You’ve got firewalls up the wahzoo, security systems pinging on every laptop in the firm, triple-layered authorization systems zinging the bad guys out… but you still have one very vulnerable soft spot leaving a gaping hole in your security system: your people. Those wonderfully naïve, trusting, smarter-than-snot folks who just HAVE to click on that email from Pizza Hut because of the awesome coupon they’ve been offered.
And as soon as they do, your firm gets hacked.
Here’s the good news: this people-based security threat represents an area where your IT pros and your Trainer experts can come together and cooperate on a program that will shut down the hackers. Together, you need to train everyone in your firm to better understand how socially engineered hacking works!
According to Kevin Mitnick, infamous hacker and now world-renowned cyber security expert: “Your employees are the weak link in your IT security. U.S. organizations are exposed to massive increases in the number of cyberattacks over the past five years, with a current average of 138 successful attacks per week, up from 50 attacks per week five years ago. Your end users are the low hanging fruit for cyber criminals.”
But how do you help people see through hackers’ tricks? As a partner with KnowBe4, the world’s most popular integrated Security Awareness Training and Simulated Phishing platform, I can help you prepare for and prevent the attacks that will undoubtedly come your way.
Even better: it doesn’t take much time. We can spoon-feed your firm’s employees any number of bite-size videos that cover the following:
- Security Awareness Training Overview
- Ransomware
- Credit Card Security
- Handling Sensitive Information Securely
- Mobile Device Security
- PCI Compliance
Want an example? Download this pdf graphic from KnowBe4:
Train everyone in your firm (and I mean everyone) to recognize hacker tricks by studying every element of a suspicious email. Who is the email from? What is the subject line? What is the content? Who else was it sent to? When was it sent? Are there attachments or hyperlinks? It may seem like a lot to digest for each email but once your people are trained to recognize red flags, it won’t take them any time at all to avoid hacker’s tricks.
In fact, these programs are proven effective. KnowBe4 reports: “After a year of helping our customers train their employees to better manage the urgent IT security problems of social engineering, spear phishing and ransomware attacks, we decided to go back, and look at the actual numbers over those 12 months. We aggregated the numbers and the overall Phish-prone™ percentage drops from an average of 15.9% to an amazing 1.2% in just 12 months.”
If you’d like to chat further about protecting your firm from social engineering attacks, don’t hesitate to call me or email me at: 303-800-5408 or Doug@savvytraining.com.
ABOUT SAVVY TRAINING AND CONSULTING
Savvy Training & Consulting works with leading companies and technologies to deliver the most up-to-date training solutions and curricula to law firms. Savvy recently unveiled an award-winning Learning Management System (LMS) for law firms, SavvyAcademyTM, which delivers scalable training capabilities, reportable data down to the individual user and 24/7 support, all for a fraction of the cost of traditional LMS services.