While figures vary across industry and government as to the size of the “phishing-prone” population in any organization, both sides agree that sustained internal employee training efforts are necessary to cut the success rate of spear-phishing exploits down to more manageable levels. […]

Cyber tech provider Proofpoint said a recent security awareness audit of employees that undertake security training concludes that people are only hitting on the right answers 78 percent of the time.


email security DMARC

Today marks the Department of Homeland Security’s (DHS) deadline for Binding Operational Directive (BOD) 18-01, which requires Federal agencies to adopt the Domain Message Authentication Reporting and Conformance protocol (DMARC) for email authentication.