Phishing has been thrust into the public discourse once again thanks to an incident at Twitter in recent weeks.

Mind you, this is a good thing as phishing can allow attackers to gain access to vast amounts of data with a single email. The fact folks are talking about this then is a good thing.

But how does one teach somebody about phishing?

In a bid to answer that question we present you with SAFE Phish, a new product from email security and cyber resilience firm, Mimecast.

While replicating a phishing attack for the purpose of training has been tricky in some instances, senior vice president and general manager of Mimecast Security Awareness Products, Michael Madon hopes that SAFE Phish can make it easier.

“With SAFE Phish technology, end-users can safely be exposed to real-life, de-weaponised phishing attacks to make training more effective and provide a data-driven picture of which employees are most at risk. Our research has shown that end-users who have taken Mimecast Awareness Training are 5.2 times less likely to click on dangerous links. We’re very excited about how SAFE Phish simulations can further help increase the impact of our security awareness solution,” said Madon in a statement.

SAFE Phish reportedly feeds data from exercises to the SAFE Score dashboard.

The dashboard compiles data from users under four banners. These are engagement, knowledge, sentiment and bad URL clicks.

With this data SAFE Score is able to determine an individual user’s risk.

With this data in hand, security teams can see how much training has to be done on an individual and organisational level.

“Mimecast SAFE Phish is engineered to provide welcome capabilities at a time when streamlining and automating processes has become a huge focus for CISOs and their teams,” said Madon.

Mimecast says that SAFE Phish and SAFE Score will be available in Q2 of 2021.

[Image – CC 0 Pixabay]