While the mobile workforce is clamoring for the use of their personal devices at work, BYOD and uneducated users represent the perfect recipe for corporate security breaches. A study from Nielsen shows that 67% of new mobile phone purchases are smartphones; yet while they are embracing mobile conveniences like texting and geo location applications, surveys show they are careless about security.
A recent RSA study revealed people are more likely to fall for phishing attacks on mobile devices than on PCs. As a result, cyber-attacks on mobile phones rose by a factor of six last year, according to Intel, while a recent report by Lookout Security predicts that 4 out of 10 mobile users will click an unsafe link on their smartphone.
"We've already seen the rise of successful smishing attacks and all predictions point to increases in the future," said Joe Ferrara, President and CEO of Wombat. "SmishGuru is part of a holistic approach to security awareness and training that leverages our combination of simulated attacks and highly interactive employee training to help companies protect against the latest breeds of malware and spyware used to infect corporate networks and steal valuable data."
How it works
Security officers can select and customize the type of attack they want to send and they can select and customize the training the employee will receive if they fall for the simulated attack. Data from SmishGuru provides security officers with detailed data from each attack campaign.
Employees can easily be grouped and assigned additional training in the areas they need it most. By assessing and training employees throughout the year, Wombat's new SmishGuru attack simulation service enables security officers to:
- Mitigate the risk their organization faces due to the use of smartphones
- Protect corporate networks from Malware, Spyware and other malicious software
- Understand which employees are most susceptible and target them with additional training
- Provide a unique teachable moment that teaches employees at the point of failure
- Increase acceptance of security awareness training.