TOPIC: The Biggest Security Threat

WILES: It's always somebody clicking on something. Getting inside without somebody clicking on something is extremely difficult. They [send] social engineering kinds of things, getting people to click on stuff. We have spear fishing tests once a month [in which] users get an email that looks like it came from somebody else. And if they click on it, it says "Surprise! It was really us! Maybe you can go back and read the security manual again" … and that kind of thing.

I've even clicked on one because I did invoices and I thought it was an invoice … and it really wasn’t. So it's pretty hard … Most of those get trapped. They have a front-end sandbox; every attachment … gets sent through a sandbox, so it does delay things going to you, but at least it gets sandboxed a little bit.