The first-ever research report highlights industry-specific voice phishing risks and protective strategies.

SEATTLE, May 8, 2024 /PRNewswire/ -- Voice phishing, or vishing, poses a significant social engineering threat to organizations of all sizes. On average, vishing attacks cost organizations $14 million annually. As part of the 2024 Vishing Response Report, Keepnet, a Unified Social Engineering Platform, found that 70% of businesses are susceptible to voice phishing and sharing sensitive information during simulated attacks. The report identifies specific vulnerabilities in industries and departments, showcasing the different levels of risk and preparedness against vishing threats.

Keepnet's Research Unveiled that 70% of Organizations Share Sensitive Data on Vishing Calls

The use of AI to orchestrate these attacks has led to an increase in both their frequency and sophistication.

Additionally, legal and compliance challenges often block the implementation of vishing simulation tests, complicating efforts to combat this attack.

The Vishing Response Report is the first of its kind to demonstrate the feasibility of complying with FCC, GDPR, CCPA, and similar legal requirements while conducting voice phishing (vishing) tests. The Vishing Response Report analyzed data from over 3,000 calls made from Keepnet's Vishing Simulation platform and found that:

  • Manufacturing & Engineering and Entertainment & Media industries were the two most vulnerable due to factors including less focused cybersecurity training and resources.        
  • Customer Support was the most vulnerable department across all industries due to their roles that involve a lot of communication with outside parties. This made them more vulnerable to vishing attacks.
  • The study found that 6.5% of users were deceived by vishing calls, suggesting a need for improved security training. Additionally, 40.3% did not answer these calls, which could either reflect a cautious avoidance of fraud or a troubling unavailability, potentially leaving the organization vulnerable to unnoticed criminal exploits.
  • Companies with the lowest vishing rate typically use sophisticated simulation software.

Oliver Rochford, Independent Industry Analyst, commented: "It is encouraging to discover that over half of the participants in the study recognized and resisted vishing attempts." demonstrating the effectiveness of anti-vishing training. But with 6.5% of employees still vulnerable to such scams, it is obvious that our work is never truly complete. Even a single lapse can be the catalyst for a significant breach, so ongoing vigilance is essential, especially given the impending rise in sophisticated vishing attacks powered by AI video tools.

Vishing Research Report provides a strategic blueprint for CISOs, enabling them to tailor strategies that effectively reduce human risk from voice phishing attacks while providing actionable insights. In addition, we provide a compliance roadmap for risk and compliance teams to guide them in conducting legal and secure vishing simulations. The report also helps executive and leadership teams facilitate communication, secure their support for budgeting, legal, and HR planning, streamline the implementation process, and build a robust cybersecurity culture.

"As vishing continues to pose a risk amplified by AI technology, dramatically affecting organizations of all sizes. Keepnet's Research Report has revealed ongoing, applicable, and immediate solutions for security and risk managers to minimize vishing risks, reduce potential breaches, and save on organizational costs."- Ozan Ucar, CEO, Keepnet.

Download our 2024 Vishing Response Report: https://keepnetlabs.com/reports/2024-voice-phishing-response-report

About Keepnet

Keepnet is a unified social engineering platform that addresses the human aspect of security threats, using AI to combine behavior-based training and phishing simulations across various communication channels (email, voice, SMS, QR). This approach educates employees to effectively identify and respond to threats. Our solutions significantly decrease high-risk behaviors by up to 90%, enable SOC teams to analyze phishing threats 168 times faster, and respond 48 times quicker. Features are fully automated, which enhances FTE utilization, optimizing team efficiency.

Keepnet supports SMEs to large enterprises and thousands of customers through our MSP/MSSPs, Keepnet is a leader in preventing social engineering threats through innovative security solutions.

Photo - https://mma.prnewswire.com/media/2406740/Keepnet.jpg
Logo -  https://mma.prnewswire.com/media/2404396/4686803/Keepnet_Logo.jpg

 

Keepnet Phishing Simulation and Security Awareness Company Logo

 

Cision View original content:https://www.prnewswire.co.uk/news-releases/keepnets-research-unveiled-that-70-of-organizations-share-sensitive-data-on-vishing-calls-302139468.html

Copyright 2024 PR Newswire