Security, Training

It's Phishing Season

May 29
0 comments

Phishing: Don’t Take the Bait 

 

Phishing emails are fake messages designed to lure people into clicking on dangerous links, sending sensitive information, or transferring money. Clicking on infected links can result in ransomware, data loss, unauthorized access of sensitive or protected data, or financial theft.  ‘Phishing’ refers to messages broadcast to a wide audience, such as emails stating that your bank credentials need to be updated, you have underpaid your taxes, or your credit cards are blocked. ‘Spear-Phishing’ messages are personalized messages targeted at individuals, like HR and finance department managers and staff, often from ‘the CEO’ or someone else in authority. These messages ask for sensitive information, such as payroll records, to be sent, or for money to be transferred. Spear-phishing hackers often use information about the sender, that they find on a corporate website or in social media, to gain the recipient’s trust. Electronic tools should be implemented to identify and block phishing emails. However, because hackers are getting more sophisticated and using tools to defeat blocking technologies, the last line of defense is a workforce trained and tested in avoiding phishing scams.  

CHECKLIST 

  1. TRAIN your workforce to recognize, avoid, and report phishing emails. 
  2. Implement a PHISHING CAMPAIGN to further educate and test your workforce. 
  3. Post REMINDERS to keep your workforce alert. 
  4. Save reports as evidence if needed for an audit or investigation. 
  5. Repeat at least twice per year.
  6. Install email software to filter out potential scammers
  7. Create a company culture where it is “okay to ask”. If you have doubts about the legitimacy of an email, ensure your staff and fellow employees know it is okay to double check. 

To Learn More, Watch the Video Below

Episode two of Technology Simplified – Tech Talk Everyone Can Understand. In this episode Will Slappey & Jake Demille discussed phishing campaigns: how bad actors convince people to “take the bait”, ways to recognize phishing emails & steps to prevent them ever hitting your inbox.  

 

Be careful which emails you trust! If a suspicious email comes from outside your organization, and sometimes even from inside – take care to review the information and motives of the sender before clicking on any links.  

 

Get caught up on all our Podcast episodes below:

 

 

FREE IT
Optimization Plan


Are you completely fed up with chronic computer problems and escalating IT costs? Do you worry that your backups and IT security are lacking? Do you have a sneaking suspicion that your current IT guy doesn't have a handle on things? Our free IT optimization plan will reveal gaps and oversights in your computer network and show you how to eliminate all your IT problems and never pay for unnecessary IT expenses again.

Complete this form below to get started. We will contact you to discuss next steps to getting your free IT Optimization Plan