Why training doesn’t mitigate phishing

GovInfoSecurity
Jan 7, 2014

Training that's designed to help workers avoid clicking on links from spear-phishing e-mails is generally ineffective, says Eric Johnson, dean of the Owen Graduate School of Management and co-author of a new study on the subject.

FULL STORY