How to Phish Higher Ed

Wednesday, May 06 | 9:00AM–10:00AM | Conrad C, Second Floor
Session Type: Professional Development
For more than a year, we have been sending spear phishing e-mails to our own campus as part of our security awareness campaign. In this presentation, we will share the contents of these e-mails and what the response from our user community shows: what the ingredients of a successful spear-phishing campaign when targeting higher education are, why technological controls may not be a sufficient defense against phishing, and how Eastern Michigan University uses these phishing e-mails to deliver security education to the end user.

OUTCOMES: Learn what makes a phishing campaign successful when targeting higher education * View analytics from 14 phishing campaigns to understand how users respond * Understand how EMU uses phishing e-mails to educate its community


  • Steve Edwards

    Head of Security Engineering and Operations, Cisco Systems, Inc.