About the Client
The client is a leading manufacturer in the automotive industry, specializing in rubber and plastic components for vehicles handling sensitive design data, supplier communications and production schedules all potential targets for social engineering. With approximately 400–500 employees, the organization is known for its high-quality products, innovation, and commitment to safety and sustainability in the global automotive market.
Objective
- Reduce Phishing Susceptibility – Identify and mitigate employee risk to social engineering through targeted simulations and training.
- Enable Internal Ownership – Provide a dedicated, self-service phishing simulation platform aligned with internal compliance workflows.
- Benchmark Collection – Establish a baseline of the organization’s preparedness against phishing attacks and highlight areas for improvement.
The Challenge & Its Solution
Requirement: Isolated Instance with Branding
- The client requested a dedicated PhishCare instance with full isolation and branding capabilities. CyberSapiens provisioned a custom deployment with a separate database and organization-specific domain setup.
Requirement: Internal Management of Campaigns
The client wanted full control to plan and execute campaigns. CyberSapiens delivered hands-on training for administrators on:
- Template creation
- Landing page customization
- Campaign scheduling
- Analytics and reporting
This enabled the client’s internal IT/security team to independently manage future phishing simulations.
Key Findings & Observations
Initial simulation results:
- 65% of employees opened the phishing email
- 10% clicked the malicious link
- 1% submitted their credentials
Post phishing awareness and training:
- Click rate dropped by 3%
- Credential submission rate reduced to near zero
- Departments previously identified as high-risk showed 5%–8% improvement
Conclusion
The implementation of PhishCare successfully strengthened the client’s security posture by equipping employees with the necessary awareness and skills to identify phishing threats. Through customized simulations and self-service capabilities, the organization gained better control over its phishing awareness initiatives.
The initial findings highlighted a significant vulnerability, but with continued training and targeted campaigns, employee awareness improved, leading to a measurable reduction in phishing susceptibility. This case study demonstrates the effectiveness of PhishCare in enhancing cyber security resilience within the automotive components industry.
