Educause Security Discussion mailing list archives

Re: Self-Phishing - show of hands

From: Christine Streeter <christinestreeter () ADAMS EDU>
Date: Thu, 11 Feb 2016 09:45:12 -0700

1. Phish tests for all employees.
2. KnowBe4.com
3. Phishing since July 2015

We also leverage KnowBe4's security awareness training for our employees.

[image: adams state logo]
*Christine Streeter*
IT Support Administrator
Adams State University | Computing Services
208 Edgemont Boulevard, Suite 4070 | Alamosa, CO 81101
719-587-7741 (phone) | 719-587-8022 (fax)
                      Computing Services
<http://www.adams.edu/administration/computing/index.php> | Like Us on
Facebook <http://www.facebook.com/ASUComputingServices>



On Thu, Feb 11, 2016 at 9:23 AM, Dennis Duncan <dduncan () cord edu> wrote:

1.       We run phish tests against all employee accounts, Faculty & Staff

2.       KnowBe4.com

3.       Since the start of the school year, September 2015



Along with the phishing email campaigns, we also have employees go through
KnowBe4’s security awareness training.  This training has been very well
received by our community.



--

*Dennis Duncan, CISSP*

Director, IT Infrastructure Services

Information Security Officer

CONCORDIA COLLEGE│901 8TH ST S│MOORHEAD, MN 56562

ph: 218.299.4192 │ dduncan () cord edu │ www.cord.edu



*From:* The EDUCAUSE Security Constituent Group Listserv [mailto:
SECURITY () LISTSERV EDUCAUSE EDU] *On Behalf Of *Eric Weakland
*Sent:* Thursday, February 11, 2016 9:38 AM
*To:* SECURITY () LISTSERV EDUCAUSE EDU
*Subject:* [SECURITY] Self-Phishing - show of hands



Greetings,

I'm working on a publication on self phishing for HEISC and preparing to
leverage our self-phishing service (SANS) in the coming year.  I am trying
to develop a list of universities who are doing "self phishing".

If your institution is self phishing your community - would you mind
dropping me a note with the following items.

Who are you phishing? (Select groups, All Staff, All Faculty, All
Students, everyone etc.)
What are you using? (Vendor, custom or opensource and the name of the
vendor or project.)
How long have you been phishing your customers?

Thanks everyone!

Regards,

Eric Weakland, CISSP, CISM, CRISC
Director, Information Security
Office of Information Technology
American University
eric at american.edu
202.885.2241

_____________________________________________
Emails from IT asking you to log in with a link are scams!

Current thread:

Self-Phishing - show of hands Eric Weakland (Feb 11)
- Re: Self-Phishing - show of hands Kevin P. Sale (Feb 11)
  - Re: Self-Phishing - show of hands Eric Weakland (Feb 11)
- Re: Self-Phishing - show of hands Jeff Choo (Feb 11)
- Re: Self-Phishing - show of hands Feehan, Patrick (Feb 11)
  - Re: Self-Phishing - show of hands Eric Weakland (Feb 11)
- Re: Self-Phishing - show of hands Dennis Duncan (Feb 11)
  - Re: Self-Phishing - show of hands Stefan Wahe (Feb 11)
  - Re: Self-Phishing - show of hands Christine Streeter (Feb 11)
    - Re: Self-Phishing - show of hands Jenny Blaine (Feb 11)
    - Re: Self-Phishing - show of hands Sol Bermann (Feb 12)
- Re: Self-Phishing - show of hands Melanie Lever (Feb 12)
- Re: Self-Phishing - show of hands George Moore (Feb 16)
- Re: Self-Phishing - show of hands Paul Chauvet (Feb 17)