A new study from CybeReady finds that experience matters, when it comes to cybersecurity, with new hires being twice as likely as veteran employees to fall for phishing attacks. Michal Gil, head of product management at CybeReady, points to lack of familiarity with the organization and colleagues as a big driver for this increased risk for new employees. Said Gil to HR Reporter, “We had someone in our company who got a phishing email from the CEO, telling her to buy gift cards. So that woman automatically clicked on the phishing email and wanted to purchase a gift card for the CEO, because new employees want to please. They don’t know anyone, they want to make everyone happy. They want to prove that they’re really good, loyal, professional employees.”
CEO of CybeReady Eitan Fogel notes this lack of familiarity helps support the need for increased cybersecurity training from Day 1. Said Fogel to HR Reporter, “By recognizing the increased vulnerability of new employees and providing targeted training at various stages of veterancy and risk levels, organizations can mitigate cyber risks and thereby strengthen their overall security posture.”
It’s important to consider how you’re training your new and veteran employees too, and ensuring they’re understanding both the material presented, and the importance of cybersecurity. Much of the time, however, that’s not the case, and Gil notes there’s a big reason driving this. Says Gil, “The biggest problem is that it’s boring.”
Source:
