Which one is the real email?
Which one is Phishing?
Phishing is a serious threat to SMB’s across the globe. Today Technical Drive will discuss why Phishing should be taken seriously and how to protect yourself and your business from it.
Phishing is when a Cyber Criminal poses as a trusted company or person.
They do this in order to trick you into giving out personal information.
Cyber Criminals, predominantly, go Phishing through email. Email addresses are easy to collect and you are used to responding to official emails from companies. Cyber Criminals may also utilise text or phone calls.
Cyber Criminals will ask for information such as bank details, personal details (Middle Names, Mothers Maiden Name etc.) or even access to your Computer Network.
Once they have this information they can simply empty your bank account; commit Identity theft or use the network access to place Ransomware on your system.
The possibilities are endless.
The first step is to try to minimise the Cyber Criminals’ access to you. Make sure you are utilising a business appropriate spam filter. This will catch the vast majority of malicious emails.
Next, be careful about how you share information. Banks will never ask for passwords or other sensitive information via email. If it’s an offer that looks too good to be true, it probably is.
Keep an eye out for spelling mistakes or generic introductions (Such as Dear User). These are often signs it is a Phishing email.
Factual errors are often frequent.
Look at the from field of the email. It is usually a good indicator of whether an email is genuine. For example if your bank is emailing you from 'HSBC@hotmail.com', its not a genuine email.
Don't click links in emails such as these. Sometimes the link can start the download of malicious software.
If it comes from a source you think you recognise (your bank or a supplier) then contact them through your usual email contact. Alternatively, you could just give them a call. Ask them about the suspected phishing email.
They would love to know someone is trying to defraud you, using their name.
If in doubt, call your IT Support Provider. It’s their job to help protect you from scams such as these.