The biggest challenge for an organization’s Information Security department is preventing phishing attacks, which are more pervasive than ever. According to an article in Forbes, phishing costs US business upwards of half a billion dollars per year. Focusing on how to prevent phishing attacks that grow more sophisticated by the day is a business imperative.
Phishing attacks are a cyber criminal’s tool of choice for good reason; they work. On a busy day, it’s easy to see how an untrained employee could fall for a fake alarming email from a bank or an “urgent email” that looks like it came from higher management. Cyber criminals use important time periods such as the holiday season or the tax season to excite or scare employees into interacting with an email that looks legitimate and/or urgent.
Attacks are expanding to more channels, such as instant messaging applications and shared file storage. Hackers are gaining access to SaaS applications, like online email accounts. Employees must be kept informed about the changing nature of phishing attacks so they can avoid clicking on malicious links or divulging sensitive information as a result of convincing social engineering.
How to Prevent Phishing Attacks
Training employees to be skeptical of all unsolicited emails is key, and this course aims to do just that. This course teaches how to prevent phishing attacks. Specifically:
- What phishing is
- How to recognize a phishing email or text message by looking for specific characteristics
- What to do if you receive a phishing email or text message
- How to secure devices against potential phishing attempts
Every year, hackers get more advanced and introduce new phishing strategies to bypass defenses that were designed for last year’s threats. It must become second nature for users to second guess requests for information, money or passwords.
Duration: 10 minutes