Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    Security Awareness Training Blog

    New Report: Mobile Phishing on the Rise

    85percentWith users being three times more likely to click on a suspicious link on their mobile device, along with over half of mobile users tapping on a phishing URL, mobile phishing is a bigger problem than you think.

    Cybercriminals are always looking for every possible way to make money off of a compromised device. While, the attack on mobile devices is nothing new, it’s gaining momentum as a corporate attack vector. With mobile operating systems less sophisticated to detect malicious links, and with users more trusting of the device and their interactions on it, mobile phishing is alive and well.

    The goals of mobile phishing are to either trick the victim into providing credentials to a corporate application, or to install surveillance software in stealth to harvest data and activity details from the device.

    A recent report from Lookout, a Mobile Endpoint Security firm, shows a number of important findings around mobile phishing that you need to be aware of:

    • The rate at which users are falling victim to mobile phishing attacks has increased 85% every year since 2011.
    • Phishing doesn’t only happen in email. 25% of employees click on links found in text messages. Facebook messenger is another medium used.

    Some of the reasons mobile users are easier victims have a lot to do with the user experience:

    • It’s difficult to manually validate links – on a desktop, users can be trained to hover over a link and see the target URL. This isn’t easy to accomplish on a mobile device.
    • URLs displayed in a mobile browser are often truncated to only show either the domain name or the name on the SSL certificate – in either case, the user isn’t able to easily verify the actual URL they’re visiting.
    • Mobile devices exist outside the perimeter – any kind of web scanning technology used internally won’t apply when user’s roam outside the corporate wall.

    As part of your Security Awareness Training, it’s imperative that you educate users on how they should approach web use when on their mobile device. By training them on phishing and scam methods, as well as how to validate where they are browsing on the web, you will increase your corporate security stance, and reduce the risk of compromise.

    Free Phishing Security Test

    Did you know that 91% of successful data breaches started with a spear phishing attack?

    Cyber-attacks are rapidly getting more sophisticated. We help you train your employees to better manage the urgent IT security problems of social engineering, spear-phishing and ransomware attacks. Take the first step now. Find out what percentage of your employees are Phish-prone with our new, improved free test. 

    Get Your Free PST Now

    PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

    https://www.knowbe4.com/phishing-security-test-offer

     

    Return To KnowBe4 Security Blog

    Topics: Phishing

    Stu Sjouwerman

    ABOUT STU SJOUWERMAN

    Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

    Read more from Stu »

    Subscribe to Our Blog


    Security Awareness Training
    Blog RSS Feed
    Comprehensive Anti-Phishing Guide
    All Posts

    Posts by Tag

    See all

    Posts By Topic

    View All

    Get the latest about social engineering

    Subscribe to CyberheistNews