AmeriCorps’ Penetration Testing and Phishing Campaign Evaluation
Open Recommendations
Develop and implement a plan to modify external emails to include information to assist the recipient of the level of risk posed by external email. For example, the Subject line of an email should be modified to identify the source of the email as external to the agency. In addition, the body of the email should contain warnings concerning the dangers of external email and attachments. Finally, warnings should include how frequently the sender has interacted with the recipient.
Develop and implement a plan to modify external emails to include information to assist the recipient of the level of risk posed by external email. For example, the Subject line of an email should be modified to identify the source of the email as external to the agency. In addition, the body of the email should contain warnings concerning the dangers of external email and attachments. Finally, warnings should include how frequently the sender has interacted with the recipient.
Implement a plan to increase the frequency of behaviortraining directed at the identification of unwanted spam emails with an emphasis on continual reminders of recognition techniques, appropriate actions, and confidence that self‐reporting poor behavioral actions will lead to a better outcome in the future.
Implement a plan to increase the frequency of behaviortraining directed at the identification of unwanted spam emails with an emphasis on continual reminders of recognition techniques, appropriate actions, and confidence that self‐reporting poor behavioral actions will lead to a better outcome in the future.
Implement a process to improve the detection rate to reduce the occurrence of email spam that reaches the users’ inboxes.
Implement a process to improve the detection rate to reduce the occurrence of email spam that reaches the users’ inboxes.