Below are the results from our latest email phishing campaign. The email was sent to 98 staff members and consultants, resulting in 4 link clicks, which corresponds to a phish-prone percentage of 4.1%.

As part of our ongoing efforts to enhance our cybersecurity awareness and resilience, we will continue to conduct phishing simulation campaigns. These simulations are designed to coincide with actual staff activities and events to better prepare us for real-world scenarios.­­­

• 34 reported by the Phish Alert icon.

Please follow the tips below to avoid falling for a faulty email. Thank you all that recognized and reported these types of spam/phishing emails. As always do not hesitate to click the Phish Alert Button or forward any emails as attachments to helpdesk@acord.org if unsure of its authenticity.

1. EXT – External Email Indicator. Be extra vigilant when an email with an EXT in the subject.
2. Unfamiliar Email Address. Human Resources communicates via BambooHR.
3. External Email Caution Banner. Be extra vigilant when receiving an external email.
4. Hover over the link. Peek at the URL and check if it looks legit.
5. Vague Signature. Does not include call back number, email address or validity check.
6. Stop and Think. Am I expecting an email from HR? If not sure, click “Phish Alert” and confirm with IT.
7. If viewing from a cell phone, wait until you’re at your computer to help validate the email. If unsure, click “Phish Alert” and confirm with IT.