Information is only as secure as the weakest link, and typically, end-users are the weakest
link. In real-world attacks, attackers relentlessly target end-users with spear-phishing, spam,
and social engineering attacks to gain access to sensitive data and the internal network,
bypassing all protections provided by the external infrastructure. These attacks are frequently
successful because internal employee workstations and workflow are not sufficiently encrypted or
protected, leaving the organization exposed.
Silent Break Security’s social engineering training and testing service emulates the mission of a malicious user by identifying areas of weakness in your organization’s security controls and employee security awareness.
Silent Break Security generates and transmits mass or targeted emails to your employees simulating an actual phishing attack. Emails are manufactured to navigate your security controls and reach the intended recipient. Targeted emails are tailored to a specific group or individual to convince the recipient to click a link or download a malicious payload.
Silent Break Security conducts highly believable phone calls to unsuspecting personnel. Your general staff, help desk personnel, and/or executives may be contacted via telephone to persuade them to provide sensitive or confidential information.
Data Storage Device Assessment:
Silent Break Security creates custom undetectable malware placed on CD-ROMs, USB Thumb Drives, or other storage devices. These are left in strategic locations at the target location or delivered via U.S. mail. Silent Break Security’s custom malware is designed to allow our consultants remote access to the compromised machine.
In the event a phishing link is clicked or the attachment is opened, the employee will be taken to a training website. The training built by Silent Break Security is fun, engaging, and interactive, but also addresses the core issue of the reality of spear phishing attacks and the potential severity of a successful attack. The training is also continually updated by Silent Break Security experts to stay current with the latest attacks and security trends. Security education and awareness is no different than learning any other skill or trait. The best approach is consistent, effective training.