Without training one in three users fall for phishing scams

New research finds that, if they haven't received security awareness training, one in three users will likely fall for a phishing or social engineering scam that could put their organization at risk. The study from awareness training specialist KnowBe4 set out to measure organizations' phish-prone percentage (PPP) and found an initial baseline of 31.4 percent across all industries and sizes. After just 90 days of computer-based training and simulated phishing testing, however, the average PPP was down to 16.4 percent. And after a year of monthly simulated phishing tests and regular training, the PPP further declined to just 4.8 percent.… [Continue Reading]