Posted on Nov 3, 2016
Verizon’s 2016 Data Breach Investigations Report marked Social Engineering attacks as the 3rd highest threat action, behind hacking and malware. Those attacks have been rising over the years due to the relative ease of execution and lack of technical knowledge needed.
Social Engineering, unlike common hacking methods such as brute-forcing, cross-site scripting, or keylogging, instead uses a variety of psychological, informational, and behavioral techniques in order to access an organization’s information by exploiting a company’s weakest link - its employees. It’s also the underlying technique used to implement some of the most common methods of attack such as phishing and ransomware. The method of attack is one of the reasons why employee security awareness training is necessary.
To learn more about Social Engineering and which industries are most susceptible to social engineering attacks, check out the infographic below where we analyzed the Social Engineering scores of over 100,000 organizations across 18 industries in June and October 2016.
Uncommon or Suspicious URL strings
Strange spelling, grammar, and capitalization
The healthcare industry had one of the lowest Social Engineering Scores compared to all industries within the last 12 months. To learn more about the state of the healthcare industry, download our report below.
Check out our list of 3 top third party risk management (TPRM) challenges, and the actions you can take to bolster your program. Learn more.
Performing cybersecurity risk assessments is a key part of any organization’s information security management program. Read our guide.
Templates and vendor evaluations are needed to level that playing field, in a time efficient and fair way, so that the best vendors are chosen.
No waiting, 100% Free
Get your free scorecard and learn how you stack up across 10 risk categories. Answer a few simple questions and we'll instantly send your score to your business email.