Defending Against Callback Phishing
Learn how a leading telecommunications company successfully stops callback phishing attacks, strengthening their security posture and protecting their customer data.
Introduction
A telecommunications provider with 22,000 employees faced a significant threat from callback phishing. Attackers were trying to trick employees into calling a number from a voicemail, email, or text message, leading to data breaches or financial losses.
To counter this, the company partnered with Keepnet to implement a Callback Phishing Simulator. Callback phishing aims to increase employee awareness and preparedness against callback voice attacks, protect customer data, and uphold the company's reputation for reliability and security.
Successful Outcomes
Saved $17,900 annually in incident handling costs.
Improved employees' ability to recognize callback phishing by 93% in one year.
Reduced vishing risk score from 79% to 7% in a year.
Impact of Callback Phishing Attacks
Legal and Compliance Risks: Failure to adequately train employees could lead to legal repercussions and penalties for non-compliance.
Financial impact: Callback phishing can result in significant financial losses of up to $4 million due to data breaches and fraud.
Reputation Damage: Any data breach could harm the company’s reputation as a trusted internet service provider.
Operational Disruption: Dealing with the aftermath of phishing attacks can consume valuable resources and disrupt normal operations.
Cost Saved From Incident Analysis and Response
Avg. time to respond to a Callback Phishing incident | from 6 hours to 2 minutes |
The average cost of one staff | $60 per hour |
The cost of a single Phishing incident reduced | from $360 to $2 |
The average number of Phishing incidents reported per year | 50 |
The total estimated cost savings are $17,900 annually (reducing the cost from $18,000 to $100). | |
How the Telecommunications Company Overcame Callback Voice Scam Challenges:
The telecommunications company introduced a Callback Phishing Simulator to help employees recognize and respond to callback voice phishing attempts more effectively.
They implemented a targeted vishing awareness training program designed to address specific behaviors and improve security awareness.
With guidance from Keepnet, the company developed strategies to combat callback phishing threats and improve their defenses.
Employees were trained to report callback phishing attempts properly, and a reporter add-in was provided for quick reporting of suspicious emails.
Regular simulated callback phishing tests and security awareness training sessions were conducted to ensure the company remained compliant with cybersecurity regulations.
The company closely monitored how employees handled potential phishing scenarios. If an employee made a mistake, the system automatically provided specific training to address the issue.
Operational Results
Trained employees to achieve a 93% success rate in identifying callback phishing attempts.
Reduced vishing risk score from 79% to 7% in a year.
Lowered employee anxiety related to voice phishing threats.
Streamlined learning with automated training, replacing manual operations.
Strategic Results
Saved $17,900 in incident handling costs per year.
Addressed cybersecurity laws and regulations, eliminating penalties.
Empowered employees to fight phishing attacks effectively, creating a stronger security culture.
“Our collaboration with Keepnet in minimizing the threat of callback phishing is more than a strategy; it's a bold statement of our unwavering commitment to digital security and trust. By arming our team with the advanced skills needed to outsmart these threats, we're enhancing our defenses and redefining internet safety standards for our customers. By empowering our team with Keepnet' cutting-edge Callback Phishing Simulator, we're not only bolstering our defenses, we're setting a new gold standard in internet safety within our company.”