Insight into the ways attackers exploit end-users’ psychology

How attackers exploit end-users have significant security implications for enterprise preparedness and defensive strategies

The Human Factor report documents the results of a wide-ranging study that provides new insight into the ways attackers exploit end-users’ psychology to circumvent IT security. The report reveals that staff clicks on malicious links twice as much as executives. More than 1 in 15 people click at least a month after it first appears in their inbox, and social networking invitations are twice as effective at persuading recipients to click. Since the majority of current protection solutions focus less on human failings and more on system and software vulnerabilities, the report findings have significant security implications for enterprise preparedness and defensive strategies.

This complimentary whitepaper reveals important end-user behavior, including:

  • Every company clicks. On average, 1 out of 10 employees exposed to malicious links in email will click.
  • Attacks have a long shelf-life. More than 1 in 15 user clicks on malicious links are seen more than a month after the threat was delivered.
  • Mobility matters. 90 percent of total clicks on malicious URLs come from user’s computers, not mobile devices – but 20 percent of those clicks happen when those computers are outside of the corporate firewall.
  • Knowledge empowers. Understanding the details of an attack enables security teams to focus their efforts where they count and where to take immediate action.

Register to download your free copy of our Proofpoint's Human Factor report now. View our privacy policy.

Proofpoint Human Factor Report whitepaper.

About Proofpoint, Inc.

Proofpoint Inc. (NASDAQ:PFPT) is a leading security-as-a-service provider that focuses on cloud-based solutions for threat protection, compliance, archiving & governance, and secure communications. Organizations around the world depend on Proofpoint’s expertise, patented technologies and on-demand delivery system to protect against phishing, malware and spam, safeguard privacy, encrypt sensitive information, and archive and govern messages and critical enterprise information. More information is available at

©2013 Proofpoint, Inc.