What’s wrong with an email that starts with “Dear valued customer”?
Over 70% of businesses have been hit with a phishing attack, and data has been compromised. Your first red flag may be an email that starts with “Dear valued customer."
Earlier this month, we published a blog; if you see something, say something. As MainSpring continues the discussion of cybersecurity, it is essential to discuss establishing a human firewall.
In this blog, I will discuss the top cybersecurity threat—email phishing.
Business email…multiple personal email accounts…we all check our email accounts several times a day. Now that many are working from home or in a hybrid environment, your employees may also be checking their personal email from their company laptops.
Email phishing has been around for years, but during the COVID-19 pandemic, organizations have experienced an increase in phishing attacks.
What is phishing? It’s when a cybercriminal uses fake or leading content to get you to open and click on a link or a file in an email. (Such as "Dear valued customer"). But phishing is not limited to just email.
Now, phishing techniques are common to prompt users to open private social media messages and text messages. Social media platforms report a substantial uptick in scammers using real photos and personal information to create fake accounts. Those phony accounts make the crack for scams.
In this blog, I want to include five tips to recognize a phishing attempt provided by our vCIO team.
With phishing attacks surging this year, what can your tech team do to prevent a future attack?
The FBI's Internet Crime Complaint Center has provided a stat that should grab your attention:
“IC3’s 2020 report found that phishing, including vishing, SMiShing, and pharming, was the most prevalent threat in the US in 2020, with 241,342 victims. This was followed by non-payment/non-delivery (108,869 victims), extortion (76,741 victims), personal data breach (45,330 victims) and identity theft (43,330 victims).”—Expert Insights
The number 241,342 probably grabbed your attention, but you may be thinking that a software subscription will cover your cybersecurity needs. Although security applications do play an important role, you must deploy a two-prong approach to cyber awareness.
Training your employees to recognize a threat and report it should be the cornerstone of your cybersecurity plan. Pair an easy-to-use training program, including a regular refresher course, with any technology solution to prevent a cyber-attack.
Training may include an online course, information in your employee newsletter, updates and warnings on your Intranet, and team leader discussions.
There is no doubt that a human firewall is your first line of defense against any phishing attack. Your organization's human firewall must include your employees. Training your employees to notice the red flags of phishing and to alert your tech team should be a top priority.
At MainSpring, we offer a free evaluation of your human firewall. We have partnered with KnowB4 to bring you an online assessment. Look at our Automated Security Awareness Program.