Professional Documents
Culture Documents
October 2018
Editor: Mario Fazekas Mobile: +27 (0)83 611 0161 Office: +27 (0)11 475 2525
www.exactech.co Email: mario.fazekas@exactech.co
The Value of Fraud Awareness Training Cyber Risks
With our training courses we try to add value to two parties: all attendees and Kevin Mitnick, the world’s most
management. famous hacker says, “The
In many training courses, the only ROI is the signed attendance register, so we weakest link in the security
add tangible value by including some personal aspects to the training - how
chain is the human element”
can employees protect themselves from fraud, and by extension the
company. When employees see that their employer cares about them they in You can have the best
turn tend to look after the employer’s assets. firewalls, & intrusion detection
systems but it’s the end-point
We also ask attendees to complete pre and post workshop questionnaires, the
results of which are submitted to management as a feedback report showing
(user) that is the most
fraud hotspots, ethics issues and knowledge transfer. The questionnaires work vulnerable, hence training is
best when outsiders deliver the training and have built trust. Most employees critical to ensure that staff
won't state what is really going on if an insider asks, as there is generally too members are aware of the
much victimization and minimal trust. I even get asked "who will read these risks and to not be duped by
questionnaires, as our handwriting will be recognized?"! phishing, pharming and social
engineering attacks.
Here's an example of the type of feedback we get from clients:
Did you know that an
“I would like to inform you that I have received an overwhelming positive
estimated 25% of employees
feedback from the Highveld Team including the manager. They have
confirmed that this was an eye opener and one of the best training courses
are using the same password
they have ever attended. Our team members are also starting to detect frauds, for all logins? What if that
so I am glad there is Return on investment!” – Regional Secretary, MIBCO password is available on the
dark web?
(Please click here to access our training course catalog). Yahoo, Dropbox, LinkedIn,
Adobe, Experian, Ashley
Maddison and many other
In last month’s newsletter we discussed the rise of Pink-Collar Crime and web sites were breached, and
mentioned the case of Rita Crundwell. Her story has now been made millions of passwords stolen.
into a movie called All the Queen’s Horses. How do you know some of
your employees were not
The case is important as it’s one of the largest cases of fraud by a single among these and what if they
employee in US history. The film highlights the fact that external threats are using the same password
get more attention from both organizations and the media, yet it’s the at the office?
insider threat that poses an even bigger security risk.
You and your colleagues can
find out by visiting
Haveibeenpwned. Just insert
your email address that you
used to sign up at Dropbox,
Yahoo etc. and they will let
you know.
Join the global effort to minimize the What You Can Do – one thing is to Invite a
EXACTECH
impact of fraudFORENSICS
by promoting anti-fraud Phone: (555) 555-5555
Certified Fraud Examiner (that’s us) to talk to your
awareness & education
123 Fake Street, City, ST 12345 employees about fraud(555)
Fax: prevention.
555-0000