Awareness

Why security awareness training is not enough

12 Dec 2025 · 4 min leestijd · Lara Hemstede

Most organisations invest in security awareness: e-learning modules, phishing simulations, posters in the canteen. And that is a good start. But one crucial puzzle piece is still missing.

The gap in awareness programmes

Almost all awareness training focuses on email phishing and digital threats. But what happens when the phone rings? In 60 to 80% of our voice phishing simulations, sensitive information is shared.

Why phone-based tests are different

A phone call creates immediate pressure. There is no time to think, no colleague to consult, and no suspicious link to inspect. It is person against person, and attackers know exactly how to exploit that situation.

The solution

Regular voice phishing assessments are the only way to measure how resilient your organisation really is against telephone-based manipulation.

Meer artikelen

Awareness 6 min

What is voice phishing? A complete explanation

Voice phishing (vishing) is a form of social engineering over the phone. Learn how it works, which techniques attackers use, and how to protect your organisation.

Lara Hemstede • 18 Mar 2026

Research 7 min

The danger of voice phishing: why your organisation is vulnerable

Voice phishing causes millions in damage every year. From data breaches to CEO fraud: discover the concrete risks and how attackers operate.

Lara Hemstede • 24 Feb 2026

Trends 7 min

Why voice phishing is an underestimated risk

Most organisations invest heavily in cybersecurity but forget the phone. Why vishing stays under the radar and what that means for your security posture.

Lara Hemstede • 15 Jan 2026

Benieuwd hoe weerbaar uw organisatie is?

Plan een kennismakingsgesprek en bespreek welk assessment past bij uw risicoprofiel.

Kennismaken