Uvesco uses Phished to drive real behavior change

Uvesco knew they were facing a real risk when a test showed that 17% of employees were willing to enter sensitive information. While most responded correctly, the results weren’t reassuring.

“The numbers were eye-opening. They made it clear we had a behavioral risk that was out of our control,” says Eneko Kanpandegi Etxeburu, Deputy IT Director and Head of Cybersecurity at Uvesco.

They first tried traditional security awareness training, but the results didn’t live up to expectations.

“We were disappointed. The impact was hard to measure, and we couldn’t prove whether our efforts made any real difference.”

That pushed them to look for a more structured, ongoing approach to security awareness.

Once Eneko discovered Phished, it was an easy decision. Automation was a game-changer. The platform constantly adapts to employee behavior and requires very little manual work from IT.
Phishing simulations go out automatically, training reminders are sent at the right time, and the platform builds behavior-based risk profiles without manual input. That gives IT a clear view of risky behavior, and leadership gets the insights they need to prove the value of the investment.

“Tracking progress is super easy, and turning accounts on or off takes just a few clicks.”

For Uvesco, the real strength of Phished is its focus on changing behavior, not just raising awareness. While other tools stop at informing people, Phished actually helps them change how they respond to digital risks.
The difference is clear: employees are more engaged and cyber-aware, and almost no one clicks on phishing simulations or suspicious files anymore.

“We’re not only in control of the risk, we can finally prove our efforts are working,” Eneko concludes.