Hello,

Phishing is a type of cybercrime where hackers try to gain access to your personal information such as usernames and passwords. RCBC recently ran the first of many simulated phishing tests that we will be conducting over the next few years. The purpose of this test was to establish a baseline on how our organization would react if a real phishing attack were to occur.  Our cybersecurity insurance provider asks us to certify that we do this, and also that we provide cybersecurity training to our employees every year.

To help combat the rise in cybercrime like phishing attacks, we have partnered with KnowBe4. All employees will be enrolled in KnowBe4’s security awareness training.  This training is mandatory and is in addition to the Vector LMS (SafeColleges) training that you have been assigned.  You will receive an email early next week inviting you to take KnowBe4’s security awareness training.

For the baseline test a total of 471 emails were delivered.  We did well - the RCBC average Phish-prone percentage was 13.3% while the educational sector's average Phish-prone percentage was 29.3%.  Although we did better than average, our goal is to do even better still through diligence and training.  Even a single failure could expose confidential information.  We will continue to send out simulated phishing tests so you can practice the skills that you will learn during your training. Always be on the lookout for these, and of course actual (non-simulated) phishing attempts from real hackers.  We depend on you as the most important defense against cybercrime.

Thank you,

--
DR. MARTIN A. HOFFMAN, SR.
Chief Information Officer
Pronouns: he, him, his