The ITS Security Office recently initiated a simulated phishing campaign at the request of the Joint Audit and Compliance Committee (JACC). UConn faculty and staff received test messages this past October that mimicked a common attack. They were directed to a webpage with phishing awareness information when they clicked on the link in one of these messages. UConn had an 8.5 percent phish-prone rate for this first round of quarterly tests. This is better than average for an institution of our size, but it still indicates that phishing scams present a substantive risk. ITS will continue quarterly tests to help lower the rate through education and awareness.
If you receive questions about these tests from your constituents, please share this information with them and reinforce that phishing messages, both real or simulated, can be forwarded to firstname.lastname@example.org.