Genuine email phishing scam or IT phishing simulation?

From time to time, our Cyber Security Team runs email phishing simulations that replicate real-life phishing scams. Some of these simulations are easy to spot, while others are deliberately more subtle.

These exercises bring several important benefits to the Trust, including:

See the source image Reducing security risks by helping us identify and address vulnerabilities related to social engineering attacks.

See the source image Raising awareness among staff about how attackers design convincing, genuine-looking emails to deceive recipients.

See the source image Creating a safer workplace, as the lessons learned extend beyond the office and can help protect staff in their personal digital lives too.

In our most recent phishing simulation, 14% of staff clicked on the simulated link—a reminder that even cautious users can be caught out by a well-crafted email. Those affected will receive (ironically, by email!) an invitation to complete short online training designed to help recognise and avoid phishing attempts. Phishing Training Email - 'You have training(s) to complete'

Remember: stay vigilant. Always question unexpected or unusual emails if in doubt, get it checked out, using this form: Suspicious Email