Which departments are the most susceptible to phishing attacks?

Security

by Jimmy Nicholls| 04 September 2014

Not the ones carrying the most sensitive data, surely?

British finance and human resources departments are more likely to be tricked by phishing emails than other sections, according to a report by security firm McAfee.

Participants in the company's phishing quiz were asked to pick scam emails from a selection of messages, with the above departments only successfully identifying scams around two-thirds of the time.

Raj Samani, EMEA chief technology officer at McAfee, said: "As highlighted by our latest report, phishing continues to pose significant security risks for businesses and consumers alike.

"More worryingly, perhaps, is the lack of education around how to spot a phishing email amidst the many emails we're sent on a daily basis."

Research and development workers in the UK were the most successful at determining which emails were legitimate, doing so 77% of the time.

The most convincing scams made use of spoofed email addresses mimicking those of real companies, such as delivery service UPS or messaging service eFax.

Samani added that phishing comprises a small portion of the threats facing organisations, and urged companies to take a proactive approach to cyber security.

"Prevention is the way forward if we are to truly combat the array of threats we're seeing appear on a daily basis," he said.

Comments
Post a comment

Comments may be moderated for spam, obscenities or defamation.

Join our network

755 people like this.
0 people follow this.

Security Intelligence

Suppliers Directory


See more
Privcy Policy

We have updated our privacy policy. In the latest update it explains what cookies are and how we use them on our site. To learn more about cookies and their benefits, please view our privacy policy. Please be aware that parts of this site will not function correctly if you disable cookies. By continuing to use this site, you consent to our use of cookies in accordance with our privacy policy unless you have disabled them.