UK 
United States
Fake HR-related emails are one of the most common methods used by fraudsters executing cyberattacks on organisations worldwide, according to new research.
KnowBe4, a provider of security awareness training and simulated phishing platform, revealed the concerning findings as part of new research on the most common email subjects clicked on in phishing tests, reflecting the persistent use of HR or IT-related business email messages to catch employees’ eyes and lure them in to what appears like a genuine internal email.
KnowBe4’s 2023 Phishing by Industry Benchmarking Report revealed that nearly one third of users are susceptible to clicking on malicious links or complying with fraudulent requests. As a result, cybercriminals take advantage of this vulnerability and leverage the innovative tools available to them, such as AI, to come up with increasingly sophisticated messages to outsmart users.
These frausters tailor phishing email strategies to appear more legitimate in their requests and trick employees by inciting an emotional response and urgency to click on a malicious link or download an infected attachment.
Continue reading for FREE!
Sign up for a myGrapevine account to get:
- Unlimited access to News content
- The latest Features, Columns & Opinions
- A full range of specialist HR newsletters to choose from
