying off 250 employees to become an 'AI-first company'

« Zagg Launches 'Pro Keys Connect' iPad Keyboard Case
New string of phishing attacks targets Python developers »