The attack potential check serves as a preparatory measure for the phishing simulation. Here, IT-Seal automatically searches publicly accessible sources that are predominantly used professionally for information that an attacker could misuse for phishing attacks.
Specifically, the networks Xing and LinkedIn are used.
The information collection essentially relates to employee-related data such as:
- Contacts
- position in the company
- former employers
- qualifications
- or hobbies.