Protect your business with smishing simulations
A strong cybersecurity training covers as many ways as possible in which your colleagues can be attacked. That is why Phished now offers smishing as an integrated part of the 360° training platform. In the video below, cybersecurity advisor Ashley explains how to set up a smishing campaign.
What you should know:
What is smishing?
Smishing, a contraction of SMS and phishing, became an incredibly popular way to trap people during the corona pandemic. It is therefore increasingly important to prepare employees to recognize and deal with the danger.
Typically, we distinguish two very different tactics in smishing. The first is a traditional SMS notifying you that a postal package is on its way, with an attached link to track the delivery. If you log into this, then hackers suddenly have access to a lot of your personal and account information. "Government messages" also occasionally use this technique.
A second smishing tactic uses online services such as WhatsApp, Signal or Telegram. Someone will send you a message, for example in the name of your son or daughter, asking if you can transfer some money to them. They have just gotten a new phone number and suddenly need some money. Just a small sum - can't hurt, right?
Phished closely monitors such trends and helps its customers to arm employees. The platform was therefore expanded with a new smishing function: this way you can train your employees in no time and complete their cybersecurity skillset.
How does it work?
The smishing function makes it as easy as possible for administrators to get started quickly with simulation messages. You're up and running with it in just three simple steps:
- Using suggested templates, you immediately send a personalized message, or customize it to your liking.
- Location-based phone numbers and domain names provide a believable simulation that is almost unrecognizable from a real attack.
- You then send the message to an individual recipient, several recipients, an entire department or the entire organisation.
Send a smishing simulation faster and easier than a real SMS
Some rules of thumb to protect yourself and the business:
- Never log in to a link in a smishing SMS sent to you by an unknown person. If it is a service, manually surf to the correct login page of the service you want to access, or use the official app.
- If you get a payment request from an acquaintance or family member with a new number, try to call them before you pay.