New Readers

 Home News and World Report Buyers Guide Global Excellence Technology Case Studies Editorial Awards About Info Security

Motivation and willingness to change behavior



Phishing is an email-based social engineering technique employed by attackers, to exploit employees of an organization and steal sensitive data that may facilitate unauthorized access to company resources. Spear phishing is a more targeted form of phishing, in which attackers customize the phishing emails and collection website to a few employees. Both are prevalent in corporate America, as it is very easy for phishers to morph their tactics in order to find new ways to lure users to click on malicious links.

Info Security Products Guide
this article
COMPARE and print reports
RATE products

Tomorrow's Technology Today - Anti-Phishing Service


PhishMe is the first software-as-a-service (SaaS) solution specifically designed to help prevent damage, theft and loss caused by targeted (spear) phishing attacks. PhishMe facilitates and automates the execution of mock phishing exercises against employees, provides clear and accurate reporting on user behavior, and most importantly provides instant, targeted employee training. This method of delivering training materials is recommended by SANS and found to be most effective by researchers at Carnegie Mellon University. Phishme offers a single interface for organizations to simply and realistically design mock phishing sites and emails, provide full reporting on user behavior, and customize training materials to match the business and culture of the organization. Competitive solutions either offer pieces that cannot be centrally managed or lack Phishme’s customization.

According to one independent reviewer of PhishMe , “I wish other security vendors were as pragmatic as the Intrepidus Group. To come up with Phishme, they looked at the tools available to the bad guys and tailored their functionality for use against them. Instead of a solution with the look and feel of just another security application, this delivers a simple way to deliver exactly what the phishers do. There is no difference. And the IT team doesn't have to even be involved. This is a service that the HR staff, for example, could implement on their own as part of the company's compliance training.”Since its launch in July, PhishMe has been adopted by numerous Federal Agencies and Fortune 1000 companies across multiple vertical market sectors including Financial Services, Healthcare and Defense Contracting. In the last six months, more than 100,000 employees have been trained, using PhishMe, to identify and thwart spear phishing attacks and thus, significantly reduce cyber crime.


Phishme not only educates users on the phishing threat, it provides them with the motivation and willingness to CHANGE their behavior and stop clicking on unknown or untrusted links embedded in email messages.

The Intrepidus Group
One Penn Plaze Suite 6180,
New York, NY 10119