Request a Demo of Tessian Today.

Automatically stop data breaches and security threats caused by employees on email. Powered by machine learning, Tessian detects anomalies in real-time, integrating seamlessly with your email environment within minutes and starting protection in a day. Provides you with unparalleled visibility into human security risks to remediate threats and ensure compliance.

Request a Demo

How to Hack a Human

Download the report now.

Social Media, Social Engineering, and Business Email Compromise

Over the last decade, phishing – a type of social engineering attack – has transformed from something more like spam to the threat most likely to cause a breach. During that same period, the number of adults on social media platforms like Facebook increased by almost 1,300%.

See the correlation? To find out just how vulnerable people and businesses are, we surveyed 4,000 employees and interviewed ten hackers.

“Hackers start by finding the employees who are the most susceptible. There are a lot of factors to consider, but someone who overshares will of course be a better initial target than a buttoned-up Head of IT.”
Spencer Pearlman, Security Researcher at Detectify
“Believe me, hackers are willing to try 24/7. They have nothing but time. This is something businesses don’t have. An employee working 9-5 just doesn’t have the same commitment to protecting a company as a hacker has to hacking a company. That means hackers have a big advantage here.”
Alon Gal, Co-Founder & CTO, Hudson Rock
“OOO messages - if detailed enough - can provide attackers with all the information they need to impersonate the person that’s out of the office...without the attacker having to do any real work.”
Katie Paxton-Fear, PhD Student, HackerOne Community
“Think about when you have to verify your identity or your account. What information do they ask you for? First name, last name, birth date. All you need is a ‘Happy Birthday!’ post on social media to garner all that information. It really is that easy.”
Alyssa Miller, Hacker, Researcher, and Security Advocate

Lorem ipsum Dolor SIt

Lorem ipsum Dolor SIt

How to Hack a Human
Download the full report
Download the full report to learn more about how bad actors leverage publicly available information and social engineering techniques to hack people and businesses...and how you can level-up your personal and enterprise-level security.
Methodology
In addition to using Tessian platform data, and insights garnered from interviews with the HackerOne community and experts in social engineering, we commissioned OnePoll to survey 4,000 working professionals: 2,000 in the US and 2,000 in the UK.

Survey respondents varied in age from 18-51+, occupied various roles across departments and industries, and worked within organizations ranging in size from 2-1,000+.
Publically available third-party research was also used, with all sources listed on this page.

Midpoints and averages were used when calculating some figures and percentages may not always add up to 100% due to rounding.
Why Tessian?
By Industry
Integrations
Solutions & Products
Protection for Microsoft Office
Phishing Prevention
Email Data Loss Prevention
Our Platform
Customers
Customers by Industry
Resources
Resources by Type
Blog
Blog Posts by Category
Copyright © Tessian Limited. All Rights Reserved. Company registered number 08358482.