One of the most common cyber-attacks, phishing operates through emails which are often convincing and appear to come from legitimate senders. These messages entice their targets to click on links or attachments which, in turn, facilitate theft or fraud.
Phishing uses scam emails to convince users to click on a malicious attachment or link. These can infect the victim's computer with malware which gleans private information, allowing an attacker to steal money, disrupt business operations, or destroy data.
Phishing attachments often bypass security and anti-virus programs by using Microsoft Office 'macros' which download malware if run. Links may connect to seemingly legitimate websites, which exploit vulnerabilities in the victim's computer to install malicious code. Alternatively, these webpages may simply trick the user into entering personal information.
Sophisticated attackers aim convincing 'spear' phishing emails at carefully selected groups, researching recipients through social media, website information or public facts about their organization.
High-volume phishing, on the other hand, targets as many recipients as possible – of whom only a tiny percentage have to be caught for possible success. Fake invoices, delivery notifications, receipts and banking updates can all be used as lures in these attempts.
Most importantly, learn to spot a suspicious email!
There are several tell-tale signs: An unexpected email, such as confirmation for a form you haven’t submitted or an order you haven’t made. A new e-mail address from a sender you know. An unusual greeting or title in the subject box. A strange tone, or odd language. An unusual attachment, or a request to enable ‘macros’. A link to a strange URL domain. Any mail or link asking you to enter a password.
877 472 2249
We're here Mon-Fri 8:00AM to 9:00PM ET and Sat 8:00AM to 4:30PM ET