Phishing Evaluation
Last updated
Last updated
After a phishing campaign has been completed, it is time to give the obtained data to the customer. Furthermore, most customers need a grade in order to explain to their superiors how bad the results have been.
Thus, you must provide your customers with an objective result based on a comprehensive analysis of the phishing campaign's outcomes.
First, let's assign some values to the actions appearing on GoPhis.
| Phishing actions | Value |
|---|
Then, obtain the highest value achieved in a phishing campaign and obtain a set of intervals in which the grades will be divided.
The highest can be achieved with the following formula.
After that, assign the percentages of victims required to obtain a certain grade, as can be seen in this table:
| Business Size (BS)/Intervals | 100000 Employees | 10000 Employees | 1000 Employees | 100Employees | 10 Employees |
|---|
Each value represents the maximum number of employees who must complete every action that makes up the phishing campaign to obtain the security level.
For example, a company with between 1,000 and 10,000 employees must have a maximum of 1% of employees completing all actions to be considered to have an excellent level of security.
After that, the intervals are determined using the following formula:
The value of the phishing campaign is calculated with the following formula:
Finally, you only have to relate the score to the interval to obtain the grade.
Because this explanation may have been a bit complicated to implement, I have prepared a spreadsheet for you to play around with.
| Level | Interval |
|---|
Open the email | 1 |
Click on the email link | 3 |
Write credentials on the phishing page | 5 |
Excellent | 0,20% | 1% | 1% | %1 | 10% |
Acceptable | 0,35% | 1,5% | 3% | 5% | 20% |
Improvable | 0,5% | 5% | 5% | 10% | 30% |
Unsatisfactory | 1% | 10% | 15% | 20% | 40% |
Excellent | [0 , MaxScore*BS[Excellent] [ |
Acceptable | [ MaxScore*BS[Excellent] , MaxScore*BS[Acceptable] [ |
Improvable | [ MaxScore*BS[Acceptable] , MaxScore*BS[Improvable] [ |
Unsatisfactory | [ MaxScore*BS[Improvable] , MaxScore*BS[Unsatisfactory] [ |
Deficient | [MaxScore*BS[Unsatisfactory], MaxScore ] |