CSI: Phishing Game

CSI: Phishing puts the end user in the role of a cybersecurity ‚Äúinvestigator” tasked with finding the cause of a recent breach in their client company. The game takes place over a remote desktop, where the investigator will comb through the email and social media accounts of various employees in the company, trying to assess where the breach occurred. They will look at various emails and posts, some of which are safe, others of which are not, and flag anything they think is suspicious. Meanwhile, a ‚Äúvirtual assistant” will provide feedback and additional information, as well as guide the investigator in the right direction if they need help. The objective of the game is to investigate the available assets and correctly identify safe vs. malicious messages or posts. The more accurately they identify what they see, the better their final score!

CSI: Phishing is designed to build upon the baseline knowledge that the end user has already gained through more ‚Äútraditional” anti-phishing training, and allow them to apply it in an interactive, engaging environment. Unlike a phishing simulation, where users are the unwitting recipients of a test they may or may not fail, CSI: Phishing flips the script and makes them the cybersecurity expert, giving them a chance to take responsibility for phishing security, demonstrate what they know, and help an at-risk customer.