Be Smarter Than Dory: 3 Ways to Avoid Phishing Attacks

Categories: Cyber, HR & Employment Law | by admin

If a hacker goes phishing and your company is unprotected, you’re going to be fish fry.

You might be thinking, “There’s no way they would want to target my business” – but the truth is that no company is safe from these cybersecurity threats. Between 2013 and 2016, the FBI investigated 22,000 incidents and saw an approximate total loss of $500,000 per year. We’ve seen major cyberattacks in 2017, too – and the risk is only increasing. Want to keep your head above water? Read on.

 

CYBER NETS UP

Back in May, the FBI released a statement regarding the latest string of cyberattacks. The scariest part about the report is that these heists start off with something as simple and integral to business as an email. The best and only thing you can do to protect yourself is to prepare yourself for this type of calamity. It is of the utmost importance to always stay vigilant. Keeping up to date with the latest cybersecurity news will keep you primed for spotting possible threats.

Being on the lookout isn’t the only way to protect your company. Having a two-step verification system is one way to block the hacker from transferring payments. Staying up-to-date on your antivirus system will keep you in your technological bubble. Make sure that all passwords within the company are varied and not posted anywhere around the office. If you’re a business that regularly deals with foreign suppliers and wire transfer payments you should consider purchasing cyber insurance coverage. In addition to all of these preventative steps, you should also set an incidence response plan. You can create this plan with a cybersecurity consultation company that provides cybersecurity tools and advice.

 

SCHOOL THE CREW

Training your employees to know what to look for in a scam will be your main line of defense. It only takes one click in the phony email for the hacker to get access to everything: passwords, financial data, account information, etc. Hackers are adapting to the technological environment fast and your employees should never forget that this threat is always looming.

Some indicators of common scams are:

  • The sender asks for personal information right off the bat, such as login credentials
  • Emails offering new business opportunity and includes a link to their website
  • Someone you regularly do business with asks for you to send money to a different account
  • Emails requiring an urgent response
  • The sender poses as an organization with complaints filed against you and you need to follow up

The biggest tip to avoid falling into this trap is to research the company emailing you. Make sure that they are the real deal and not a group of bottom feeders. Creating training sessions for your employees will give them the chance to learn how to maneuver and what to do in these scenarios. This will not only keep them informed for cyber security compliance, but also protect your company.

 

IT ON DECK

As mentioned earlier, it is important to have an incidence response plan in place – and your IT department should be a part of it. One way to ensure your IT department can handle a potential data breach is by performing penetration tests. Conducting these tests gives you a comprehensive look at how well your organization is protecting its data while identifying security risks. You should execute these tests regularly for cyber security compliance, but also because it gives you a blueprint to your possible weaknesses.

Don’t make your company’s data and finances an easy target. Do all that you can to protect yourself from phishing attacks, and it’ll be smooth seas ahead.