Wombat Security is a leader in security awareness and training. Our blog covers the latest cyber security news, insights, and best practices. We arm infosec professionals with the knowledge and tools they need to improve end-user behaviors and reduce organizational risk.

Email Reporting and Filtering

Phishing Prevention: Six Reasons Spam Filters Can’t Catch Everything

Posted by Trevor Hawthorn on Nov 12, 2015 1:14:11 PM

Your organization uses a spam filter that scans all inbound email messages, and that’s good. But spam filters vary in effectiveness and are only part of the solution to preventing intentionally malicious attacks — especially phishing emails — from succeeding.

Read More »

New Dynamic Reporting Options for PhishGuru, PhishAlarm

Posted by Gretel Egan on Sep 23, 2015 4:51:20 PM

The most effective security awareness and training programs give administrators the ability to gauge progress, identify successes and failures, and use that data to improve decision-making. As we noted in a recent blog post, we feel measurement is a key component to any cyber security education program. And we practice what we preach: reporting is one of the foundational elements of the Wombat Assess, Educate, Reinforce, Measure methodology.

Read More »

Are You Really Doing Everything You Can When It Comes to Phish?

Posted by Norman Sadeh on Jun 12, 2013 11:30:48 AM

This was originally posted on the ISACA Journal.
I continue to be surprised by the number of organizations that seem to think they are doing everything they can to protect themselves, their employees and their customers from phishing attacks. By and large, the thinking I come across generally falls into one or both of the following categories:
  1. “We have one of the best antispam/antivirus filters.”
  2. “We have tried to educate our users to not fall for phishing attacks, but it is pretty hopeless.”
As it turns out, both lines of reasoning are severely flawed. In my recent Journal article, I provide an assessment of the state-of-the-art in this area and also offer practical tips on how organizations can better defend themselves.
In particular, I show how organizations are often misled to assume that, because their filtering installation is good at catching regular spam and viruses, it is also good at catching phish. Our recent work with Virus Bulletin, one of the premier independent organizations in evaluating email filtering solutions, shows that there is very little correlation between performance on regular spam and performance on phish. Even on run-of-the-mill phishing emails such as those commonly sent to hundreds of thousands of consumers at a time, some of the best known email filters miss as many as one in four phishing emails. When it comes to more targeted phishing emails, namely those behind many of the more severe security breaches reported over the past few years, performance is even worse.
Because many organizations are often reluctant to replace their existing filtering solutions, a more effective approach is to purchase a dedicated anti-phishing filter intended to complement an organization’s existing solution. But, as I also point out in my article, there is no silver bullet in this space and organizations would be well served to take a look at some of the most recent simulation-based training solutions developed to teach employees and customers not to fall for phishing attacks. They can really make a difference!
Read More »

Why Phishing Attacks Are Here to Stay

Posted by Jason Hong on Oct 10, 2012 6:16:18 AM

There will never be a time when phishing attacks are a solved problem. We’ve been trying to solve the email spam problem for close to twenty years now, and today the best we can say is that it’s manageable. Social engineering scams have been around with us since the dawn of recorded history. Phishing scams are really no different, in that they target people (rather than computers), and any kind of communication medium can be used to send scams.

Read More »