Phishing Attacks Rise By Several Hundred Percent Per Quarter

 

Phishing emails contain links or attachments intended to steal information and distribute malware. The emails will pretend to be from a trusted source, such as a colleague or third party partner. A popular form of malware is ransomware, which encrypts data on a device and then extorts money from victims in exchange for the decryption key.

The latest phishing emails are becoming less obvious to detect. Cybercriminals are getting better at creating phishing emails that are official looking, personalized, and programmed to bypass detection software.

Plus, many recipients are inundated with emails throughout the day. They are less likely to examine each email carefully and may quickly respond to requests to transfer funds, open attachments, or provide confidential data.

Both phishing and crypto ransomware are increasing at the rate of several hundred percent per quarter, a trend that Osterman Research believes will continue for at least the next 18-24 months.

 

The costs of a successful phishing ransomware campaign are high for businesses:
• Stolen, leaked, or deleted confidential data
• Identify theft
• Lawsuits
• Violation of data protection regulations
• Ruined reputation
• Possible closing of the business

 

What can you do?
Take the threats seriously: Threats of a breach exist within communication systems, personal devices, and even users themselves. This threat to your business is an opportunity for cybercriminals to make a profit.
Conduct regular cyber security trainings: Staff members are the first line of defense against phishing and malware campaigns. Periodic security awareness trainings can help your staff detect cyber threats through online training sessions, handouts, presentations, and mock attacks.
Set up policies and procedures for technology use: Establish your policy for proper use of email, internet browsing, collaboration software, and social media.
Use an anti-malware program on your devices: This type of software will detect and eliminate phishing and malware attempts. Make sure to install the software on personal devices that connect to your office network. Malware scans are already included in our month-to-month services.
Run network vulnerability tests: SwiftTech can search for and repair security holes in your network. Network scanning is already included in our month-to-month services.
Backup data on a regular basis: We recommend backing up your data to an onsite device and to a cloud service. If disaster strikes, SwiftTech will be able to minimize data loss by restoring from a good backup taken before the infection occurred. Without backups, you either lose your data or pay a ransom for it.
Enforce permission based access to data: Do not give employees access to network drives and programs that house confidential data if it is not relevant to their job duties.
Watch where you click: Email attachments and links should be opened only from trusted sources. If you get an attachment from a contact that typically does not send them, follow up.
Don't overshare on social media: Cybercriminals can use the information you share on social media to create a more personalized phishing email.
Report suspicious emails: If you spot a malicious email, report it in your spam filtering software.

 

Need help? Contact us at [email protected] or 877-794-3811.

 

SOURCES
Osterman Research, Inc. Best Practices for Dealing With Phishing and Ransomware. (2016, August). Retrieved from: https://dm-mailinglist.com/subscribe?f=6b1c24a7
McCall, J. 3 Ways To Keep Your Customers Ransomware-Free. (2016, July 13) Retrieved from: https://www.bsminfo.com/doc/ways-to-keep-your-customers-ransomware-free-0001?
Shuchami, N. How To Keep Your Customers Protected From Constantly Changing Ransomware. (2016, November 18). Retrieved from: https://www.bsminfo.com/doc/how-to-keep-your-customers-protected-from-constantly-changing-ransomware-0001?
Yarbrough, B. Email Is A Major Security Risk For Small Business. (2016, August 24). Retrieved from: https://www.bsminfo.com/doc/email-is-a-major-security-risk-for-small-business-0001?

 

Contact us at 877-794-3811 or [email protected] for Professional IT Support

get in touch