What is phishing?
Phishing is the act of attempting to acquire information — such as usernames, passwords, credit card details and/or money — by masquerading as a trustworthy entity via email.
38North’s social engineering scan simulates a controlled phishing attack against your organization. Specifically, we generate and send a phishing email to a targeted list of email addresses to uncover vulnerabilities. Typically, the email asks the recipient to click on a suspicious link that’s in breach of your organization’s security policy. Individual responses to the email are tracked to determine the total percentage of users falling victim to the attack.
Once the results are complied and analyzed, we present you with a thorough report on the effectiveness of your security awareness program. Recommendations can include implementing additional measures to strengthen your security awareness program, fine-tuning your organizational security policy to minimize reoccurrence, and applying technical solutions to enforce security policy at the user and system levels.