Cybersecurity Training Programs Fail to Prevent Phishing Attacks
By
divbzero
Hot, fresh, and worth queueing round the block for.
Summary
The article examines the ineffectiveness of current cybersecurity training programs in preventing employees from falling for phishing scams. Despite 20 years of research and development in email filtering, phishing remains the largest cybersecurity threat according to a 2023 IBM study. The primary issue identified is that most employees do not engage with the embedded training materials, rendering the programs largely ineffective at reducing phishing risks.
Key quotes
· 3 pulledOne reason the trainings are not effective is that the majority of people do not engage with the embedded training materials.
In spite of 20 years of research and development into malicious email filtering techniques, a 2023 IBM study identifies phishing as the single largest cybersecurity threat.
Cybersecurity training programs as implemented today by most large companies do little to reduce the risk that employees will fall for phishing scams.
You might also wanna read
Using Cloudflare Turnstile to Evade Phishing Sandboxes: A Red Team Field Guide
A red teamer recounts their experience with email phishing engagements and how modern email defenses (sandboxes, scanners) have made traditi
specterops.io·3d ago
Analysis: FBI's 2025 Internet Crime Report reveals systemic failures behind rising cybercrime
The article discusses the FBI's 2025 Internet Crime Report, analyzing key statistics about cybercrime trends. It highlights that victims are
schneier.com·3d ago