Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

9/10/2013
03:45 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Wombat Security Technologies Unveils Integrated Anti-Phishing Assessment And Education Solution

Training suite enables security officers to assess vulnerabilities via simulated phishing attacks

PITTSBURGH, PA--(Marketwired - September 10, 2013) - Wombat Security Technologies (Wombat), a leading provider of cyber security awareness and training solutions, today announced their anti-phishing training suite. The anti-phishing training suite enables security officers to assess vulnerabilities via simulated phishing attacks and provide in-depth anti-phishing education to change user behavior. It gives corporate security officers the ability to auto-enroll employees in follow-up training after they fall for a simulated attack. All of Wombat's training solutions utilize learning science principles to engage the user, deliver practical knowledge, and ensure employees retain information they are taught in brief 10-minute training sessions. When combining simulated phishing attacks with Wombat's interactive training, customers have experienced a greater than 80% reduction in employee susceptibility to attack.

"Anyone can send mock phishing attacks to employees, but education is critical and our combination of simulated attacks coupled with innovative in-depth training delivers effective education and behavior change," said Joe Ferrara, President and CEO of Wombat Security Technologies. "Our anti-phishing training suite enables customers to provide positive reinforcement to end users, for example those who did not fall for a simulated attack, those who scored high on training modules, etc."

Wombat's new anti-phishing training suite is released just in time as security breaches are making headlines daily and phishing attacks, the most common form of cyber-crime, continue to rise globally. According to a recent report by security firm Kaspersky Lab, 37.3 million users around the world were subjected to phishing attacks in the last year, which represents a whopping 87% increase over the same period in the previous year.

High profile breaches like the New York Times are being driven by crafty forms of spear phishing used by cyber gangs and criminals. The bad guys are pulling out all the stops to profile executives and their employees and then crafting an alluring e-mail carrying a Web link to get them to click on the payload.

"As evidenced by the recent high profile breaches, organizations need to empower their employees to defend against attacks," said Eric Ogren, founder and principal analyst of The Ogren Group. "Effective security awareness training for the entire employee base has become a necessity for any company that wants to take a proactive stance against the growing threat of phishing and other cyber security attacks."

Wombat's anti-phishing training suite enables security officers to assess and reduce their company's vulnerability to cyber threats by integrating simulated phishing attacks and two interactive follow-up training modules. Wombat's customers who have already implemented this solution have found a significant increase in non-mandatory security awareness training completion when combining simulated phishing attacks and training.

Highlights of the new anti-phishing suite include:

· New and improved reporting and additional functionality in award winning PhishGuru®

· Enhanced reporting capabilities including detailed campaign summaries, event and repeat offender reports as well as a network map that pinpoints IP addresses where an employee's request originated

· Follow-up campaign scheduling enables security officers to automatically re-assess the employees who fall for attacks

· Multiple administrator defined fields for managing contact groups

· New URL training module which teaches employees how to determine which URLs are safe and which are fraudulent

· New version of Email Security training module with a new look and updated content added to this already effective and interactive training module

· Training auto-enrollment ensures employees who fall for a mock phishing attack are assigned training modules to educate users at a time convenient for them

The latest version of Wombat's anti-phishing suite is available today. For pricing and/or more information about this award-winning product, please visit www.wombatsecurity.com.

About Wombat Security Technologies

Wombat Security Technologies helps organizations combat cyber security threats with uniquely effective software-based training solutions for employees. Wombat offers fully automated, highly scalable solutions, built on learning science principles. They offer mock attacks with brief embedded training, as well as a full complement of 10-minute software training modules. Wombat's training solutions have been shown to reduce employee susceptibility to attack over 80%. Wombat is helping Fortune 1000 customers, large government agencies and small to medium businesses in segments such as finance, banking, higher education, retail, technology, energy, insurance, and consumer packaged goods strengthen their cyber security defenses.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Sodinokibi Ransomware: Where Attackers' Money Goes
Kelly Sheridan, Staff Editor, Dark Reading,  10/15/2019
How to Think Like a Hacker
Dr. Giovanni Vigna, Chief Technology Officer at Lastline,  10/10/2019
7 SMB Security Tips That Will Keep Your Company Safe
Steve Zurier, Contributing Writer,  10/11/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: The old using of sock puppets for Shoulder Surfing technique. 
Current Issue
7 Threats & Disruptive Forces Changing the Face of Cybersecurity
This Dark Reading Tech Digest gives an in-depth look at the biggest emerging threats and disruptive forces that are changing the face of cybersecurity today.
Flash Poll
2019 Online Malware and Threats
2019 Online Malware and Threats
As cyberattacks become more frequent and more sophisticated, enterprise security teams are under unprecedented pressure to respond. Is your organization ready?
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-17672
PUBLISHED: 2019-10-17
WordPress before 5.2.4 is vulnerable to a stored XSS attack to inject JavaScript into STYLE elements.
CVE-2019-17673
PUBLISHED: 2019-10-17
WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON GET requests because certain requests lack a Vary: Origin header.
CVE-2019-17674
PUBLISHED: 2019-10-17
WordPress before 5.2.4 is vulnerable to stored XSS (cross-site scripting) via the Customizer.
CVE-2019-17675
PUBLISHED: 2019-10-17
WordPress before 5.2.4 does not properly consider type confusion during validation of the referer in the admin pages, possibly leading to CSRF.
CVE-2019-17676
PUBLISHED: 2019-10-17
app/system/admin/admin/index.class.php in MetInfo 7.0.0beta allows a CSRF attack to add a user account via a doSaveSetup action to admin/index.php, as demonstrated by an admin/?n=admin&c=index&a=doSaveSetup URI.