There has never been a more crucial time to be cautious while on the Internet. Reports come in every day about the latest victims of phishing emails. It is of upmost importance that you and your business are aware of these scams, as they could end up stealing fortunes from your pockets or sometimes even worse – proprietary, confidential data.
Phishing emails are traps laid by Internet hackers. These emails mimic the appearance and style of a regular email you would expect to receive in your inbox. Often portrayed as mass emails or personalized messages, phishing emails almost always have one thing in common: they will try to take you to a malicious site and/or have you perform a malicious action, guised as legitimate (sending your password, approving transactions, creating false accounts, running unapproved programs, etc.). The best course of action is to never click an emailed link, instead enter the known URL for the business or service directly into your browser.
Many phishing emails can be easily caught through basic discretion. If you do not recognize an email, the sender or do not understand why you are receiving a certain message, you must exercise extreme caution. Another way to identify a fraudulent email is by noticing when the message asks you for confidential or secret information and/or requires you to follow a link to complete an action.
Remember – SAFETY FIRST
Never click or respond to an email you’re unsure of, just pick up the phone and give the person a call to verify the message and its contents!
Don’t think it could happen to you or your company? Well, think again. Recently, one of our security contacts passed on some information about a new phishing scheme that impacted one of his customers. His customer’s accounting department received an email from what appeared to be their president, who was on vacation at the time, claiming that he had come across some business and required two separate wire transfers consisting of $87,000 and $163,000 respectively. The email also included legal papers that were inspected and deemed credible by the company’s accounting department. So the transfer was made. The only problem was that the president never received the money! The request was actually made by a hacker pretending to be the president, and it ended up costing the company $250,000.
Employees can never be too cautious. Even if the email contains the signature of your CEO, it could be a matter of forgery. To help ensure your employees are prepared to handle these risks, Skoda Minotti offers Social Engineering testing and security trainings, aimed at enhancing skepticism and identification of fraudulent messages. Don’t let your company get hooked by a phishing email.
Is your business ready to take the next step in protecting against phishing emails? Skoda Minotti Risk Advisory Services is equipped and prepared to help you keep your company’s information safe. Contact us at 888-201-4484 or firstname.lastname@example.org.