Every year the Oxford English Dictionary publishes a list of new words to be included in its latest edition. Although I haven't actually checked, my guess is that 'phising' is now formally inducted into the English language. That said, even if many of us are familiar with the word, how many really understand it? and more importantly the implications of a 'phishing attack' in its various guises. 

In essence it is a confidence trick designed to provide a would be attacker with the keys to the kingdom. No brute force here, just a piece of carefully crafted social engineering that can make fools of pretty much any one of us. 

Ransomeware is the latest mode of attack to utilise 'phishing' as its means of gaining a presence in an organisation. With cyber extortion set to become a $1bn business, it is going to pay companies to do all they can to ensure all their employees are alert to the likelihood of a phising attack. 

Foregenix is working with Thinkst Applied Research to ensure that enterprises are 'incident ready'. Part of this involves the provision of phishing attack simulations using phish5, a solution that is easy to set up and scalable to many thousands of users. Undertaking simulations is by far an away the best way of keep employees on their toes and would be attackers at bay.