It Takes Just One Employee to Take the Bait. Attacks are on the Rise.
March 6, 2019 By Christopher George cybercrimes
During this year’s tax season, hackers are taking full advantage of the large amounts of data being exchanged online by going on phishing expeditions in the hopes of stealing your data and that of your customers.
In fact, 83% of businesses reported falling victim to a phishing attack in the last year, according to the Wombat 2019 State of the Phish Report. While phishing is one of the most common cybercrimes in existence, this type of sharp increase is a sobering reminder that your business must approach these attacks with a renewed sense of vigilance. Just one employee taking the bait could mean massive financial consequences for your organization.
Effectively protecting your systems and data means helping your team recognize the signs of a potential phishing scam, knowing what to do if your network has been infected and implementing on-going preventative measures. We recommend working with a security partner like Protelligent® to provide training and tactics, but here are key things you need to know now.
Phishing Examples and How to Recognize Them
- Emails that appear to be from legitimate senders, including banks, insurance companies, PayPal or Amazon attempting to obtain sensitive personal, financial or tax information, such as user names and passwords are at the top of the list. Take some extra time to review sender email addresses, subject lines and content for misspellings, poor grammar or anything that does not make sense. If something looks suspicious, do not click on anything and delete the email from both your inbox and trash folders.
- Emails that appear to be from the IRS demanding payment or threatening to seize your tax refund are another example gaining popularity. It’s vital to mouse over links contained in any email, regardless of the sender, before clicking on them to look for malicious URLs. As a side note, keep in mind that the IRS does not send emails requesting any kind of information.
- Do not open any email attachments with odd file names or extensions or that do not appear to be from a legitimate sender.
- If you receive a request via email from a co-worker, friend or family member that seems unusual, pick up the phone and call the sender to confirm the request and contents of the email.
Steps to Contain a Potential Infection
- Isolate the infected computer.
- Immediately secure backup systems or data by taking them offline.
- Contact law enforcement and if possible, collect and secure partial portions of the malicious data that may exist.
- If possible, change all online account passwords and network passwords after removing the system from the network.
Ongoing Prevention Tactics
Leaving any part of your company’s security to chance in today’s highly-advanced threat landscape, particularly employee training, is simply not an option. As part of our Premonition™ Security Suite’s comprehensive services, we provide organizational awareness and relevant cybersecurity training to help your employees stay vigilant. We also deliver penetration testing to simulate tactics and techniques of real-world attackers, such as email phishing, to identify vulnerabilities to remediate before they can be used against you.
Don’t let a tax-season phishing attack be your security wake-up call. Get the peace of mind you need to focus on innovation and identifying new customer opportunities with the 24/7/365 protection of Premonition Security Suite. Call us at (855) PRO TELL to learn more.
Recent Posts
Archives
- August 2020 (1)
- July 2020 (1)
- June 2020 (1)
- May 2020 (1)
- April 2020 (1)
- March 2020 (1)
- February 2020 (1)
- January 2020 (1)
- December 2019 (1)
- November 2019 (1)
- October 2019 (1)
- September 2019 (2)
- July 2019 (1)
- June 2019 (3)
- April 2019 (1)
- March 2019 (1)
- February 2019 (1)
- January 2019 (1)
- December 2018 (1)
- November 2018 (1)
- October 2018 (1)
- September 2018 (1)
- August 2018 (1)
- May 2018 (1)
- March 2018 (1)
- February 2018 (1)
- January 2018 (2)
- December 2017 (2)
- November 2017 (3)
- October 2017 (3)
- September 2017 (2)
- August 2017 (3)
- July 2017 (2)
- June 2017 (5)
- May 2017 (7)
- April 2017 (5)
- March 2017 (5)
- February 2017 (1)
- January 2017 (5)
- December 2016 (1)
- October 2016 (4)
- September 2016 (1)
- August 2016 (3)
- July 2016 (1)
- June 2016 (1)
- May 2016 (1)
- April 2016 (1)
- November 2014 (1)
- July 2014 (2)
- June 2014 (1)
- May 2014 (3)
- April 2014 (3)
- March 2014 (1)
- February 2014 (2)
- January 2014 (3)
- December 2013 (1)
- November 2013 (4)
Categories
- Community (19)
- Cloud (18)
- IT (16)
- cloud backup (16)
- cybersecurity (15)
- cloud backup data recovery (9)
- cloud computing (8)
- clouddr (8)
- it security (8)
- cloud storage (7)
- data security (7)
- AWS (6)
- Education (6)
- cloud services (6)
- Giving Back (3)
- cloud restoration (3)
- compliance (3)
- data (3)
- assessment (2)
- business (2)
- chief information officer (2)
- client satisfaction (2)
- cloud data recover (2)
- cloud dr (2)
- critical power exchange (2)
- cyber (2)
- cyber responsibility (2)
- data recover (2)
- datacenter (2)
- duo security (2)
- end-to-end encryption (2)
- hackers (2)
- holiday season (2)
- internet (2)
- storage (2)
- 2019 goals (1)
- Android (1)
- Arts (1)
- Business Continuity (1)
- CASBO (1)
- Cisco Cloud Web Security (1)
- Cisco Security Intelligence Operations (1)
- Custom Design (1)
- Graphics (1)
- Protelligent (1)
- Virus (1)
- account protection (1)
- advanced persistent threats (1)
- alien vault technology (1)
- alienvault technology (1)
- antivirus program (1)
- antivirus software (1)
- apis (1)
- apt (1)
- attachment (1)
- attack (1)
- automatic updates (1)
- awareness (1)
- backup (1)
- benefits (1)
- best practices (1)
- bot-driven attacks (1)
- bring your own device (1)
- bug (1)
- business growth (1)
- byod (1)
- california joint powers insurance authority (1)
- california jpia (1)
- check cashing (1)
- cisco (1)
- cjpia (1)
- client testimonial (1)
- cloud backup vs cloud storage (1)
- cloud computing services (1)
- cloud conversion (1)
- cloud migration (1)
- cloud recovery (1)
- community link consulting (1)
- compliance program (1)
- compliance regulations (1)
- computer science (1)
- computer security (1)
- computers (1)
- contain attacks (1)
- cost of cybercrime (1)
- cost of data breach study (1)
- critical power (1)
- critical power products & services (1)
- customer testimonial (1)
- customer testimonial video (1)
- cyber liability (1)
- cyber-threat (1)
- cybercrimes (1)
- cybercriminals (1)
- cybersecurity program (1)
- data access (1)
- data breach (1)
- data breach protection (1)
- data center (1)
- data encryption (1)