NIST Phish Scale

The NIST Phish Scale is a framework developed by the National Institute of Standards and Technology (NIST) to help organizations assess the difficulty of phishing emails. It accounts for factors like cues in the message, urgency, familiarity, and the context in which the recipient receives the message.

By applying the Phish Scale, security teams can better evaluate the effectiveness of phishing simulations and improve employee training strategies accordingly.