New self-phishing tool helps companies measure attack risks

Protecting against data breaches is always better than dealing with their aftermath. And since phishing is still one of the most popular attack methods businesses and employees need to be alert to the risks.

Authentication specialist Duo Security is launching a new, free tool to let IT teams run internal phishing simulations and assess their vulnerability to such attacks.

Using Duo Insight, administrators can identify potential security weaknesses and make the case for investing in stronger security solutions. It produces easy-to-read reports that make it straightforward for administrators and security teams to present the relevant findings to management.

"Unfortunately, many organizations lack the resources to accurately measure the risk of being phished," says Ash Devata, vice president of product at Duo. "Our free tool, Duo Insight, helps security professionals identify users and devices that are susceptible to a phishing attack".

Credentials are still the number one source of breaches so preventing them from falling into the wrong hands has to be a priority. Based on the first hundred phishing simulations run with Duo Insight, 27 percent of end users are susceptible to phishing and 17 percent of all users actually entered their username and password. This is particularly disturbing, because it means a simple phishing campaign has a very high probability of succeeding.

You can access the free Duo Insight tool on the company's website.

Photo Credit:  Ivelin Radkov/Shutterstock