How to spot a phishing attack
Make your staff cyber-aware
Can your employees identify a phishing attack?
According to a report from SC Magazine, research by PhishMe demonstrates that 91 percent of cyber-attacks start from phishing. Phishing attacks are the fraudulent practice of sending emails purporting to be from reputable companies in order to induce individuals to reveal personal information (such as passwords and credit card numbers) online.
Here are five questions your employees should ask themselves if they aren’t sure about an email:
1) The URL - if you hover over a link, does the URL match up with what it's claiming to direct you to?
2) The content - are there an unusual amount of spelling and grammar mistakes?
3) The ask - is the email asking for personal information?
4) The offer — does it seem realistic…or is it too good to be true?
5) Your gut - does anything seem suspicious about the email? If you feel even the slightest hesitation, you're probably right.
Any company, of any size, can be a victim. Employees remain the first line of defence and educating them regularly about potential cyber attacks is vital. A culture that encourages and supports employees in being open (and fast to act) when they have made a mistake is essential.
Training is an important part of educating your employees. Amethyst is an established cyber security training provider offering specialist courses on technical risk assessment as well as more basic introductory level courses for non-specialists - no previous knowledge or experience of the subject is assumed.
Our Cyber Security Awareness courses provide an overview of cyber security and Information Assurance principles, including information risk management (impact, threat and vulnerability); sources of cyber security advice and the 10 steps to cyber security.