BotNet News

Phishing involves the attempt to trick someone over the Internet, by email or text, into disclosing personal information or downloading malware. At work, this can result in a breach of company data or loss of funds, and in some cases, a phishing attack can cause damage to the reputation of an organization. At home, the risks can include theft of personal information or the loss of valuable electronics.

Criminal hackers are constantly adapting their approach to stay ahead of law enforcement, and phishing attacks can take many forms. They can be as blatant as free money or too-good-to-be-true exclusive deals, or more sophisticated, such as spear phishing, where attackers target specific individuals in your organization. Attackers can also use social media to target you, impersonating your friends or coworkers to gain your trust and lure you into a trap.

To avoid phishing, never click on a link in an unsolicited message or email. Be sure to inspect a website address for phishing indicators like typos and incorrect grammar, and hover over hyperlinks to examine the URL. If you suspect an email or call is suspicious, contact the sender directly for confirmation. At work, encourage employees to report any suspicious emails or calls and deploy tools that prevent phishing, such as DMARC, Sender Policy Framework and Domain Keys Identified Mail. Continuously educating employees on the latest threats reduces risk and promotes a culture of cybersecurity.