Phishing Season is Here
Phishing Season is Here
Phishing season is open - every month, every week, every day and every hour. Since almost all of us use email daily, four billion of us every day, it’s good to know the most likely attack is phishing. Hackers don’t care whether it’s a personal email or business email. In fact, business emails usually allow the cyber-criminals to get into systems and/or other emails in the organization.
Phishing Targets Open 70% of Phishing Emails They Receive
The global average cost of a data breach increased 2.6% from $4.24 million in 2021 to $4.35 million in 2022 — the highest it's been in the history of IBM Security's “The Cost of a Data Breach Report.”And there is no reason to believe these numbers will go down any time soon.
Regardless of how many cybersecurity layers your company covers, the bottom line—and the greatest vulnerability—always remains the human factor. Security Awareness Training is one layer that needs to be done with your employees, not just once when they are hired, they also reminders and updates on current vulnerabilities.
Quick check list for phishing emails:
- Grammar errors and misspelled words.
- Email addresses and domain names that don't match
- Sense of Urgency - ACT NOW, URGENT, NEED RESPONDS NOW
- Recipient Did Not Initiate the Conversation
- Request for Credentials, Payment Information or Other Personal Details
- Logo or colors don’t look like the business’s logo you know.
Here is a sample of a phishing email:
The message is sent from a well know company, no logo. Fake invoice - never order product. The email is poorly written. Asking for money - leads to personal information once you call.
CorpInfoTech solutions provide simulation exercises based on real examples of socially engineered phishing attacks in order to better teach employees how to spot phishing emails and report them – whether they have been opened and actioned or not.
Let’s talk about how our security solutions can keep your company safe into 2023 and beyond!
CorpInfoTech (Corporate Information Technologies) provides small to mid-market organizations with expert I.T. services including compliance assessment, cybersecurity penetration tests, and comprehensive business continuity planning services. CorpInfoTech can help organizations, quantify, create, refine, and mitigate the risks presented by business threatening disasters in whatever form they may be disguised.