Phishing Problems?

Most companies and businesses today use email and Internet access for critical business functions.  Today most businesses are aware of the words: hackers, phishing and social engineering as well.  If you’ve ever checked an email that doesn’t have too much security in place that messages can successfully get in and out, then chances are you have seen a phishing email, an attempt to hack you, your computer or your company’s network by getting you as a person to click something, respond to an email or do something you normally would not do so that the hacker can gain some control or get access into a computer network, get information or just details about something, anything.

 

One of the best things your company can do to avert or counter phishing and social engineering is to offer training and development to your staff that comes apart from the forced ho hum another training day, help your staff develop their working knowledge on a regular schedule instead of the traditional method brain dump that simply doesn’t work since you need to have functional operatives that know how to properly handle a tool or piece of equipment.

 

MainBoard Consulting helps companies build custom solutions; we also help companies purchase existing systems and implement those systems in a consultative support role to the administration and management that likely is already at maximum capacity.  Whatever your company’s need, we’d like to help you grow and develop your staff and prevent the upper 70% reason why network breaches occur.

 

 

Thoughts on Email Security

Let’s face it, many people use email for business.  Many people use email so they can convey a message, do business, fall for a scam… Yep, I said it.  Email is the number ONE threat vector when it comes to Cybersecurity.  Getting your email address, a working email address that you check, open a message and interact with is one of the best ways that a hacker can execute on their strategy.

 

What can you do, what should you do?

 

1. Don’t give out your email to everyone, loosely and if you see someone is handling your email unsafely (THAT YOU KNOW), ask them to stop in person.  While it seems harmless that a legitimate contact can be doing a noble thing by emailing you, their improperly executed actions can be devastating later on.  I subscribed to a marketing list by joining an organization, somehow;  Strangely enough that my consent was never ever obtained along the way for open broadcast of my email but it goes to show that joining legitimate organizations doesn’t mean your email will be treated as securely as you would treat it.

 

2. If you don’t recognize it, don’t pet it.  That’s an attractive subject line?  Let the clicker beware, best not to click it.

 

3. If you get an email from SOMEONE YOU KNOW and the subject is unexpected, off the wall, out of context, hopefully in your SPAM Box, Junk Mail or other filtered folder, chances are it wasn’t from this person you know.  Before you click and just to be sure, pick up the phone and call them.

 

4. Your Bank, Creditor, the IRS, your Doctor, your Pharmacist, etc will legitimately NEVER EVER EVER EVER EVER EVER ask you in an email to confirm who you are; it is NOT them.  I don’t care if you have committed Tax Fraud according to that email.  If you have legitimately committed Tax Fraud, you can’t fix it through email.

 

I hope you enjoyed this message.