Phishing for the truth…
No one likes to admit that they’ve taken the bait and fallen victim to a phishing attack, but it happens more than people think. Must publicity revolve around these attacks happening via e-mail, but they can occur via a text message or even a phone call. An unsavory person can exploit your personal data with any number of enticing messages such as winning a prize or impersonating a government official who is threatening to put you behind bars unless you pay a delinquent tax bill. These characters can impersonate your bank, a social media account, a co-worker, or even a friend or relative.
- if something seems too good to be true it usually is…caution and skepticism should be the order of the day.
- if someone asks for personal information over the phone, via e-mail or text the safe bet is to stop right then and there and delete the message or hang-up.
- the best advice is to pause, process the request in your mind, and never react out of fear or intimidation.
- common sense is your best friend
- respond to ANY request for personal information, any reputable institution will not ask you to disclose that information. If they insist call the institution they represent and double check the validity of such a request.
- enter your username and/or password when clicking on an e-mail attachment or text message.
- enter your social security number, bank account info, PIN’s, credit card number, or other financial related information.
- enter any information that a social engineer can use to impersonate your identity such as birthdate, mother’s maiden name, first pet, etc.
- check the spelling of a link that was sent… there could be a small but noticeable typo in the website address which gives it away as a fake site.
- check the e-mail address, what appears to be a co-worker, friend, or relative may show their actual name, but the e-mail address is obviously wrong.
- hover over a link and see if it will indeed take you to the site they reference.
Once again Remember…
- any reputable website will NEVER ask for personal information.
- any person purporting to work for your bank, credit card company, or a government agency will never require (demand) that you supply them with personal information. If they do so call them back on a number that you know to be legitimate and safe.
What can CogentDigital do to help your organization become more aware of phishing schemes?
- We can implement training to your employees empowering them to be more aware of the typical schemes employed.
- We can implement advanced security practices to catch suspected phishing e-mails before they enter your system.
- We can deploy AI driven software solutions that constantly monitor your environment and terminate any suspicious activity before it takes hold.
Call us so we can discuss protecting your assets, your staff, your customers, and clientele. Let us help you protect you and your reputation!