Do you know the signs that indicate someone is trying to scam your employees? Unfortunately, there are many people who don’t, which has resulted in countless attacks and hacks in businesses of all sizes and types. Also, just like the influx of Doritos and Oreo flavors in recent years, the options and types of phishing emails have expanded significantly.
An email requesting password resets for online banking and social media accounts, fake shipping confirmation, and more are making the rounds. As a result, now is the time to put time and effort to learn about the latest phishing scams like pony malware, ransomware, and more.
Here are some of the most common signs that you have been the victim of a phishing email.
One of the easiest to spot signs that you have received a phishing email is if there is a spelling mistake in the subject line or in the body of the message. Misspellings are particularly significant if the mail seems to come from a bigger company, such as Facebook or T-Mobile. You can feel confident that these multibillion-dollar companies have the needed resources to ensure everything is spelled properly in their customer-facing communications – even the automated ones.
There are some experts who have even made the claim that misspellings are used purposefully to increase the possibility that a less observant individual will fall for the trick.
If you see highlighted blue text that indicates a hyperlink in an email you were not expected, this should be an automatic red flag. There are many phishers who may try to hide URLs that lead to malware in this manner. What this means is that you need to hover over the hyperlinks in an email before you actually click them. This will let you see the real destination of the URL, regardless of what the linked text says.
If you are using a mobile device, you can use a long press on a suspicious hyperlink to reveal the destination of the linked text, along with several other options.
Phishers are also going to try to hide a nefarious URL as a legitimate one by including part of or all of a real brand name. Don’t fall for this – as it’s going to result in serious consequences in most cases.
Any type of message that is addressed in a generic manner, particularly the ones that relate to any type of financial transaction, is suspicious and should be treated as such. The majority of companies that are dealing with data in any manner have enough information on each of their customers that they can contact them using their real name during email communication. While this may seem a bit creepy to some, personalization is a key way to separate real and fake emails.
One of the most common phishing tactics is blasting out a generic email to thousands or even millions of different email addresses, which are often gathered from stolen or compromised databases. All it takes is a single user to click on one of these emails for the cycle to continue.
The use of malware-carrying file attachments is still considered a common tactic used by phishers. In fact, according to the 2019 DBIR reports, the top causes f malware delivery during 2018 were attachments. There are some email systems that can block these, but it’s still necessary to know how to spot the problems.
The fact is that phishing emails are still a serious threat. As a result, you have to ensure that you are taking the proper steps to protect your business. This means proper employee training and ensuring that everyone knows the risk factors that are present is the best way to ensure that you can reduce the likelihood that your business is going to be a victim of one of the millions of attacks that occur each year.
Publish Date: March 6, 2020 1:58 AM