Phishing Simulation Program


2023

Phishing Simulation Program

Like any skill, spotting phishing emails takes practice. Creating a consistent behavior like reporting suspicious emails, requires repetition. Our phishing awareness and reporting exercises are designed to give the Montco community experience in identifying and reporting simulated phishing messages. We do this so when real phish show up in your inbox, youll know exactly what to do.

Why are we doing this?

Phishing is the single greatest threat to our digital privacy and security today.

According to industry studies:

Our security systems block millions of these phishing messages each month, but still, some will always make it through. You are our best defense against these messages. Recognizing phishing prevents it from harming you, and your reports prevent phishing from harming the community. Phishing awareness and reporting practice will help keep us alert and ready to respond to these threats.

These exercises will:

These exercises will not:

What to expect

Email users should expect to receive a simulated phish once per month. Like any suspected phishing message, it should be reported (How to Report). You will be notified that the phish was a simulation.

If you miss it and accidentally click, youll see a page that reassures you its just practice and highlights the warning signs to watch out for next time. Close that page and report it anyway. After all, its good practice.

Have questions?

If youd like more information on identifying phish, resources are available to you here. If you have questions, concerns, or comments about our Phish Reporting exercises please contact our IT Security team (security@mc3.edu).

Some content used with permission from Harvard University IT Information Security Group.



Article ID: 12641
Created: October 24, 2023
Last Updated: October 24, 2023
Author: Bill Rosenbaum

Online URL: https://kb.mc3.edu/article.php?id=12641