To calculate the overall star rating and percentage breakdown by star, we don’t use a simple average. Instead, our system considers things like how recent a review is and if the reviewer bought the item on Amazon. It also analyses reviews to verify trustworthiness.
Felt there was a lot of filler... Should have talked more about tool/techniques... Referenced open source tools are lacking, but thats my opinion as I'm in the middle of dev an open source alternative ATM...
This is more than just a good book - this is an important book, one that everyone who uses the Internet, email, or social media (and that pretty much means just about everyone alive) should read. Chris Hadnagy and Michele Fincher have done a wonderful job of taking a complex topic and explaining it in an enjoyable and understandable way, using personal anecdotes (and sometimes even humor) to get the point across. In a way, this is a psychology textbook -- one that deals with the psychologies of phishing and of victimhood, and one that teaches readers that if they learn to stop acting and thinking like victims, they're much less likely to become victims. In fact, it really should be a textbook, because in this day and age, it ought to be required reading.
The book is written at a very introductory level giving the basic details of what a phish is, the mental stimulus behind a phishing email in order for it to work, the levels of emails, how to create a program, policy, tools, etc. I believe it did a fine job at being able to explain the inevitable phishing emails for any reader. Executives, analysts, and non-technical people could all learn something from this book.
Some of the examples were out there and kind of made the idea obscure. I would suggest the read for anyone who wants to learn the introductory point of phishing and how to educate yourself and your users
This book really cleared up the hows and why's to phishing. I fouled Chris's podcast for a few years now they had to read the book. It has really helped me set up a phishing program for my company. I feel much more confident now when it comes to our phishing awareness program its goals and expected outcomes.
From the user who just wants to understand how to better protect yourself online to the team in charge of an enterprise information security awareness program, the book provides useful insights into the dark waters of phishing.
I especially enjoyed how the authors shared their knowledge of human behavior to help us understand and improve without making us feel ignorant. With their experience performing white-hat phishing for millions of people, it would have been easy to feel intimidated by the topic. The authors did a great job sharing truly personal anecdotes to illustrate what it feels like to fall for phishing scams. Then, they shared the secrets to help address the problem in a thoughtful manner.