phishing

Phishing is #1

number 1 phishingOver 95% of all successful cyber attacks/malware attacks start with a phishing email in which you have to click a link or open an attachment. It is the #1 vector for successful cyber attacks. So be careful in the way you handle your email!!  If you are skeptical then don't touch it!!  Feel free to contact me as well if you have questions about a suspicious email.  I can try to verify if it is on the scam list or not.

How to prevent phishing attacks

phishingAs you know, phishing is a technique that involves tricking the user, usually through a malicious link or attachment in an email, in order to steal confidential information , passwords, etc, .  And summer is a notorious time for phishing emails, hacks and other malware.  The other day we had an incident at the office when one of our workers took the appropriate measures when sent a phishing email.  It seemed suspicious that the attachment file when clicked asked for an email and password even though they knew the sender.  So, they called the sender to double-check the accuracy of the attachment and the email.  So, a lot of times we can trust our instincts to identify phishing emails.  Often phishing emails require you to do something that is not normally done or required.  That is a good indication to double-check before clicking that attachment, or that suspicious link in the email which could unleash malware, ransomeware of something worse onto your computer.

How to spot phishing emails before it is too late

Phishing emails are emails which usually pretend to be from a well-known company (e.g. Google, Apple, Microsoft) which ask the user to click and link in the email and supply personal information such as a password or account number of a bank.  It is really an email from a hacker seeking to capture one's password or personal information in order to break into your account or steal your identity.  In other words they are fishing for information.  If we are click happy and click the link in the body of the email without thinking and provide the information then we give away a password or personal information which can be useful to the hacker.  In order to protect yourself from these attacks then please see this article by imore which although is written for the mac apple computer has application to any computer/email account:

https://www.imore.com/how-identify-and-report-phishing

Phishy Phones

Dear all,

Phishing is still an effective method for hackers.  And this includes our phones.  The other day I received a text message purportedly from Barclays bank.  I have an account there so it was possible but I was suspicious since the text message had a link in it that I was supposed to use to confirm a scheduled payout which was also possible.  I called the bank and they said that it was not their text message and that they would never send a text message with a link asking to confirm a payout.  So, always be on the safe side if you think something is a little suspicious - on ANY device.  Also, phone apps lately have been the attack vector of some serious hacks.  Let's stay vigilent.