A multinational government contractor wanted to quantify their exposure to ransomware and other email-based security attacks through a phishing campaign.
Baker Tilly tailored our phishing campaign based on phishing emails that the organization had previously received where an employee had fallen victim to the phish. We utilized links embedded in the email and monitored web traffic to our phishing site to identify the users that clicked on the links. Roughly 10% of employees tested clicked on the link in the email, slightly higher than industry average.
The client utilized the results of our phishing tests to develop more interactive security awareness training material that they hope will increase user retention and reduce the likelihood of employees falling victim to phishing emails in the future.