About the Client
The client is a prominent provider of digital dictation and outsourced transcription services, revolutionizing clinical correspondence for healthcare institutions across the UK and Ireland. With over two decades of expertise, the company specializes in trust-wide digital dictation solutions tailored to public healthcare organizations. Their innovative technology and dedicated team ensure accurate, timely, and cost-effective transcription services, streamlining documentation workflows and enhancing operational efficiency for medical professionals.
Objective
- Enhance Security Awareness Improve employees’ ability to identify, report, and avoid phishing threats through realistic training.
- Improve Cyber Resilience Reduce the likelihood of phishing success by simulating real-world attacks and remediating weaknesses.
- Assess Employee Response to Simulated Attacks Evaluate training effectiveness by comparing results from repeated simulations and assessments.
The Challenge & Its Solution
Challenge
The client requested phishing simulations that reflected the subtlety of real-world threats — particularly those involving typo squatting domains that closely mimic internal communications.
PhishCare’s Solution
- Deployed a custom domain with strategic spelling variations to replicate the company’s email environment.
- Designed realistic phishing email templates resembling internal memos, password alerts, and operational updates.
- Implemented interactive training modules and follow-up assessments to evaluate learning and retention.
- Provided analytics dashboards to track susceptibility and training completion.
Conclusion
| Simulation | Users Phished (%) | Assessment Completed (%) | Assessment Not Completed (%) | Users Passed (%) | Users Failed (%) |
| Sim – 1 | 27.5% | 96% | 4% | 94% | 2% |
| Sim – 2 | 11.4% | 86.6% | 13.4% | 95.1% | 4.9% |
Conclusion
PhishCare enabled the client to implement an effective, data-driven phishing resilience strategy tailored to the healthcare sector’s unique risks. The use of typo squatted domains and real-world scenarios provided employees with authentic exposure to modern phishing tactics.
Through repeated simulations and interactive training, the client achieved a 58% reduction in phishing success and maintained high levels of assessment engagement and awareness. As a result, the organization has significantly strengthened its cyber security posture and reduced the human risk factor in its digital ecosystem.
This case study highlights how PhishCare’s custom-built phishing campaigns and learning modules can empower even non-technical users to become an active line of defence — particularly in high-compliance industries like healthcare.
