TTPwire Vol. 1 · MITRE ATT&CK·Tagged

← All stories

Huntress

Teach Yourself to Phish | Huntress

2023-12-19 · Read original ↗

ATT&CK techniques detected

5 predictions
T1566.002Spearphishing Link
96%
"to get our employees to fail. by failing the test, they become more aware of their vulnerability and pay better attention — at least for a few months, according to this data. behind the phish for the sake of keeping this brief, i want to talk through my strategy for the first two…"
T1598Phishing for Information
54%
"sender of emails. we also did not see a single re - clicker ; no one who failed in january failed in february. awesome. we also had our employees dropping screenshots of the phishing email all over slack ; the organic dissemination of the threat was quick to de - fang the simulat…"
T1598Phishing for Information
52%
"teach yourself to phish | huntress security awareness training is easy to think about as a passive item. you go buy a training platform or scorm files for your lms, assign the annual training, set it to nag your people to watch the video, and you ’ re done. while that approach ce…"
T1566.002Spearphishing Link
52%
"a server. they find a vulnerable asset and exploit that vulnerability in order to gain initial access to a system. simulated phishing has the same desired outcome as vulnerability scanning your servers. we want to know where there are weaknesses so we can address them. said diffe…"
T1566.002Spearphishing Link
35%
"one - offs. 3. measure your organizational reporting phishing attacks can be combated quickly, when alerted upon. we can revoke emails from inboxes, send awareness announcements, and more. but it all depends on how quickly a campaign is reported. i treat a campaign that is report…"

Summary

Get ready for a phishing trip! Learn about the strategy behind phishing simulations and how it can help your organization build resilience against real phishing threats.