Hello All,

Below are the results from our latest email phishing campaign. The email was sent to 87 staff members and consultants, resulting in 2 links clicked, which corresponds to a phish-prone percentage of 2.3%.

As part of our ongoing efforts to enhance our cybersecurity awareness and resilience, we will continue to conduct phishing simulation campaigns. These simulations are designed to coincide with actual staff activities and events to better prepare us for real-world scenarios.

• 38 reported by the Phish Alert icon.

Please follow the tips below to avoid falling for a faulty email. Thank you all that recognized and reported these types of spam/phishing emails. As always do not hesitate to click the Phish Alert Button or forward any emails as attachments to helpdesk@acord.org if unsure of its authenticity.

1. EXT – External Email Indicator. Be extra vigilant when you receive an email with an EXT in the subject.
2. Unfamiliar Email Address. Confirm if you’ve received email from this sender previously.
3. External Email Caution Banner. Be extra vigilant when receiving an external email.
4. Hover over the links. Peek at the URLs and check if it looks legit.
5. Stop and Think. Am I expecting an email from DocuSign? If not sure, click “Phish Alert” and confirm with IT.
6. If viewing from a cell phone, wait until you’re at your computer to help validate the email. If unsure, click “Phish Alert” and confirm with IT.