Skip to main content

HSAT Terms and Definitions

Nick G
  • Updated

 

Team: SAT
Environment: Admin Settings SAT "Security Awareness Training"
Summary: HSAT Terms and Definitions

 

Assignment and Learner Terms and Definitions

 

Learner - For the purpose of using Security Awareness Training, Users are considered Learners in the HSTA environment. Learner = User = Learner

Assignment - Assignments are unique and are utilized to design training for your learners, by choosing when and how you want to launch episodes throughout the week, month, quarter, or year. 

Episode - Individual videos pertaining to different Cyber Security Training topics. Episodes can be located in the Content tab in an assignment or in the Library.

Group - Groups are used to segment your Learners for training purposes. You can manage and deliver different content to each Group. For example, you can have your staff in one Group and contractors in a separate one. You can now manage separate training content, access controls, and delivery options for each Group. Groups are located under Settings > Learners > Then scroll to the bottom of the page.

Department - Are used as a tool to segment your Learners for Assignments and phishing campaigns as well as tracking, phishing, and reporting purposes. Departments can be used in addition to Tags for additional segmenting of assignments and phishing campaigns. Departments can be set up under Settings > Learners. A learner can only belong to one group at a time. 

Tags - Are used as a tool to segment your Learners for Assignments and phishing campaigns as well as tracking, phishing, and reporting purposes. Tags can be used in addition to Departments for additional segmenting of assignments and phishing campaigns. Tags can be located under Settings > Learners. You can have multiple tags assigned to an individual learner from the Learners Tab. 

Access Code - a Single-Code shared by every learner in a particular group. Learners receive this code as a part of training notification emails and enter it, along with their email address, to log into mycurricula.com to complete training. This is the default authentication setting for all customer accounts.

Magic Link - is another authentication method available for managing Learner access at the group level. It is a single-use unique URL that Learners receive to access available training. Unlike an access code Magic links are unique and will expire after an hour. If your Learners cannot get to the training in that first hour, they can request a new Magic Link by clicking on the expired link and re-entering their email address. An email notification with a new Magic Link will appear in their email within seconds.

 

 

Phishing Terms and Definitions

 

Baseline - This is a measurement of the current state of your organization's ability to defend against a phishing attack. These measurements may include how many employees open an email, click a link, enter credentials, and how long it takes for someone to fall victim to an attack. Once you have an idea of your baseline, you can compare those results to future Phishing Campaigns and see how your defenses improve over time. 

Phishing - is the use of deceptive tactics to solicit private or personally identifiable information. This information can include usernames and passwords, medical information, or even your Social Security Number. Our training will help you identify ways to protect yourself from a wide variety of attacks.

Scenario - is a templated email you choose when creating and launching a Phishing Campaign.   

Landing Page - For phishing scenarios that have a Landing Page option, clicking links in the email brings Learners to a fake landing page for the service that DeeDee is using to trick them into entering their information. Learners will be able to exercise the skills they have learned to check and see if the page is safe before inputting their credentials.

Click - A click will be registered by either a person or an application that clicks or scans one of the BaitLinks in an email. If you run across a situation where an application is Clicking the Bait-Link such as an email scanner or Anti-Viirus please visit our Allowlisting guide.

Click Rate is the average of all employees that have clicked on your campaigns

Compromise - A compromise can originate via two different methods. 

In a Click-only phishing scenario, the Learner becomes compromised after clicking on the simulated malicious link in the campaign email.

In a ‘Landing Page’ scenario, however, Learners only become compromised after clicking on the email link and then interacting with the landing page.  

Compromise Rate is the percentage of employees that completely engaged with a campaign, such as by clicking a link and then filling out a form

Breach Time is an average of how quickly your organization was exposed by all phishing simulations.

Phishing Reports - Another essential feature that can be accessed via the Reports tab for a specific phishing campaign, you can download a summary and a spreadsheet to represent the data from a phishing attempt better.

Summary gives you a graphical and textual representation of what is viewable in the platform but put in a friendlier format. However, it does not give you details on who was compromised and when. It tells you how many were compromised and how long it took compared to the total amount of emails sent.

Attempt Spreadsheet compresses all data of the phishing campaign logically in an Excel format. You can utilize the spreadsheet to create graphs, charts, or any other way you wish to present the data in a program of your choosing.

 

Comments

0 comments

Please sign in to leave a comment.

Related articles