24/7 SOC




You are here:

Phishing attacks are one of the most common security challenges that companies face in keeping their information secure and most often they are distributed via fraudulent emails pretending to be legitimate services. A phishing service can be a quick and easy way to help improve your employees awareness of the risks.

A phishing service can be a quick and easy way to improve your employees awareness to risks. If a malicious link is clicked, malware downloaded or account details handed over, this can give hackers an avenue to infiltrate businesses. Quite often its easier for cyber criminals to prey on the mistakes of employees in order to gain access to information and data or financial reward.

The SANS Institute announced that  95% of all enterprises attacked last year started as a result of spear phishing.

Cyber criminals use highly sophisticated social engineering tactics and techniques to get inside your network and your employees with a legitimate looking request. Technology alone cannot always be used to stop these types of targeted attacks and making users aware and training them what to look for is a way for businesses to improve awareness.

If you can accept the idea that a intrusion is going to happen and its just a case of when then your employees really are the last line of defense of whether an attack is going to happen and you cannot let your employees be the weak link in the security chain.


Why performing a Phishing Campaign is beneficial?

It can take as little as 1 minute 29 seconds for an organisation to be breached by a phishing attack, with over 22 per cent of employees falling victim.

Wizard Cyber will work with you in order to create a phishing campaign and we will understand what your business does and what technologies it uses and who they partner with for certain services so that we can design a convincing phishing campaign. Cyber criminals do research into your company, your suppliers and will use publicly available information to create a genuine looking email.

What do we expect?

We expect users to pick up on the intentional signs that the request is not legitimate and then we would expect users to submit the email or log a case with their respective IT team or point of contact depending on companies information security policies.

  • Affordable: A cost effective process that allows a campaign to be created and deployed with minimal cost.
  • Measurable – You can easily measure and see the effectiveness of the campaigns.
  • Minimal Disruption – Lightweight and minimal disruption to IT staff and end users.
  • Expert – Crafted campaigns based on the experiences & threat analysis of our expert Cyber Consultants.

Phishing Service Process

  • null

    Create the Hook

    Wizard Cyber first creates a hook which we will design with you and in most cases that is an email that is designed to look like an existing supplier or portal based system and it will be as accurate and detailed to a legitimate email as we can. When we craft these emails you will get a better understanding of the steps cyber criminals take and how personalized and convincing these sorts of attacks can be.

  • null

    Delivering the bait

    We then send out the phishing campaign emails normally over a few days, weeks or sometimes months depending on organisation size and requirements. However sending the phishing emails out over a longer period of time, will keep the employees on their toes and less likely to flag internally if we was to send them all at once.

  • null

    What did we catch

    All the data is gathered regarding who clicked and who filled in their information. Each phishing email sent is uniquely coded and identifiable  so that we can see which users performed which actions and how far they went into the process.

Advanced Threat Protection >>

To find out how Wizard Cyber can help you, enter your details in the form and we’ll get in touch.