Carrier Company’s Success against Smishing
Learn how a leading carrier company trained 15,000 employees with SMS-based security training, achieving a 90% success rate in phishing recognition.
Introduction
A leading carrier company with 18 regional offices, 40 transfer centers, 1,500 branches, 6,000 vehicles, and 15,000 employees serves nearly 20 million people monthly. They faced a big ongoing challenge: social engineering attacks.
It was difficult to provide cybersecurity training for their large team, many of whom used only mobile phones without email accounts. Managing threats from email, voice (vishing), SMS (smishing), and MFA phishing added to the challenge.
After evaluating options, they chose Keepnet for SMS-based training. Keepnet's comprehensive solution against social engineering threats included specialized security training via SMS. The goal was to enhance digital security, build trust with customers, employees, and partners, and maintain a strong global brand reputation.
Successful Outcomes
Educated 15,000 employees globally using the SMS Delivery feature.
Prevented a $2,635,500 potential loss.
Improved employees’ ability to recognize phishing by 90% in 6 months.
Risks of Social Engineering Attacks for Couriers
As a global courier company, this organization faces not only typical cybersecurity threats but also challenges specific to logistics and delivery. Human risk, responsible for 95% of cybersecurity incidents, significantly impacts the company. Here's a closer look at the implications:
Operational Issues: Responding to phishing attacks could have strained resources, causing delayed deliveries, misrouted packages, or warehouse backlogs.
Exposure to Identity Fraud: Attackers could have gained access to employee credentials, manipulating transportation routes or timings, posing a unique threat to couriers.
Package Integrity Concerns: Security breaches might have resulted in theft, tampering, or unauthorized access to sensitive or classified shipments.
Client Confidentiality Issues: Breaches could have leaked trade secrets, prototypes, or sensitive documents, raising corporate espionage concerns.
Real-time Tracking Vulnerabilities: Attacks could have manipulated or faked delivery statuses, causing panic, confusion, or mistrust among customers.
Regulatory Consequences: Non-compliance could have led to fines, penalties, and legal issues, potentially resulting in heightened inspections or suspension of operational licenses.
Financial Problems: Security issues might have caused compensation claims for compromised, lost, or misdirected shipments, as well as data breaches and ransoms.
Reputational Damage: Compromises in confidentiality and reliability could have severely tarnished the company's reputation, especially regarding sensitive shipment details or customer data.
Potential Loss Prevented
The average loss per individual | $502 |
Employees recognize and report Phishing | from 55% to 90% in 6 months |
The total potential loss prevented: $2,635,500 annually | |
How the Carrier Company Boosted Smishing Awareness
Delivered SMS cybersecurity training directly to mobiles, ensuring inclusive education for all employees without email access.
Created tailored posters, infographics, and additional materials, reinforcing security awareness and best practices.
Simulated phishing, vishing, smishing, and MFA scenarios improved employees' ability to recognize and respond to actual threats, building their confidence in identifying phishing attempts.
Reduced the risk of human error by familiarizing users with common phishing tactics, Continuous training initiatives fostered a proactive security culture, encouraging employees to participate actively in the organization's cybersecurity efforts and making security a shared responsibility.
Minimized the risk of penalties and legal consequences using regular social engineering simulations and awareness training to ensure compliance with cybersecurity regulations.
Increased employees' awareness of potential threats, and instilling good reporting habits through automated training modules and reminders by continuously analysing of risky behaviors.
Operational Results
Trained 15,000 employees globally using Keepnet’s SMS Delivery feature.
Achieved a 90% success rate in identifying phishing attempts.
Enabled swift responses with automated incident reporting.
Strengthened the company's security culture and better-prepared employees to handle phishing attempts.
Strategic Results
Prevented a potential loss of $2,635,500.
Ensured compliance with laws and regulations.
Strengthened digital security with robust protocols and an incident response strategy.
Streamlined automatic training, increasing efficiency by eliminating the need for in-person training.
"In our industry, many employees are always on the move, without computer access. The traditional methods of training just weren't cutting it. Thanks to Keepnet, we've revolutionized our approach. Delivering cybersecurity training directly to their mobile phones via SMS has ensured that even our team members who rely solely on mobile phones aren't left behind in our cybersecurity initiatives. This platform truly understands the unique challenges of our industry and has provided us with an invaluable solution.”