According to a joint study by MegaFon and Kaspersky Lab, about a third of employees of Russian companies easily trust phishing emails. These messages often spark interest if they mention dress codes or offer photos from corporate events. MegaFon’s press service warns that experts warn that such naivety can pose serious risks to business.
The analysis was carried out based on statistics from two platforms: MegaFon Security Awareness and Kaspersky Automated Security Awareness Platform. Phishing training emails were examined between January and August 2024. Imposter websites and social engineering have been used to test companies’ resistance to phishing attacks. At the same time, the captured user data was not collected, only the number of errors made by employees was recorded.
Test results show that nearly half of employees open simulated emails and 35% click on the links within them. One in ten of those who clicked on the link entered their data on third-party sites. For example, emails from HR and IT departments were particularly compelling: 77% received a message about dress code and clicked on the link, and 32% were interested in photos of a corporate event. Interestingly, vulnerability rates are significantly lower among companies that train their employees on cybersecurity; Only 9% open malicious emails.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
