LUCY Software is an Security Awareness System with an integrated Learning Management System LMS and with Debian 9.5

New LUCY 4.3 brings a full blown LMS and Debian 9.5

LUCY V4.3 brings 
  1. The Learning Management System (LMS) has reached full capacity. It includes now the advanced education portal functionality for end users: This feature allows users/victims to log into Lucy on their own and track their progress over multiple campaigns/trainings
  2. A brand new Campaign Wizard
  3. 2-Factor Authentication for Lucy Users and Admins
  4. A new Training Type named Training Library: This feature introduces the ability to offer recipients a library of training materials, compiled of various awareness templates in LUCY Server
  5. The Software runs now on Debian Linux 9.5

Already at the end of September 2018 we have started the rollout of LUCY 4.3. The image is available on https://lucysecurity.com/download.

Functionality

The latest version of LUCY Server offers many interesting functional enhancements and improvements: A new wizard is available to make your first campaigns even easier. A two-factor authentication is now available for end users. Our LMS is now fully functional and has now the desired scope so that you don’t need an additional learning management system anymore. For the trainings there is now a real training portal, in which the user can manage his trainings and follow his learning progress. Especially we would like to point our new “Awareness Training Library”, where the end user can individually select his own training from a whole library of training modules. And there are even more new features worth to mention:

  • Threat analysis for endusers
  • Add attachments to PDF
  • User reputation report
  • Disk usage tracking
  • Block search engine networks from accessing Lucy
  • Incident center with Filter, Search and Sort
  • CSV, PDF export of Mail & Web Filter Test results
  • Campaign message log: search and filter

 

Linux Upgrade

The most far-reaching change is the upgrade of the operating system to Debian Linux 9.5 Stretch. This measure was necessary to ensure maintainability and to maintain system security, as this guarantees security updates for the OS until 2022.

All customers using a system hosted by LUCY have already been contacted or will be contacted directly by our support. Customers who use LUCY as VMware, VirtualBox or AWS appliance have an automated upgrade routine available for the update.

Customers who have installed LUCY natively on Debian, using a Docker container, will get an automated upgrade as well. Customers with native installations without Docker please contact our support as well. An appointment must be made to perform the manual upgrade.

Contact support in case of problems – We hope to have served with this information. If you have any problems with the upgrade, please do not hesitate to open a ticket directly at support (at) lucysecurity (dot) com. Note that no campaigns can run at the upgrade time and that the server is restarted during the upgrade.

Fixed Bugs in LUCY Software V 4.3

And we fixed a lot:

  • 4.3 Awareness Delay Bug
  • 4.3 Hyperlink Template show landing page
  • 4.3 mail and webfilter display issue
  • Admin port configuration bug
  • Annymous not working for downloads
  • Anonymisation bug fix
  • Apache: Syntax error in apache2.conf while doing graceful restart
  • API recipient-group mapping to campaign fails
  • Awareness certificate generation page
  • AwarenessCertificateJob: runs after stopping any campaign
  • Campaign comparison: recipients bug
  • Campaign Restart & Reset Stats button
  • Campaign Restart not working
  • Campaign Test Run feature: tracking clicks isn’t working in ‘Awareness only’
  • Campaign.recipient_count out of sync
  • CampaignManager.getRunning / getRunningCount bugs
  • Console Post shows empty GUI
  • Constantly running getIpJob
  • Correctly mark simulation reports for stopped campaigns
  • Divided by zero bug
  • DocX report Bug
  • Download Template: Hide Installed is ignored when Check All available is ticked
  • Download templates error
  • Download Templates: Lucy is unable to get ‘updated’ (new) templates
  • Empty report arrives if the option After I stop the campaign send me a report to.. is enabled
  • End User Profile page: available training / History gives a 404
  • Error 500 when downloading campaign template
  • Error downloading user certificate
  • Error in UI when using 2FA
  • Exception on saving Scenario settings
  • Fix awareness cert
  • Fix bug in edit scenario template
  • Fix LDAP bug
  • Fix remaining errors from QA
  • Forgot password
  • Generate Report bug: showDateTime method is missing
  • In the download links files the wrong choice of ip / domain is used
  • Incident Management: download message received by SMTP
  • LDAP cannot be deactivated
  • Lucy is unable to change timezone
  • Lucy Outlook Button: Server Address could not be resolved
  • Mail & Web test – file names bug
  • Mail and webfiltertest: not possible to rename the campaign name
  • Mail Settings resets after insatalling 4.3
  • Migration tool: bugs
  • Migration Tool: empty campaign bug
  • Modifying scheduler rule issue
  • MWF: remove options from scenario and template
  • MX check error
  • Not possible to bind recipients to a campaign
  • O365: No ‘Access-Control-Allow-Origin’ header
  • Outlook plugin download fix
  • Password recovery does not work for any user
  • PDF attachment fixes
  • Portable media attack fixes
  • Property VictimCustomFieldForm.value is not defined
  • Recipients: Copy&Delete buttons unavailable in Internet Explorer
  • Recipients: Select All > Delete leads to system failure
  • Reflective Master/Slave
  • Reminders: FATAL (Exited too quickly)
  • Remove stat fields from Campaign and CampaignScenario
  • Report: Error generating image (custom admin port)
  • Reputation levels: default icon
  • Request failed try again when saving Message Tempalate
  • Scenario Stats : Show All button
  • Scheduler: when start\end have the same time then the plan is not created
  • SCORM Export bug
  • SCORM export: language selection
  • Spoofing Test: could not resolve
  • SSL for Lucy console when custom port is used
  • Stats calculation error
  • Temporary folder bugs
  • Test Run: Email tracking breaks the campaign
  • Translation Bug fix
  • Undefined variable: ip

Have fun using LUCY! Let us know if you like something or if you are still missing some functionality.

We’ll document everything in our LUCY – WIKI  as soon we can! Download the LUCY Anti Phishing and Cyber Crime Prevention Software below!

Oct-10th-2018

Webinar Invitation Phishing Campaigns Made Easy on Sep-26 2018 with Lucy

Webinar: Phishing Campaigns Made Easy on Sep-26

“LUCY: Phishing Campaigns Made Easy”

  •  Sep 26, 2018 11:00 AM CST – Webinar registration here
  • Hosted by Hacking for Dummies author Kevin Beaver
  • Execute a campaign in LUCY in 5 minutes
  • Q&A: LUCY founder Oliver Münchow answers your questions
  • Sneak preview of new Dark Web Defense tool
  • VPS Server migration offer for upgrade to LUCY V4.3

Introduced and moderated by security expert and author Kevin Beaver with a live demonstration by LUCY co-founder Oliver Münchow. Webinar participants will be entered in a draw for the latest edition of Kevin’s bestselling book “Hacking for Dummies”.

Join security guru Kevin Beaver, author of Hacking for Dummies, as he hosts LUCY Security co-founder and CEO Oliver Münchow in a fast paced web discussion of simulated phishing attacks. Oliver will showcase LUCY 4.3’s new Campaign Wizard to show you just how easily you can fire up a professional campaign in a few minutes. Attendees will be entered into a prize draw for the latest, 6th Edition of Kevin’s top-selling tome Hacking for Dummies.

  • When: Sep 26, 2018 11:00 AM to 11:40 AM Central Time (US and Canada) – Add to Calendar
  • Where:  Register for Zoom-Webinar here

 

 

We are looking forward to many registrations, see you soon! Your LUCY Team.

 

 

hvs consulting and lucy are announcing a partnership for sophisticated awareness training videos

Superior employee awareness available thanks to the partnership between LUCY Security AG and HvS-Consulting AG

Zug, September 19, 2018 – Trough a partnership with HvS-Consulting, the leading German provider of awareness-raising videos, LUCY Server’s customers get the opportunity to use additional first-class training content. Through this supplementary content, it is easy to achieve an even better employee awareness in terms of cyber security.

The benefits at a glance:

  • First-class IS-FOX training videos now available on the LUCY Server
  • Integration of third-party content using the open LUCY software
  • Integrated third-party content for free or for a fee

“HvS-Consulting AG is a partner known far beyond the German borders for their multilingual IS-FOX training videos. This new business relationship will provide our LUCY customers all over the globe with an additional selection of excellent Awareness Training Content available in our standard product. We are very happy to have established this partnership,” says LUCY co-founder Oliver Münchow.

“Cyber security is our mission, and the huge demand in the market shows how important sensitization is. In LUCY Security, we have found a partner that positively complements our portfolio with its Phishing Platform and Awareness Software” says Frank v. Stetten, Managing Director of HvS-Consulting AG.

About HvS-Consulting AG – Competence in Cyber Security: The HvS-Consulting AG advises corporations and SMEs around the topic of cyber security since 2002. Their core competencies include ISO 27001 Information Security Management, industrial espionage prevention, Advanced Persistent Threat Detection, penetration testing, as well as employee awareness for information security and data protection. Under the brand IS-FOX they offer web-based training, video clips for employee awareness, and security software, among other things. HvS-Consulting is a member of the Alliance for Cyber Security and is in constant exchange with national security authorities on cyber security topics.

About LUCY Security: The LUCY Cybercrime Prevention Server is utilized for the simulation of social engineering attacks and can be used universally – from SMEs to large customers. The product can be installed directly on the customer’s premises, though a cloud version is also available. The Swiss solution provides hundreds of pre-configured phishing templates, training modules, and third-party training content, which can be used by the end customer independently. With the “Phishing Incident Plug-in” for Microsoft Outlook the user can raise the alarm in case they suspect an attack. LUCY’s “Threat Analyzer” will automatically evaluate and risk-score suspected phishing attack emails, saving valuable time for the security team. The product is currently installed on more than 6000 servers, in over 60 countries. Certified Eco-System partners in 12 countries complement the LUCY software with their value-added services.

The product is offered in the Freemium model: The free Community Edition is suitable for SMEs with up to 50 employees. The commercial Starter Edition costs USD 680 and – unusual for the industry – unlimited licenses are available from USD 3400. The price of the newly integrated Awareness Videos from IS-FOX would depend on the size of the targeted audience.

 

For more information please contact Palo Stacho ¦ palo  (a t) lucysecurity-do t-com ¦ +41 79 301 78 10

LUCY Security AG, Chamerstrasse 44, CH-6300 Zug, Switzerland, +41 44 557 19 37
LUCY Security Inc, 106 E. Sixth Street, Austin TX 78701, USA, 512-917-9180

 

 

LUCY is looking for investors. Want to become a shareholder?

Do you want to become a LUCY shareholder?

Unique investment opportunity in LUCY Security AG, the cyber crime prevention company! 

  • We are looking for investors.
  • Forward this mail with a recommendation to your investment department.
  • If you have direct contact with other investors, then recommend LUCY Security. Thank you.

LUCY Server has been installed over 6000 times. The Swiss company with its incomparable software product is on the way to global success. Become part of it!

In its fourth year of existence, LUCY is expected to generate seven digit sales figures. We have not had a financing round so far and the company is debt-free. Since its launch in 2015, we could manage a yearly organic growth of some 100%. The cyber prevention market is on the move. For us it is proven that the disruptive business model of LUCY Security will revolutionize the market. This market is currently close to USD 5 billion and is growing at over 13% per year.

We already have investment promises, especially we are looking for a lead investor with a stake of > 500k. Further details can be found in the enclosed teaser.

  1. Are you interested? Then please contact me! Mail: palo (at) lucysecurity.com
  2. If your company has an investment department, we would be very grateful for a recommendation ☺
  3. If you know someone who might be interested, please tell them about this unique opportunity!

Thank you for your support. Kind regards from sunny Switzerland,

Palo Stacho, Co-Founder

 

We make Cyber Prevention an Simulated Internet Attacks available and affordable to everybody!

LUCY Security Zug (CH) – Austin (TX)

 

 

LUCY Connect User Group Conference 2018

Reminder: Invitation to the LUCY User Group Conference on Oct-18, 2018

LUCY CONNECT Conference features industry expert speakers, including keynote by Enterprise Security Experts. Sessions focused on latest security trends and experience sharings between the attendees.

3.9 out of 4.0! Last year’s LUCY Connect User Conference was an awesome success with a rating of 3.9 out of four points. We are very pleased to be able to hold this event again and are very grateful that the congress will take place in Bosch’s IT campus.

What? The second LUCY User Group Congress and Cyberprevention Summit for LUCY customers, users and certified partners including Keynotes from criminologist Kevin Beaver and from Group CISO Robert Bosch GmbH.

Why? Learn from other users experiences. Place your feature and development requests and get an exclusive sneak preview of the future LUCY Relases. And mostly: Benefit from the unique LUCY network.

When? October 18, 2017, 9.30am – 5pm . You can book an optional pre-event for the day before including a plant tour and a get together dinner sponsored by LUCY.

Where? The all-day event will be held in Stuttgart on Robert Bosch’s brand new IT campus in Feuerbach.

  • Robert Bosch Global IT Campus, Borsigstrasse, Corner Siemensstrasse, 70469 Stuttgart, Germany

Agenda Oct, 18th 2018, 9.30am – 5pm:

  1. Welcome Note by the LUCY Founders
  2. Keynote by Britta Paczkowski Group CISO Robert Bosch
  3. Keynote by Kevin Beaver, Author  “Hacking for Dummies
  4. LUCY in the wild, a Partner Presentation & Discussion, hosted by BH-Consulting
  5. Future LUCY Server: Outlook 2018/19
  6. Get the most out of LUCY, improve usage and strenghten the Human Firewall
  7. Workshops: Customer improvement & development requests;  Best practices using LUCY; Best attacks and trainings
  8. Feature Breakout: Own training content with Adapt and Malware-Simulator V2
  9. Customer Story by Daniel Schatz, CISO Perform Group
  10. Campaign planning and execution in corporate environments by Patrick Zeller, Robert Bosch

The event is free of charge.

Get the most out of your cybercrime prevention program – Register for LUCY Connect & User Group Summit!

 

lucy phishing server at it-sa 2018

Meet LUCY and get one of the best gifts! it-sa Nuremberg from 09-11 October 2018

LUCY Security as an exhibitor,  forum speaker and startup finalist at the largest IT security exhibition in Europe! Meet us, get a demo and one of the top gifts from the show!

LUCY Seucrity an der it-sa 2018it-sa is the number 1 in Europe for IT security. With over 12,000 visitors and 630 exhibitors, it-sa is Europe’s largest expo for IT security. Also in 2018 the LUCY experts will be present and they are even finalists for the annual startup competiton [email protected] The high-profile supporting program completes the event in an wonderful way.

Get an awesome gift! We have a great gift for you, we promise. Stop by and discover what we have for you 🙂

Pre-Show: LUCY at [email protected]: We made it as only Swiss Company to the finals of the preliminary Cyber Security Startup match up event on Monday 08. October 2018. Support us there! If you wish a ticket, just contact us.

Hall 10.1-416: LUCY Security will exhibit in Hall 10.1-416:

 

 

MEET LUCY  on Europe’s biggest IT security stage! 09 – 11 October 2018 Nuremberg.

lucy security it-sa messe 2018 stand

Managed Services Company from Saudi Arabia is the new cybersecurity partner from LUCY

Meet LUCY’s new Partner in Saudi Arabia – Managed Services Company

We’re strengthening our presence in the Middle East in response to the rapidly growing Cyber Prevention market in this area.

Zug (August 20, 2018) – The Managed Services Company is the 14th international partner LUCY Security has been able to certify. Interest in LUCY Software in Saudi Arabia has increased significantly in the last six months. LUCY Security AG now takes this into account.

Managed Services Company is a startup specialized in providing bespoke services in the field of Cyber Security. These services range from identifying threats and vulnerabilities to planning, designing and implementing the relevant technological, organizational and risk-based countermeasures. They supply vendor-independent security services through our consultants and a wide network of partnerships. It can therefore provide in-depth expertise in the most widely used security technologies on the market and select the most suitable solution for any given case.

In addition, Managed Services company is a managed service provider specializing in cyber threat intelligence, brand protection solutions, and security-management for complex systems. The company’s portfolio includes security assessment, real-time management and monitoring of security systems. Managed security also has expertise in advanced technologies like Blockchain, Internet of Things, and Smart Cities. “We help our customer to secure those technologies by developing the right strategies and manage their security”, says Thamer Aldhafiri, co-founder of Managed Services Company. 

„Finally we have found the right partner in the important Saudi market. The demand for cybersecurity software is high in the country and the fact that LUCYs software is not developed and distributed by a US company is a big advantage in the region“, says Palo Stacho, co-founder of LUCY.

About LUCY Security: The LUCY Phishing Awareness Training Server is used for the simulation of social engineering attacks and can be used universally – from SMEs to large customers. The product can be installed directly on the customer’s premises, a cloud version is also available. The Swiss solution provides hundreds of pre-configured phishing templates and training modules[1], which can be used by the end customer independently. With the “Phishing Incident Plugin” for Microsoft Outlook the user can raise the alarm in case they suspect an attack. LUCY’s “Threat Analyzer” will automatically evaluate and risk-score suspected phishing attack emails, saving valuable time for the security team. The product is installed on more than 6000 servers, in over 60 countries. Certified Eco-System partners in 12 countries complement the LUCY software with their value-added services.

The software is offered in the Freemium model: The free Community Edition is suitable for SMEs with up to 50 employees. The commercial Starter Edition costs USD 680 and – unusual for the industry – unlimited licenses are available from 3400 USD.

For more information please contact palo (a t) lucysecurity-do t-com and ask for Palo Stacho. LUCY Phishing GmbH, Seestrasse 13 | CH-8800 Thalwil, Switzerland | +41 793 01 7810

  • LUCY Phishing GmbH, Seestrasse 13, CH-8800 Thalwil, Schweiz, +41 44 557 19 37
  • LUCY Security LLC, 801 W 5th St, Suite 809, Austin TX 78703, USA, 512-917-9180

[1] http://www.lucysecurity.com/product/server-plug-ins/campaign-scenarios/

why is a cyversecurity company sponsoring a sustainabiltiy congress?

Why is a Cybersecurity Company Sponsoring a Green Convention?

LUCY Security sponsors the Swiss Green Economy Symposium. Why that? Why is cybersecurity so important for sustainability and successful business in the 21st century?

The answer is actually quite simple: On the one hand, we care about the future of the earth. We want to make tomorrow’s world an even more beautiful place than it is today. For us and for our children. On the other hand, our corporate vision fully supports this goal!

Effective sustainability is not possible without digitization. Smart cities, autonomous driving, sharing economy and so on are all digital technologies and ‘smart’ concepts. And cybersecurity is a must there. Without information security, there is no smart city. That’s why: Sustainability would be inconceivable without information security! Sustainable = Smart + Safe. Quite simple, no? 🙂

there is no sustainability without cybersecurity!

 

Long story short: This year’s Innovation Forum IF.01 at sges2018 deals with ‘sustainable digitisation’. The topic fits perfectly to LUCY Security. IT security is a central element of a sustainable digital economy. Our tool LUCY Server helps companies to test their IT security – through simulated attacks on their infrastructure and social engineering attacks on employees. Co-founder Palo Stacho tells more about IT and network security and sustainable digitization at IF.01 on September 4, 2018 in Winterthur (Switzerland).

The Forum is powered by:

  • Jan Bieser Informatics and Sustainability Research, University of Zürich
  • Adolf J. Dörig Founder & managing Partner, Doerig + Partner AG; Chairman Advisory Board Advanced cyber Security – satw
  • Dr. sc. techn. eth Rolf Hügli Managing Director, Swiss Academy of Engineering Sciences
  • Max Klaus Stv. Leiter, Melde- und Analysestelle Informationssicherung Melani
  • Prof. Dr. Patrick Krauskopf Chairman, agon Partners; Professor, zhaw
  • Lars Müller ceo, libracore
  • Palo Stacho Co-Founder, LUCY Security
  • Tobias Seitz Leiter underwriting Region Ost, technische versicherungen, Helvetia Versicherungen
  • Martin Zust Citizenship & Sustainabiltiy Manager, Samsung Schweiz

Our Mission: We make cyber prevention and simulated internet attacks affordable and available to everybody!

 

LUCY Connect User Group Conference 2018

Register for 2nd LUCY Connect 2018 (closed)

LUCY User Group Conference is held on October 18, 2018 in Stuttgart

3.9 out of 4.0! Last year’s LUCY Connect User Conference was an awesome success with a rating of 3.9 out of four points. We are very pleased to be able to hold this event again and are very grateful that the congress will take place in Bosch’s IT campus.

  • What? The second LUCY User Group Congress and Cyberprevention Summit for LUCY customers, users and partners.
  • Why? Learn from other users experiences. Place your feature and development requests and get an exclusive sneak preview of the future LUCY relases. And mostly: Benefit from the unique LUCY network.
  • When? Oct-18th-2018
  • Where? Robert Bosch Global IT Campus, Borsigstrasse 14, Stuttgart Feuerbach

Optional Pre-Event

Wednesday, Oct, 17th 2018 at the Wichtel Hausbrauerei Feuerbach : 1900 Meet & Greet incl Drinks and Dinner. A table will be available from 1930 (ask Laura)

Agenda

LUCY CONNECT 2018: Thursday, Oct, 18th 2018 (still subject to change)

(Version Oct-12th) Location: Robert Bosch IT-Campus | Borsigstraße 14, Stuttgart,  +49 711 8110 | Room information will be visible in the lobby and is close to the entrance.

  • 0830 – 0930 Coffee Time at Global IT Campus Feuerbach
  • 0930 – 0935 Welcome Note LUCY: Welcome/Agenda, Oliver Münchow, LUCY & Patrick Zeller, Robert Bosch
  • 0935 – 1005 Welcome Keynote: ‘ONE Security bei Bosch – Der Faktor Mensch in der IT-Sicherheit’ by Britta Paczkowski, Group CISO Robert Bosch
  • 1005 – 1035 Keynote: ‘Prevention versus Reaction – Change your approach to security or be doomed to repeat history’, by Kevin Beaver, Author Hacking for Dummies
  • 1035 – 1105 Presentation: ‘LUCY in the wild’, by Stephen Rouine, BH Consulting Ireland
  • 1105 – 1115 ==Break==
  • 1115 – 1145 ‘LUCY Outlook 2019’, by Oliver Münchow, Co-Founder LUCY
  • 1145 – 1215 ‘Feature Review’ – What happened with your requests and new features since LUCY 3.6, by Palo Stacho, Co-Founder LUCY

===

  • 1300 – 1330 Workshop: ‘Improvement & Feature Requests by Attendees’ feedback by Oliver, moderated by Patrick
  • 1330 – 1400 Presentation: ‘Corporate Security as a Service – CERT Insights’ provided by ETAS Group, Speaker tba
  • 1400 – 1430 ‘Campaign Planning and Execution in Corporate Environments’, Patrick Zeller / Joe Puissant, Robert Bosch
  • 1430 – 1515 Two Customer Brainstormings by Palo
    • Tech: Experience Sharing Best Practices using LUCY
    • Content: Experience Sharing Best Attacks and Trainings
  •  1515 – 1530 ==Break==
  • 1530 – 1600 Breakout: Technical Analysis with LUCY Server / How to build awareness with LUCY, by Oliver
  • 1600 – 1615 Housekeeping & next LUCY Connect(s), Closing Note, All

Adresses:

-Robert Bosch IT-Campus | Borsigstraße 14 | 70469 Stuttgart | Germany | +49 711 8110, detailed room information will be displayed in the lobby.

-Brewery on Wed: Wichtel Hausbrauerei Feuerbach Stuttgarter Str. 21 | 70469 Stuttgart | Germany | https://www.wichtel.de/ | +49 711 82051690

 

Call for Papers: Ended.

Registration for the LUCY Connect Cyberprevention Summit and User Conference is open until October 15.

The event is free of charge.

Registration Closed – Thank you. 

Become a part of the movement – Register for LUCY Connect & Cyber Prevention Summit!

 

trademark infringement phishing: Phishing Simulations with well-known Brands do NOT infringe Trademark Rights

Phishing Simulations with well known Brands do NOT infringe Trademark Rights

You want to use well-known brand logos for a phishing simulation? Go ahead, because phishing for training purposes does not infringe any trademark rights!

The key point of a trademark infringement and/or trademark infringement suit is whether there is a misleading consumer as to the origin of a particular product or service. If you use another company’s logo for training purposes for a simulated phishing email, that logo will not be used in a way that deceives customers. The sender of the phishing email is not concerned that the branded goods or services originate from and are associated with the ‘logo donating company’ or are sponsored by the company owning the trademark and/or the brand.

As a sender of phishing simulations, you do not ‘brand’ goods or services with someone else’s logo, but rather train your employees’ security awareness! Possible deception is clearly prevented/corrected by a corrective landing page and/or the training module included in the campaign. That’s why LUCY Server sends training content to users at the end of a simulated phishing attack. Its basic content teaches the user to beware of phishing fraud.

Thus, the logo of a third party is only used for illustrative or didactic purposes and there is no connection or relationship between the trademark owner and the customer (i.e. the recipient of the phishing mail)[1].

From a copyright perspective, the integration of a third-party logo in a simulated phishing e-mail serves a completely new, didactic purpose and thus represents fair use. The new purpose is to “increase security awareness” and to inform the public / the users about the prevention of phishing fraud. This new use does not undermine either the copyright owner or a market that the author would reasonably work.

Please note, we are not lawyers, please use this information with caution. This is LUCY Security AG’s view on things. The information is without guarantee and is subject to change.

Happy Phishing!

Palo Stacho, Head of Operations LUCY Security AG

 

[1] Tip for LUCY Campaign Admins: If you want to communicate something like this explicitly to the end user, then you can provide this information as a text field on the ‘Account Page’ when configuring the attack scenario in LUCY Server.


Topic: Trademark infringement phishing.