Salus Cyber

Penetration Testing

Phishing

Evaluate your susceptibility to phishing.

Protect your business and employees with our specialised Phishing Campaign Service. Our service simulates real-world phishing attacks, providing an effective way to test your email filtering system and employee awareness.

Phishing is an attack vector that has been steadily increasing over the years, making it more critical than ever for your organisation and employees to be protected from this type of attack. Our phishing services are led by a team of experts that have engaged in numerous phishing campaigns, both as a standalone service and as part of red team engagements. Our experienced consultants understand businesses and their unique requirements when it comes to providing Phishing campaigns that are useful for your needs.

Here is an overview of our Phishing process:

 

  • Scoping: We begin by working with you to determine your business goals and help tailor the phishing campaigns targeted towards your organisation.

 

  • Target Identification: This phase involves acquiring all the email addresses that will be targeted during the Phishing campaign and what types of emails they will be subject to.

 

  • Preparing Campaigns: During this phase, our team will begin preparing the Phishing campaigns that will be run against your organisation. This includes drafting emails and creating fake websites to trick users into submitting sensitive data such as credentials.

 

  • Exploitation: Our team will begin the Phishing campaign by sending emails to all employees in scope and monitoring how they react and respond to the emails.
First Line Dark

IMPROVED EMPLOYEE AWARENESS

Phishing campaigns are designed to help improve employee awareness of these styles of attacks and to identify any weaknesses with how emails are being filtered before reaching employees.

COST SAVINGS

Identifying and addressing weaknesses before real-world attacks can significantly reduce the likelihood of your organisation incurring significant costs associated with data breaches, such as fines and reputational damage. By taking a proactive approach to cybersecurity, you can limit the likelihood of your organisation being affected by a cyber-attack.

PHISHING ATTACKS BECOMING MORE SOPHISTICATED

Phishing is becoming one of the key security risks for many large organisations when it comes to protecting their data and employees. Phishing attacks are becoming more sophisticated, making it difficult for organisations to stay protected. Addressing this requires organisations to promote a culture of awareness around Phishing and educating employees on how they can spot malicious emails. Our company addresses this problem by providing tailor-made guidance for your organisation on how to best approach issues raised.

EMPLOYEES FEELING TARGETED

Performing this type of test without making employees feel like they are being targeted or blamed is one of the challenges of this type of testing. Our team understands that some organisations may not be as aware of phishing issues as others. Our company resolves this issue by ensuring our team makes everyone feel like they are being supported by using a no-blame approach.

More Penetration Testing 

Application Testing

Infrastructure Testing

Scenario & Red Teaming

Security Configuration Review

How we work

Customer Journey

  1. Identify

    First, we take time to familiarise ourselves with your business. This allows us to clearly understand your requirements, your business risks, your key pain-points, and the outcomes you’re looking for.

  2. Understand

    We turn those requirements into crystal-clear scoping and test plan documents, so you know precisely what we’ll be doing, when we will be doing it, and how we will do it.

  3. Test

    We deliver what we promised.
    Simple.

  4. Inform

    Every report we create is unique based on your business, we don’t use cookie cutter data for our summaries or our remediation plans. Our precise and concise findings brief will advise what steps your business needs to take next to reduce cyber risk.

  5. Remediate

    We can ensure that the remediation process is tracked and coordinated within your business, we will allocate resources to point you in the right directions or if you need our help directly with remediation, we’ve got you covered.

  6. Feedback

    Your opinion is important to us, so we send a questionnaire to every one of our customers after each project – so you can let us know how we did.

Request a call back