Just one minute per week
to gain & maintain security awareness
We are BreachSmart
Short videos, phishing simulation, and training tools to raise awareness
with modern attention spans in mind.
Awareness Training
Easily consumable and informative training content (e.g. short videos, posters, etc.)
Learn MorePhishing Simulation
Simulated phishing attacks to measure user response rates and test security awareness.
Learn MoreSelf-Service Portal
A simple portal to select, schedule, deliver, and track training and simulated phishing.
Learn MoreAs security advisors and pen testers, we recognize that security awareness training is a must. As humans we understand that training can be really unpleasant. That's why we created SmartBreach
Our Recent Video Training Series
BreachSmart training is designed to be non-disruptive. The idea is to train frequently, but only for a minute at the time (like the length of a commercial or short YouTube video).
Key Video Training Features
Our short, mildly humorous, and memorable training serices covers far more than just phishing. Topics include: Dumpster Diving, Impersonation, Shoulder Surfing, Tailgating, Pretex Calling, InternetDisclosure, Physical Theft, Eavesdropping, Planted Media, USB drops, Password Security, Sensitive Information, WiFi Hotspots...
Incorporating latest learning research and real-world experience, our training content is designed for the modern attention span. Our videos are short, auto-reinforcing and comprehensive.
Short
BreachSmart training videos are short (~1-minute-long), to be delivered regularly (e.g. weekly) and other digestible tools and content to help raise and maintain the security awareness of your employees without disruption.
Simple
BreachSmart is also a simple-to-use platform for distribution of content and a tracking system to monitor training progress.
Security Awareness
Employees will learn to avoid the security pitfalls that can put your organization at risk of a security breach.
Reinforcement
They will receive on-going, low impact, reinforcement to help ensure that security awareness stays high.
Tracking
Tracking allows you to monitor employee training and to target those who need additional encouragement.
Testing
Phishing simulation allows you to test employee awareness by sending phishing emails and reporting user engagement rates, to measure and reinforce learning
Auditable
Tracking also allows you to provide evidence that training is being performed on a continual basis.
Fresh
We are always adding new content and tools to keep employees engaged
Phishing Simulation
Our self-service phishing simulation platform allows you to test employee awareness to real phishing attacks, and reinforce security principles through instant feedback.
Self-service Phishing Simulation
You choose the content and schedule that works best for your organization
Real-world attacks
Each phishing series contains 20+ phishing attacks borrowed from current, real-world examples to help your employees learn to recognize real attacks, and avoid falling for them.
Randomized scheduling options
Choose from various scheduling options, including randomization of attacks sent for each employee with random schedules for each to minimize pattern recognition.
Instant feedback
Employees that engage with phishing attacks will be immediately shown reminders not to be vigilant when reading and engaging with email.
Reinforcement
Employees that engage with phishing will be provided additional training to reinforce awareness.
Tracking
Tracking allows you to monitor employee engagement with phishing attacks and to target those who need additional education.
Auditable
Tracking also allows you to provide evidence that phishing simulation is being performed on a continual basis.
Fresh
We are always adding new content and tools to keep employees on their toes.
What are you waiting for?
Keep you organization and employees save with just one minute per week
Advanced Curated Social Engineering
Beyond standard phishing simulation, we offer custom-designed social engineering services, which optionally include vectors tailored and personalized to your environments and employees. Vectors include sophisticated spear phishing, in-person attacks, and phone-based attacks.
This service may be coupled with the phishing simulation above, to provide maximal security awareness to employees.
Curated Social Engineering vectors include:
Custom spear-phishing
Custom-design phishing attack vectors that leverage research for personalization.
Pretext calling
Call scripts delivered over the phone to attempt to elicit sensitive information or risky behavior.
Planted media
USBs (memory sticks or devices), CDs, or DVDs delivered to employees or locations, with or without pretext.
Social networking
Vectors that exploit the trust relationships users have with their social media platforms.
Tailgating
Testing awareness of employees to in-person attacks to the importance of vigilance with physical threats.
Spear Phishing Trends
Spear Phishing and Advanced Persistent Threats are still on the rise
Average Cost of Attack $1.6 M
77% of Spear Attacks are Laser-Focused
Training Platform
Easy to administer and track user progress
User-centric Training
Users love our short, humorous and memorable training.
Anyplace, Anywhere, Anytime
Users can view training material at thier desktop or on mobile
Testimonials
What our users are saying
Custom Content and Customization
BreachSmart operates its own video production studio to provide:
- Customization: We can modify, personalize, and brand our vides for your organization and culture.
- Custom Videos: We can develop entirely new content for you at your request.
- Security compliance services
Inquire about licensing our content for use in your own learning management system.
And our talented team of media specialists are available to customize and personalize our content to your needs. We are also available to create custom content, just for you.
Content Licensing
If you already have an Learning Management System (LMS) but would like to include our content,
Contact us about licensing.
Please also contact us if you’re interested in reselling our content.
About
Our training content and phishingwas designed by the experienced pen-testers from Illumant.
BreachSmart Training was concieved by security experts at Illumant, a seasoned security assessment and penetration testing firm with approximately 20 years of experience providing pen testing, social engineering, and security assessment services. Our video training and phishing simulations are designed to:
- Security Awareness Training.
- Phishing Simulations
- Compliance Training
- Custom Training Material
- Auditable.
- Progress Tracking
- Fun, Fresh and Memorable Content
Illumant's experience is invaluable to the relevance and efficacy of our training material.
About Us
Founded in 1999, Illumant has been at the forefront of Internet and information security since its inception. Illumant was one of the first companies to offer penetration testing and security assessment services to its clients, long before security was little more than an afterthought. Illumant was among the first companies to offer security compliance services as information security standards, laws and regulations started to emerge.
Illumant's founders graduated from Stanford University with degrees in Engineering and Physics in the earliest stages of the first Internet bubble, with the aim to address the vastly underserved information security arena. Illumant crafted services to help organizations identify security weaknesses in technical infrastructure and security posture to help head off threats before potentially costly security breaches.
Utilizing an arsenal of assessment services spanning internal and external, and technical and organizational perspectives, including:
- vulnerability assessment,
- policies and procedures assessment,,
- security compliance services,
- risk assessment; and,
- social engineering
Learn more about Illumant and its assessment and pen-testing services here.