Reporting software to measure and map out an organization's vulnerable locations to phishing attacks.
The number of phishing attacks directed at individual accounts within a company shows a notable increase on both the global and domestic scale. Efficient evaluation/report systems can help organizations to pinpoint the most vulnerable departments to these attacks, generate education plans accordingly, and hence reduce potential financial losses and leaked information.
The company PhishMe, Inc. provides a service to simulate so-called 'phishing' attacks by which attackers attempt to trick people into revealing their usernames and passwords. IT experts at Emory enhanced the built-in reporting functionality from PhishMe by incorporating the demographic data such as official names of departments, buildings and email address. Therefore, with the combination of two data sources, it is possible to produce reports showing divisions and departments that are more prone to be "phished" compared to the others. This information was used by Emory to adjust education campaigns concerning social engineering accordingly.
Currently in use at Emory.