Why Mock Phishing And Training Is Important

August 22, 2024

Why Mock Phishing And Training Is Important

Testing the company's staff on their ability to spot phishing attacks should be a routine process that all businesses should adhere-to. The importance of knowing which members of the team require some level of training is crucial.

What is a mock phishing simulated attack?


Using technology that mimics generic and tailored phishing emails, the target company is sent harmless emails with tracking technology that reports back who opened the emails and clicked on the links within them. The simulated phishing emails can mimic anything from Amazon order confirmations to IRS warnings. They can also be spear-phishing emails tailored to attack a specific entity, company, department, or persons.

What to expect when you engage a managed IT services provider for mock phishing training campaigns?

We can't speak for all MSP's, but with iTecs, we start the process by interviewing the manager who will be our main point of contact and decide on the level of aggression, the types of simulated attacks, the attack schedule, and if and how we enforce training. iTecs handles the design, launch, tracking, reporting, and training; we handle everything.


Important things to consider:

  • What type of attacks, generic phishing, spear-phishing, and information gathering campaigns would be desired?
  • The schedule and time between the scheduled attacks to train staff who fail the first wave of simulated phishing emails are essential to design.
  • Is training mandatory with those that are reported as "clickers"?


The mock phishing campaign design can be intricate, but iTecs has much experience working with various companies and can make suggestions as consultants. This is what differentiates us from other competitors.  We provide our clients with the white-glove managed experience and work closely with them to ensure we meet their goals.


We've started our campaigns with an online seminar, hosted for your staff, that provides a short but very informative session to teach how to spot phishing attacks followed by a quick Q&A session. The seminar is recorded and delivered to the customer to use with future onboards of new employees. This is an optional way to begin, the seminar could always be something we perform once the first waves of attacks has been launched.


If you are interested in learning more about iTecs mock phishing simulations and training services, please let us know, and an IT specialist will be happy to assist.

Latest posts

How to Deploy Self-Hosting DeepSeek-R1 Using Ollama Implementation Guide
April 19, 2025

How to Deploy Self-Hosting DeepSeek-R1 Using Ollama Implementation Guide

Our Self-Hosting DeepSeek-R1 Using Ollama guide provides organizations with a comprehensive technical roadmap for deploying AI models within their own infrastructure. From hardware selection and installation to performance optimization and security hardening, this guide covers the complete implementation process with expert insights at each critical phase. Learn how to select appropriate model sizes based on your hardware capabilities, implement web interfaces for user access, and properly secure your AI deployment. This guide demonstrates how organizations can leverage powerful AI capabilities while maintaining complete data privacy and control.
Shutup10 Privacy Settings Tool
April 14, 2025

Shutup10 Privacy Settings Tool

Anyone who has configured a new installation of Windows 10 has seen there are a large amount of privacy, location and performance settings in the operating system. The sheer amount of selections available to adjust can be discouraging to even an experienced IT professional. Considering the multitude of options available it can be difficult, if almost impossible, to find them again later on - much less to remember them all! Enter O&O Software’s humorously named O&O ShutUp10.
Scam robocalls pretending to be Apple
April 14, 2025

Scam robocalls pretending to be Apple

We've received reports that customers are receiving calls from a company claiming to be Apple informing them that their Apple ID has been compromised. The culprits are calling random numbers, mainly in the United States. If you follow their prompts to "secure your account" you'll be transferred to a call center in India who will then try to get as much personal information from you as possible; they will try to get your credit card information to charge a fee to secure the compromised account.