Healthcare · Diagnostic Imaging
Organization-Wide Phishing Simulation
Challenge. A national diagnostic imaging provider needed to measure real-world phishing exposure across its entire workforce and confirm whether awareness and reporting controls held up at scale.
What we found
- Over half the workforce was phish-prone; roughly a third clicked the link and a quarter entered credentials on the simulated capture page.
- Most interaction happened within the first hours of delivery, so a real attack could have succeeded before anyone reacted.
- Phishing-report rates were too low to meaningfully offset the exposure.
Outcome
Quantified credential-compromise risk across the whole organization and delivered a prioritized program of role-targeted awareness training, recurring simulations, and a faster, simpler reporting workflow.
11,800+
Employees targeted
53%
Phish-prone
24%
Entered credentials