Techly NewsGet the app

Get the latest tech news

Employees learn nothing from phishing security training, and this is why


A new study reveals that success is measured in the single digits in the best-case scenario. Here's what companies should do instead.

The study, conducted by UC San Diego Health and Censys researchers, found that phishing-related cybersecurity training programs had no effect on whether or not employees were duped by phishing emails. By crafting messages that inspire fear or urgency, cybercriminals hope that their victims will not take a step back and think rationally, but will, rather, panic-click a button or hand over sensitive information that can be used in identity theft, to conduct fraudulent transactions, or for use in broader cybercrime. "Taken together, our results suggest that anti-phishing training programs, in their current and commonly deployed forms, are unlikely to offer significant practical value in reducing phishing risks," the researchers said.

Get the Android app

Or read this on ZDNet

Read more on:

Photo of employees

employees

Photo of security training

security training

Related news:

News photo

Employees learn close to nothing from phishing training, and this is why

News photo

SoftBank Vision Fund To Lay Off 20% of Employees in Shift To Bold AI Bets

News photo

Fiverr is laying off 250 employees to become an 'AI-first company'

« Trump Signs TikTok Order With US App Valued at $14 Billion
Experts Urge Caution About Using ChatGPT To Pick Stocks »