Recieve A Free Mock Phishing Attack and Employee Training Class
Redeem at www.raymorgan.com/stop-phishing
Test Employee Willingness to Click on Suspicious Links
Provide Key Training To Reduce Risk
No Cost Training Exercise
such as ransomware and email campaigns can compromise your business network, security, and data. Ray Morgan Company runs email phishing exercises within your organization to best determine how prepared your staff are for these kinds of attacks. Our exercise will provide a report of phishing events and recommended “self-training” modules for your staff. Employee education is essential if you do not want your business to be part of the daily phishing catch.
Phishing Mock Attack Process
- You provide a list of all employee email addresses that you want targeted.
- A baseline test is scheduled to determine your company’s current susceptibility to phishing.
- A report is sent to the main contact daily to see the progress.
- 5-10 days after the first attack finishes, a training class is conducted to cover the results and how to identify phishing emails. 15 training classes that last 5 min each are provided but the first 5 are recommended for this training session.
- About 15 days later a follow-up test is conducted with the same reports.
- This is an example of what RMC Managed IT can do for you.
90% of breaches are attributed to successful phishing campaigns
4% of employees will click on any given phishing campaign
Companies are nearly three times more likely to be breached by social attacks than by network vulnerabilities
Employee education is essential
It’s important to establish a baseline and close existing vulnerabilities. When was your last assessment?
Secure your email. Most attacks originate in your email. We’ll help you choose a service designed to reduce spam and your exposure to attacks on your staff via email.
Apply security policies on your network. Examples: Deny or limit USB ﬁle storage access, enable enhanced password policies, set user screen timeouts, and limit user access.
Utilize Multi-Factor Authentication whenever you can including on your network, banking websites, and even social media. It adds an additional layer of protection to ensure that even if your password does get stolen, your data stays protected.
Keep Microsoft, Adobe, and Java products updated for better security. We provide a “critical update” service via automation to protect your computers from the latest known attacks.
Advanced Endpoint Detection & Response
Protect your computer’s data from malware, viruses, and cyber attacks with advanced endpoint security. Today’s latest technology (which replaces your outdated anti-virus solution) protects against ﬁle-less and script-based threats and can even rollback a ransomware attack.
Train your users – often! Teach them about data security, email attacks, and your policies and procedures. We offer a web-based training solution and “done for you” security policies.
Web Gateway Security
Internet security is a race against time. Cloud-based security detects web and email threats as they emerge on the internet, and blocks them on your network within seconds – before they reach the user.
Mobile Device Security
Today’s cybercriminals attempt to steal data or access your network by way of your employees’ phones and tablets. They’re counting on you to neglect this piece of the puzzle. Mobile device security closes this gap.
Turn on Intrusion Detection and Intrusion Prevention features. Send the log ﬁles to a managed SIEM. And if your IT team doesn’t know what these things are, call us today!
EncryptionWhenever possible, the goal is to encrypt ﬁles at rest, in motion (think email) and especially on mobile devices.
Backup local. Backup to the cloud. Have an ofﬁne backup for each month of the year. Test your backups often. And if you aren’t convinced your backups are working properly, call us ASAP.