Our team curates phishing testing scenarios based on 3 levels of sophistication. In many cases, organizations may opt to run a program that covers all three levels for a specific group of users.
Our ethical hacking team monitors not only the level of interaction with phishing emails but also the level of reporting of suspicious activity. This is to understand whether recipients know what to do in the instance that they observe a phishing attack.
Once our phishing exercise is complete, a comprehensive report is prepared for the organization outlining the statistics from the campaign and highlighting the security issues uncovered.
The findings are assigned a risk rating and evidence is provided to validate all findings. Best practices are shared to assist you in resolving issues and to help you develop an awareness program for your users.
Where requested, Advantio can develop an awareness training program to support the findings of the test. This is fully customizable to the organization and is delivered by the Advantio ethical hacking team.
Phishing emails of a common sophistication seen within the industry are sent to users and their responses are reported on. These emails take the form of widespread industry phishing types that employees may be susceptible to within their roles.
More elaborate email phishing templates are used to test employee detection skills. These templates are more technically complicated with the aim of being more difficult to spot than the classic common phishing emails.
Uses ‘spearphishing’ to test a small number of staff with targeted emails created specifically for them based on knowledge collected by our ethical hacking team. We aim for as much personal info as possible to further infiltrate your organization.