As technology advances, cybersecurity challenges are becoming more complex. 2023. In the first half of the year, FORTIX was given the opportunity to provide a phishing simulation for DIGI on two occasions. The aim of the tests was to assess the safety awareness of workers in real-life conditions without risks.
FORTIX experts used the simulation to test how DIGI employees would react to a realistic phishing attack. During the investigation, workers received emails asking them to enter their company email address, directing them to fake websites similar to the original, or asking them to open an attachment from a sender that appeared to be a client. The simulation allowed the company to get an idea of the risks to which workers are exposed and in which areas additional training or information is needed.
Preparation of the simulation: our experts worked with DIGI Information Security to develop the simulation campaign, define the target group and the content of the email.
Campaign testing: campaigns were first tested internally to ensure their credibility and effectiveness, as well as the functionality of the simulation.
Examining partial results, tracking/resolving errors: while running campaigns, we continuously monitored results and reacted immediately to any problems.
Final analysis of results: all data was collected and analysed after the campaigns were completed.
Preparing a report, formulating recommendations: based on the results of the study, we prepared a report presenting the main findings and formulating recommendations for further action.
With the phishing simulation conducted by FORTIX, DIGI gained valuable insights into employee security awareness. As a result of the project, the company was able to fine-tune its existing processes and take targeted measures to reduce cybersecurity risks. The simulation highlighted the importance of the human factor in cybersecurity, and the risks can be significantly reduced with the right training and information.
