Cybersecurity Threats & You
There are so many cybersecurity threats out there in the world today, so we are covering 10 of the biggest threats so you can educate yourself to be aware of the warning signs of a cyber-attack.Ā
Social EngineeringĀ Ā
Social Engineering is the use of psychological manipulation to trick a user into making security mistakes or providing a cybercriminal with sensitive information.Ā Ā
Example of Social EngineeringĀ Ā
Your company posted on LinkedIn that you just hired a new employee in your IT Department. A hacker sees this and emails your new employee using a fake email address from Human Resources. The email asks the employee to verify sensitive information to enter the companyās HR portal. And just like that, a hacker has broken in!Ā
RansomwareĀ
Itās in the name. Ransomware is a type of virus delivered that will not give back control of your device until the hackerās stated āransomā has been paid. In all other ways, this virus behaves like a malware attack.Ā
MalwareĀ
Malware is a type of virus that takes havoc on a userās computer.Ā Cybersecurity threatsĀ with malware are usually sent through email via a link or a downloadable file. Once you have clicked on the link or downloaded the file, the malware will activate.Ā Ā Ā
Email/SpamĀ Ā Ā
The most common way to send phishing scams is via email.Ā Because of this, having a basic email phishing training course for your employees is a must. Itās been reported thatĀ 3 trillion phishing emails are sent every year,Ā soĀ one of them is bound to show up in your inbox.Ā
Spear PhishingĀ
Spear phishing, not to be confused withĀ spearfishing, is considered a hyper-targeted phishing attack. Hacking pros will map out certain individuals or organizations to get the highest value on their efforts. Initial research is done before deploying this attack to make it seem more personal and believable.Ā Ā Ā
Domain SpoofingĀ
This is a popularĀ cybersecurity threatĀ that takes place over workplace email, hence a valuable thing to teach employees during phishing training. Domain spoofing will use fake email addresses that appear to be coming from your boss, co-worker, etc. Never click or download anything if you are suspicious of domain spoofing. The best thing you can do to stay safe is to verify the email sender through another form of communication.Ā Ā
Vishing (Voice Phishing)Ā
We have all experienced spam calls at some time or another. Vishing is aĀ phone call from a fake caller ID that attempts to trick recipients to give themĀ sensitiveĀ information. The caller may be posing as your bank, car dealer, insurance carrier, etc. Proper phishing training can help point out the warning signs of what to look out for during one of these calls. As a golden rule, if there is a sense of urgency or the call seems random, itās likely a vishing scam.Ā Ā
SmishingĀ (SMS Phishing)Ā
AĀ smishingĀ scam is sent through SMS texting. This text will normally contain a link the sender is asking you to click on. The link will generally go to a phishing website or ask you to grant them access to one of your accounts by logging into a portal.Ā
Domain SpoofingĀ
This is a popularĀ cybersecurity threatĀ that takes place over workplace email, hence a valuable thing to teach employees during phishing training. Domain spoofing will use fake email addresses that appear to be coming from your boss, co-worker, etc. Never click or download anything if you are suspicious of domain spoofing. The best thing you can do to stay safe is to verify the email sender through another form of communication.Ā
Evil Twin Wi-FiĀ
Beware of the public Wi-Fi. Hackers can easily pose as a common network such as āXfinity Wi-Fiā and gain access to your information once you connect your device.Ā
For more IT news, blogs, and industry insights throughout the week, follow us onĀ Facebook,Ā Twitter,Ā LinkedIn,Ā andĀ Instagram.Ā Ā