Header image overlay

You won't catch a fish which recognizes the hook

"They're trying to screw us over!". I can't put it any better than the late René Jacques (a famous Belgian drunk). Your employees are approached from all sides in the hope that they would disclose sensitive data. And you can only hope that it remains an occasional transparent mail or text message ...

Compared to last year (2020), the number of cyber attacks in Belgium has already increased by 66%. Every week, no less than 600 serious incidents are registered in Belgium. Hackers are becoming increasingly sophisticated and both online and offline(!) it is easier than ever for them to carry out targeted attacks.

We give hackers the run-around

It has become child's play to get hold of personal data. Many people show everything openly on their social media anyway. But also the more careful fellow citizen is a bird for the cat thanks to the many data leaks with which social media or large companies are confronted. This plays into the hands of malicious parties.

E-Mail Phishing | VanRoey.be The consequence? The infamous Nigerian prince was exchanged for someone in the management team. Phishing messages are now sent from your bank, with a personal address.

  • Is that really your customer sending you a zip with a new order?
  • Is that your boss asking you -in all discretion- to pay a big bill immediately?
  • Is that Jan from the IT department asking you to sign in again on www.j0uwbedrijf.be/portaal...?

Detecting phishing is becoming increasingly difficult

Sometimes even seasoned IT specialists find it hard to distinguish whether a message is phishing or not. How challenging must that be for non-technical staff?

It goes even further than that. It happens that we find suspicious devices in organizations. "I found the USB stick in the reception desk" or "It was given to me by a salesman"... without them realizing that the stick can contain malware.

You are the weakest link

IT administrators do their utmost to ensure that all employees work as safely as possible, both in the office and at home. That's no laughing matter. But the weakest link in the chain remains the end user. The question is: how alert are they to identify suspicious messages, software, devices ...?

Don't assume they can just do this. You need to teach your staff the right reflexes. If a child has to look three times before crossing on a busy lane, a colleague should think three times before signing in or responding to certain emails.

How do I teach my employees to recognize phishing and risks?

Average 40% of your employees are inclined to click on phishing emails. By giving them a 'Security AwarenessAfter three months, the number drops to 20%. After one year, it drops to barely 2 to 4%. This is how you prevent serious malware or data loss. It is therefore logical that cybersecurity insurers make such a course for your staff a mandatory condition.

How does such a process work?

KnowBe4 Security Awareness - Organization's Risk Score | VanRoey.be It starts with a baseline measurement. Based on a survey, the risk score of your organization is calculated. You will receive an extensive report. This will also show you who is most susceptible to phishing, per department and even per profile.

Subsequently, certain profiles are offered tailor-made video training programmes. They have to complete short, instructive routes. You can choose from hundreds of existing videos in different languages, and/or use your own videos. When they have completed their course, it is time for practical tests.

KnowBe4 Security Awareness - Vishing templates | VanRoey.be This is the most fun part: totally unexpectedly your colleagues will receive fake phishing mails from the Security Awareness Platform and will be approached by phone via 'Vishing'. In this case we will measure how easily they release their personal data over the phone. Finally, some USB sticks with special software will be distributed on the work floor.

As an IT administrator you get to see who fell into the trap(s). Who put the USB stick in the PC? Who clicked on the phishing links? Who exposed sensitive info on the phone?... You can address these colleagues, provide new training and they will be closely monitored with new tests.

An investment with (in)visible ROI

Phished LogoSerious hacks, ransomware, data leaks, industrial espionage ... the consequences are incalculable. You invest with the Security Awareness platform in the safety of your staff and your organisation. In 2021, Forrester calculated the ROI to be 276% in three years and the project will have paid for itself in just three months... And you can sleep a little more soundly.

KnowBe4 Premier Partner logo

Want to see how it works? Contact Feel free to contact us or watch our webinar on the KnowBe4 Managed Security Awareness Platform below:

"Totally unexpectedly, your colleagues will be sent fake phishing emails from the Security Awareness Platform and approached by phone. In this case, it will be measured how easily they disclose their data over the phone."

share this post:

Still hit?
Detect malware (e.g. exploiting zerodays) and prevent further infection
During this extensive demo session (42 min) we will show you the platform. We will go through the training videos, the phishing templates, the reporting and much more!
Since 18 October, NIS-2 is officially in force! Together with our partners, we are organising a Cybersecurity Workshop on 30/01 to share practical insights and tools that you can apply immediately to protect your organisation and become NIS-2-compliant.
The role of the IT Manager is changing more than ever. How do you combine these crucial responsibilities and make the shift from operational to strategic?