Of particular interest regarding email security, is the ever-increasing amount of spoofing attacks dressed in sheep’s clothing, posing as informational emails regarding COVID 19 news and updates. However, lurking beneath the surface is a criminal’s attempt to lead a user away from their usual skepticism and lure them by playing on their fear and vulnerability in this unusual time in history.
Now is the time to be on high alert in training your staff to be aware of the soft and subtle tactics used by hackers to mentally sway a user to let down their guard. Are you training your staff on a continual basis on what to look for in a possible phishing email? Are they aware of the common elements used to make an email look like it came from a trusted source? Utilizing a phishing simulator can be an excellent tool to continually test your users to ensure they are on alert and being mindful of possible threats that occur in email.
Increasingly important is identifying users in your network that receive a large amount of email. When having to wade through lots of email, it can become easy to blindly open a spoofed email when in a hurry and on the go. Being busy is part of life these days, yet this is where criminals know how to take advantage of weakened sensitivity to the exposure. Don’t let you team fall victim to this tactic!
Other mitigating factors to ensure you have proper protection include ensuring you have proper security measures in place for your servers, segmentation of user profiles and their ability to access only the necessary information for their role, and deep learning security platforms that heal your vulnerabilities as you go, while learning for the next threat that is lurking – all effectuating a zero-trust workplace security master plan. TimbukTech is your resource for game plan action!