Menu
Three Breast Woman Jasmine Tridevil is a Hoax

Three Breast Woman Jasmine Tridevil is a Hoax

iPhone 6 Plus Has Not the Best Smartphone Screen

iPhone 6 Plus Has Not the Best Smartphone Screen

Amber Heard Topless Photo Leaked

Amber Heard Topless Photo Leaked

Kim Kardashian Leaked Photos Backlash

Kim Kardashian Leaked Photos Backlash

Stephanie Beaudoin Dubbed Worlds Hottest Criminal

Stephanie Beaudoin Dubbed Worlds Hottest Criminal

Could Your Organization Fall Victim To Phishing? 5 Tips For Reducing The Risk

Feb 24 2014, 8:36am CST | by , in News | Technology News

Could Your Organization Fall Victim To Phishing? 5 Tips For Reducing The Risk
 
 

YouTube Videos Comments

Full Story

Could Your Organization Fall Victim To Phishing? 5 Tips For Reducing The Risk

A decade after the first appearance of “phishing” (the practice of infiltrating or infecting a network by sending emails disguised to look like ordinary mail from a co-worker or familiar organization), the security problem continues.

Almost exactly three years ago, data security firm RSA suffered a major breach when an employee opened an email that said it contained a spreadsheet of staff salaries. It actually contained malware that exposed some of the company’s confidential technical data. The company’s email software had already identified the message as junk, but the employee moved it out of the junk folder and opened it anyway. If your software tells you an email or any file is dangerous, it’s better to err on the side of caution and not open it, no matter how intriguing the message Subject line might be.

No organization is too large or too small to be immune the dangers of phishing despite a decade of advances in cybersecurity tools. As many readers are aware, Forbes has experienced its own phishing adventures recently, as reported by Andy Greenberg last week. Why does the problem continue to be so pervasive? Said contributor Joseph Steinberg in April of last year, “Phishing attacks utilize a technological medium for communication, but ultimately, they exploit human weaknesses, not computer vulnerabilities. Yet, the vast majority of systems intended to curb phishing … ignore the essential role that people play in the cybsersecurity ecosystem.”

Phishing is a people problem. As the problem continues to enter the news, I asked security expert Vikas Bhatia of New York’s Kalki Consulting to weigh in on the things organizations can do and that individuals can do to keep themselves save from these scams. (I originally interviewed Bhati in September about the increasing number of cyber attacks that affect small business.)

Speaking specifically about the issue of phishing, here are the top precautionary tips  Bhati shared:

  1. Where’s the email coming from you are viewing? Are you sure it’s from the person or organization it claims? There is a big emotional play here, Bhati says. People instinctively tend to trust banks, friends, and social media websites. Hackers know that if it looks like you’ve done business with them before, you’re more likely to click, Bhati says. For organizations you do business with, avoid clicking on links and alerts that arrive via email. Log into the site directly and review the message from within the site’s secure login instead. Also, beware of phishing scams that take advantage of current affairs, such as messages from individual pretending to be representatives of the Winter Olympics in Sochi inviting people to participate in viewership polls.
  2. Are you sure you want to download pictures? Pictures can contain malware just as written messages can (and this is why your business needs to keep your patches and Antivirus software up to date)
  3. Should you ever click on a link?  Where does it take you? Train all members of your company to not be fooled by short URLs.  Before clicking, hover over the link to see if there is a discrepancy between where you think you’re going and what the web address actually says. If there is any question—don’t click.
  4. Do you have administrator access to any of the company’s assets from your device?  Phishing attacks generally require Admin access to company resources to run.  As an extra precaution, use an account name and password that isn’t also used for administrative access for any of the company’s assets or to any of your business or personal financial accounts.
  5. Is your device vulnerable?Are your security patches and your core applications up to date? Be sure to make software updates and install security patches regularly.

Does your organization take these precautions? Do your employees know about them as well? As a final precaution, remember that safe computing practice is never a one-time function. Ensuring your computer is safe should be done weekly and security software should be set to update as frequently as is offered by the vendor. You can never be too safe, but being almost safe enough will invariably lead to bad news. Now would be the time for every organization to take these precautions again.

10 Ways To Become A Victim Of Tax Identity Theft

Source: Forbes

 

You Might Also Like

Updates


Sponsored Update


Advertisement


More From the Web

Shopping Deals

 
 
 

<a href="/latest_stories/all/all/31" rel="author">Forbes</a>
Forbes is among the most trusted resources for the world's business and investment leaders, providing them the uncompromising commentary, concise analysis, relevant tools and real-time reporting they need to succeed at work, profit from investing and have fun with the rewards of winning.

 

 

Comments

blog comments powered by Disqus

Latest stories

Charlo Greene curses and then leaves her Job on Live TV
Charlo Greene curses and then leaves her Job on Live TV
Charlo Greene was a reporter who cursed on live TV and then left her job on air. The issue was marijuana legalization.
 
 
Mariska Hargitay says that Chris Meloni helped her out
Mariska Hargitay says that Chris Meloni helped her out
Mariska Hargitay who is a regular fixture on Law & Order: SVU has said that Chris Meloni helped her out in getting better at her game.
 
 
Kelly Osbourne gets Sentimental while speaking of Joan Rivers
Kelly Osbourne gets Sentimental while speaking of Joan Rivers
Kelly Osbourne of The Osbournes got sentimental while speaking of the late Joan Rivers who was with her on The Fashion Police.
 
 
Iggy Pop to Talk About Free Music in John Peel Lecture
Iggy Pop to Talk About Free Music in John Peel Lecture
Iggy Pop is going to deliver a John Peel Lecture this year. He will talk about free music in his lecture on the 13th of October.
 
 
 

About the Geek Mind

The “geek mind” is concerned with more than just the latest iPhone rumors, or which company will win the gaming console wars. I4U is concerned with more than just the latest photo shoot or other celebrity gossip.

The “geek mind” is concerned with life, in all its different forms and facets. The geek mind wants to know about societal and financial issues, both abroad and at home. If a Fortune 500 decides to raise their minimum wage, or any high priority news, the geek mind wants to know. The geek mind wants to know the top teams in the National Football League, or who’s likely to win the NBA Finals this coming year. The geek mind wants to know who the hottest new models are, or whether the newest blockbuster movie is worth seeing. The geek mind wants to know. The geek mind wants—needs—knowledge.

Read more about The Geek Mind.