/
All Behaviours > SB164a Does not open an attachment in a simulated phishing email
SB164a Does not open an attachment in a simulated phishing email
Opening an attachement in a simulated phishing email informs the IT or security team that employees might be at risk of taking further action to a real phishing email.
Why is it important?
Opening an attachment in a simulated phishing email suggests a lack of cyber security awareness. It means you are at risk should a real phishing email come.
Priority Tier
Behaviours in SebDB are ranked by their impact on risk. Tier 1 behaviours have the biggest impact, Tier 4 behaviours the least.
![Tier 1](https://cybsafe-resources.s3-eu-west-1.amazonaws.com/cover+images/tier-2-icon.png)
Risk Mitigated
![Malware Infection](/research/security-behaviour-database/social/risks/malware-infection.jpg)
Malware Infection
Malware infections occur when malicious software makes its way on to a device or network.
![Account Compromise](/research/security-behaviour-database/social/risks/account-compromise.jpg)
Account Compromise
Account compromise happens when unauthorised people access them.
![Data Leak](/research/security-behaviour-database/social/risks/data-leak.jpg)
Data Leak
A data leak is when data is accidentally or intentionally disclosed to unauthorised people.
![Data Theft](/research/security-behaviour-database/social/risks/data-theft.jpg)
Data Theft
Data theft is the intentional stealing of data.
Further reading
http://ijramr.com/sites/default/files/issues-pdf/3407.pdf
https://www.cisa.gov/uscert/ncas/tips/ST04-010