Phishing continues to be the number one attack vector. Why? Because it works— all too well. Industries of every kind fall prey to these scams—from financial organizations to government contractors to healthcare firms. Today’s cybercriminals manage to evade even the most sophisticated security technology through carefully planned, socially engineered email attacks that are only getting more advanced.

The fifth annual State of the Phish Report provides the data-driven intelligence you and your team need to manage end-user risk more effectively within your organization. In this report, our focus mirrors that of cyber attackers: people. You will see data related to the following:

Tens of millions of simulated phishing emails

We compiled and analyzed data from tens of millions of simulated phishing emails sent to end-users via our cloud-based Security Education Platform between October 2017 and September 2018.

16 industries

We compare and contrast activities and results from organizations and their employees across 16 industries.

Nearly 15,000 survey responses from InfoSec professionals

We sent quarterly surveys to our database of InfoSec professionals (customers and non-customers) throughout 2018. Their responses reveal the challenges they are facing, their views of the threat landscape, and the actions they’re taking to fend off phishing attacks.

7,000+ technology user insights

Our third-party survey of more than 7,000 working adults—1,000 each in the US, UK, France, Germany, Italy, Australia, and Japan—reveals understanding of common social engineering terms and attack vectors. The results provide a global perspective on the awareness levels of the average end-user.

Be sure to submit your questions ahead of time for our presenters.

Earn 2 CPE credits

Generously Supported By:

supported by logo
WombatSecurity photo
speaker photo
Alexandra Panaretos
Cybersecurity Lead for Security Awareness and Training in the Advisory Practice, Ernst & Young LLP

Alex is the Americas Cybersecurity Lead for Security Awareness and Training in the Advisory practice of Ernst & Young LLP. She specializes in cybersecurity awareness and education program design, physical and personal security training and program development, the psychology of social engineering, behavior analytics, and operations security program development. Her primary focus in awareness program design is the individual, which she showcases in materials that are relevant for multiple generational, cultural, and learning styles in an enterprise.

Alex has over 10 years of experience developing and implementing cybersecurity awareness and education strategies in government, military family services, the Department of Defense, and global health and business industries. She is Operations Security Program Manager certified by the Joint Information Operations Warfare Center and the U.S. Army.

speaker photo
Gretel Egan
Security Awareness and Training Strategist, Proofpoint Security Awareness Training (formerly Wombat Security)
Gretel Egan is the Security Awareness & Training Strategist for Proofpoint Security Awareness Training - the leading provider of information security awareness and training software that helps organizations educate employees. She has extensive experience in researching and developing cybersecurity education content and was named one of “10 Security Bloggers to Follow” by IDG Enterprise.
speaker photo
Alan Levine
Cyber Security Advisor, Proofpoint Security Awareness Training (formerly Wombat Security)

Alan Levine is the former CISO for two Fortune 500 companies, Alcoa and Arconic, with 20 years of experience leading global cybersecurity programs. He was a founding member of the Microsoft Security Council, Oracle's GRC Council, and other supplier/customer committees. He is currently Board Chair and founding board member of Carnegie Mellon University's Chief Information Security Officer's Executive Program. He has a BA from John Jay College of Criminal Justice, an MA from City College of New York, and is ABD from Carnegie Mellon University. Alan has received personal commendations from FBI Directors Mueller and Comey for his support of critical investigations.

speaker photo
Tom Bechtold
Director of Web Content, SecureWorld
Tom works with the vendor and practitioner communities to provide quality educational content for information security professionals. This includes forming a National Advisory Board of CISOs & Directors of Security from across the US, developing the SecureWorld web conference and digital marketing programs, and working with nationally recognized industry thought leaders.