Phishing – Everything You Need To Know

Phishing occurs when a criminal disguises malicious content in a trusted source which lures victims into providing sensitive information. They then utilise this as a bargaining tool or sell it for their own gain. This could be usernames, passwords, credit card or bank details. The sender deceives the victim by making it appear as if it has come from a trustworthy source; such as a customer, supplier, employee, manager or even government departments.

Phishing Emails:

Once you open a phishing email, there is a URL link designed to re-direct you to a site a criminal operates. This often looks very similar to a trustworthy website but it is used to steal your data. And because you believe it to be a reputable source, you fill in your details without thought that it could be used in a malicious way.

Common Phishing scams

Malware Distribution

Distributing Malware proves to be an extremely easy task for cyber criminals and is commonly done through phishing. Simply clicking a malicious link through a phishing email can result in a whole network being compromised.

CEO Fraud 

Criminals trick victims with spoof emails that are addressed from a trusted authority – such as the company CEO. This technique is more targeted and addresses the victim directly, asking for payments that are needed ‘urgently’.

If a phishing attack is successful, your business risks facing financial loss as well as gaining a bad reputation with potential customers, suppliers and clients. As a business, it is important you are pro-active with your cyber security measures to make sure these attacks are avoided as much as possible. As the consequences can be severe.

rEAL LIFE EXAMPLE:

A recent test by ‘ethical hackers’ working for Jisc (originally known as Joint Information Systems Committee) had a 100% success rate in obtaining sensitive data from 50 universities around the UK. One of the most effective approaches these ‘hackers’ used was “spear–phishing”. Emails were sent out which appeared to be from a trusted source but instead were used to obtain sensitive information about both staff and students.

Although the attack was not real, if staff were trained on the characteristics of phishing emails, it is more likely they would have been able to spot the difference and avoided the ‘breach’ altogether.

%

of cyber attacks in the past year have been due to phishing

Why it’s important to train your staff …

Recent government statistics suggest phishing attacks are the most common type of cyber breaches within businesses in the UK; responsible for 80% of cyber attacks on businesses in the past year.

Your organisation’s cyber security can’t block 100% of phishing attacks. So what happens when you receive a phishing email? How can you tell the difference between one that contains malicious content and one that doesn’t? As with most cyber attacks, it is important to understand that your employees are your second line of defence.

You could have the most up-to-date technology in place for your cyber security – but if your employees aren’t clued up, they could unintentionally click on a link that could take your whole organisation down for days. And because phishing attacks depend on human intervention to work, (ie. someone to click a link, provide details etc) training your staff is more essential than ever before to avoid fraudulent emails becoming a problem.

cybsafe can help

Cybsafe is the only organisation in the world to provide you with intelligent security training that evidently reduces your human cyber risk. When it comes to training your employees on phishing, Cybsafe take an intelligent approach, one that creates long-term habits.

At the moment, traditional phishing training is still failing to change the way employees react to potential phishing breaches. Cybsafe instead focus on specific human traits that may make individuals more liable to a phishing attack. This has been proven to give a more effective outcome when it comes to training your staff.

To find out how Cybsafe works, get in touch today! As a strategic Cybsafe partner, we can arrange a free demonstration so you can see how it will help your business to reduce your human cyber risk. 

5 Benefits Of Using a Hosted Dialler In a Contact Centre

In today’s fast-paced world, managing and operating an efficient outbound contact centre is sometimes a little tricky. And with competition to make sales and win clients at its peak and the recent introduction of remote working in call centres, ensuring your agents...

Top Tips to Improving Contact Centre Efficiency

When it comes to your customers, first impressions always count. And this impression can often be made via your contact centre. Your contact centre should focus on customer needs and satisfaction, while internal processes work towards improving your overall...

BLOG: Driving Effective Business Communication By Jamie Lake

Having effective business communication is key to ensuring things run smoothly within your organisation. That’s both internally, with colleagues and externally with clients or suppliers. Without it, wires are crossed, needs aren’t met, and mistakes are made – all of...

Using UCA: In Conversation With Haines Watts

Haines Watts Birmingham have been using our Unified Communications Anywhere (UCA) app to manage all their calls and communications, both internally and externally, for around 12 months. Because of the success of UCA at their Birmingham office, we have recently...

Key Ingredients To Building A Successful BCDR Plan

In today's world, it is vital businesses prepare for any disaster that may be on the horizon. Whether it’s a cyber breach or a fire breaking out in the office, disasters can be unexpected and impossible to escape. But making a BCDR plan is a critical element in...

Datto Guest Blog: What Covid-19 Has Taught Us By Adam Salley

The pandemic may have thrown 2020 up in the air for most businesses in the UK & beyond, but what has Covid-19 taught us? Well it's presented an opportunity to address some underlying issues relating to technology that have, until now, been swept under the carpet...

Top Tips for A Successful Upgrade Transition

Transitioning technology can come with several concerns to do with security, updates, user interruptions and more if not deployed correctly. End of life technology is outdated and if you are still using it, you're risking an insecure operating system that is bad for...

CGJ Services: Becoming a PCS Customer, Server Upgrade & More!

When you’ve been with a provider for several years, transitioning to a new provider can leave you feeling a little uncertain. Yet about a year ago, when PCS completed a merger and acquisition of a smaller IT services company, that’s exactly what happened to CGJ...

BCDR VS. Back-Up

BCDR (Business Continuity Disaster Recovery) and back-up solutions are essential in ensuring that businesses can survive in the event of a disaster, be it natural or human-induced. And as we’ve learnt in recent months with the outbreak of Covid-19, disasters often...

Webinar – Business Continuity & IT Security: Learning From Covid-19

FREE WEBINAR:Business Continuity & IT Security - Lessons From Covid-19 When: Wednesday 19th August 2020            Time: 10:00AM - 11:00AM (BST)With the progressive easing of lockdown across Europe, it is apparent that global readiness for a mandated change to the...

Previous

Next

Submit a Comment

Your email address will not be published. Required fields are marked *

Pin It on Pinterest

Share This