This is a non-technical security awareness session meant for administrative employees and executives, together with 'user-friendly' hacking demos and round-the-table discussions.
The focus of this session is on uninformed users who can do harm to a company's network by responding to phishing e-mails, opening documents from untrusted media, visiting websites infected with malware, storing logon information in unsafe locations, and even giving out sensitive information over the phone. We also discuss the importance of strong password policies, pass-sentences, and two-factor authentication methods.
The session is run on demand and can be arranged at your preferred location. The duration of one session varies between 1 and 2 hours. We can organize multiple sessions per day.
At the end of the session, students should be able to understand the risks involved with social engineering and other client-side attacks, and how to act when confronted with such attacks. The students will appreciate your password policy, and will learn how to deal with it!
Included in this awareness session are 2 e-mail spear phishing campaigns. Spear phishing is an e-mail spoofing fraud attempt that targets a specific company, looking for unauthorized access to passwords or other confidential data. These 2 non-intrusive campaigns are fully automated with a choice between different 'familiar' e-mail templates. The result is a report, including the user clicks and logon attempts.
The first campaign is performed a few days before the session starts. During the session, we evaluate the results and discuss the countermeasures. Afterwards, we repeat the campaign... The results will be dramatically better after following this awareness training!
- Social Engineering
- Telephone Scam
- Spear Phishing
- Media Dropping
- Malware and Co.
- Social Media Risks
- Mobile Threats
- Presentation and course materials
- Company branded hacking demos
- 2 e-mail spear phishing campaigns
For more information, please fill out the form below.