Diversified Business Driven by Mail-Order Business – The Japanet Group

Please introduce the Japanet Group.

The Japanet Group is a group of thirteen companies that work together to develop a variety of businesses based on the concept of “finding” good products, services, entertainment, and information that are buried in the world, “polishing” them further, and “communicating” them in an easy-to-understand manner.The 13 companies of the group work together to develop a variety of businesses.
The mail-order business offers a wide range of products in categories such as consumer electronics, cruise trips, and water services, and is developing its business through many media including radio, catalogs, flyers, and the Internet as well as TV shopping.We are developing our business through many media such as radio, catalogues, flyers and the Internet as well as TV shopping.
We are also involved in sports and regional development projects, operating the professional soccer club V Faren Nagasaki and the professional basketball club Nagasaki Velka, as well as developing the Nagasaki Stadium City Project, a soccer stadium and other complex facilities in Nagasaki City, to be completed in 2024.The company is also developing the Nagasaki Stadium City Project, a complex of facilities centered on a soccer stadium in Nagasaki City, which is scheduled for completion in 2024.In addition, we are also engaged in the broadcasting business with the opening of a new BS broadcasting channel (BSJapanext) in 2022.

Targeted e-mail drills are conducted by grouping by company, position, etc.

Please tell us about the use of Tadrill in the Japan Net Group.

The Japanet Group began using Tadrill in October 2022.Operations such as sending and aggregating targeted training e-mails are handled by the Compliance Department of Japanet Holdings, Inc. which manages information security for the entire group.
Approximately 2,000 employees from all 13 Group companies using e-mail accounts with the “japanet.co.jp” domain are targeted for e-mail training.In addition, Tadrill’s reporting add-on for Google Workspace (Gmail) has been implemented as a tool for employees to report the receipt of suspicious emails.
However, we do not plan to conduct periodic, simultaneous email drills for all employees.We plan to conduct training at appropriate times by grouping the target employees by group company, position, etc.

Why do you conduct training by grouping them together?

From our experience, even if we conduct training with the same content e-mail, the results and trends of URL link click rates and reporting rates, as well as the weak points that emerge from these results and trends, differ from company to company.By conducting training with content appropriate for each company and position, we hope to determine the reactions and trends of the target audience and come up with effective countermeasures.

How do you create the content of training e-mails?

We create training e-mails by using the training e-mail templates posted on Tadrill and adding information on the latest targeted e-mails and other information we find on the Internet.

Considering the introduction of a tool to efficiently and quickly conduct and operate email drills

How did you come to introduce Tadrill?

The Japan Communications Group has long conducted regular security training for its employees, instructing them not to click on URL links in suspicious e-mails and to report suspicious e-mails to the Compliance Department.However, the tactics of attacks have evolved and become more sophisticated, and there have been more than a few cases where employees have simply clicked on the URL link or deleted the email without reporting it because it was too cumbersome.
For this reason, we have conducted targeted e-mail training, but the workload on the staff in charge was heavy because they had to manually handle everything from creating and sending training e-mails to tabulating and reporting the results and responding after the fact, including alerting employees who had clicked on URL links.The training was only conducted once a year or so.
In order to improve this situation, we were looking for a tool to efficiently and quickly implement and operate email training, and we were introduced to Tadrill and decided to consider its introduction.

We were highly impressed with Tadrill’s excellent cost-performance and its extensive operational and reporting functions.

Why did you choose Tadrill?

The Japan Net Group had been using HENNGE One, provided by HENNGE Corporation, for filtering outbound e-mails, approval by superiors, file transmissions, PPAP measures, and so on.Therefore, we were intrigued by the new service that the company, which is an expert in email, was going to start offering.
When we actually proceeded to consider the introduction of the service, we decided to adopt it after conducting a trial because it has a full range of functions for efficient operation of targeted e-mail training and reporting functions, as well as high cost performance.

Please tell us about the specific points that were decisive in your decision to introduce the system.

The decisive factors in our decision to introduce the system were as follows
• Numerous templates for training emails
• Multiple domains for sending are prepared in advance and can be freely selected
• Support email training for both URL links and attachments
• Automatic staggered sending of mass training emails
• Easy grouping of recipients
• Easily report suspicious emails or emails in which URL links have been clicked on in Gmail
• Confirm and tally clicks and reports of URL links in training emails in real time
• Easy management of training implementation history
• Easy classification and management of reported suspicious emails

As a service that has just been launched, were you concerned about the lack of experience with the service?

The previous service had high technical capabilities and solid support, and they actively worked to enhance and improve the functions in response to our requests, so we honestly had higher expectations than concerns.

Expectations for the establishment of awareness and habits to take appropriate actions against targeted e-mails

Please tell us about the effects of introducing Tadrill.

First of all, the operational burden of conducting e-mail drills has been greatly reduced, and the period from planning the drill implementation to tabulation and reporting has been shortened.This has allowed us to conduct repeated drills with different content and target groups, and to devote more time to training planning and post-discipline response.
In addition, we can now visualize the results of the training in real time, allowing us to quickly and accurately formulate countermeasures.We recently conducted an e-mail drill for our executives, and some pointed out that the content might have been too gentle.However, the results showed that the click rate on URL links was higher than expected, indicating that there is a gap between security awareness and the actual situation, and raising once again the importance of awareness and countermeasures against targeted e-mails.
In addition, the results of the survey of employees showed that many said that the reporting add-on made reporting easier.We believe that having employees promptly report suspicious e-mails is an effective way to protect the company, and we expect that the introduction of Tadrill will help to raise awareness and instill the habit of taking appropriate action in response to suspicious e-mails.

Did you encounter any difficulties when introducing Tadrill?

On the other hand, after the introduction of the add-on, there was no awareness of the use of the add-on for reporting.
On the other hand, after the introduction, the awareness of using the reporting add-on has not spread, and there are still cases where we receive reports by email as before the introduction.If the use of the reporting add-on becomes more widespread, we will be able to visualize more precisely the status and trends of suspicious e-mails received and take appropriate countermeasures more quickly, so we believe we need to encourage more use of the add-on.

HENNGE is a reliable vendor that solves challenges in a smart way

What are your needs and expectations for HENNGE and Tadrill?

Not only Tadrill, but HENNGE One as well, is stylish and easy to use, and we feel that it is a reliable vendor that can solve our group’s issues in a smart way.In addition, HENNGE Corporation is very supportive, and the technical skills and responsiveness of the personnel are excellent, so we can use their services with peace of mind.
In the future, we expect not only the improvement of the functions, but also the provision of information on the prevalence and trends of targeted e-mail attacks, as we believe they collect a variety of information on e-mail.

Thank you very much for your valuable talk today.

For more information on Tadrill’s targeted attack email training service, click here.