Last week, Marketing Director Theresa received the text message above. Problem was – it wasn’t me!
This was likely an attempt at spear-phishing (click link for info on spearfishing).
The culprit likely got our info from either our website or from LinkedIn – these hackers try to pose as a higher-up in the company to get confidential information, or to get the subordinate to order and ship gift cards with the company credit cards.
It is important to be vigilant and take steps to protect your office from spear-phishing attacks. Here are a few best practices to follow:
- Be wary of unexpected emails or messages from individuals, even if they appear to be from someone you trust. Check the sender’s email address, phone number, or other contact information to verify its authenticity.
- Avoid clicking on links or downloading attachments from unknown sources. If you receive an email from a trusted source but the message seems suspicious or out of the ordinary, reach out to the sender to confirm its legitimacy before clicking on any links or downloading attachments.
- Keep your software and systems up to date. Install the latest security updates and software patches to reduce the risk of exploitation by attackers.
- Use strong and unique passwords, and enable two-factor authentication whenever possible.
- Educate your employees about the dangers of spear-phishing and best practices for staying safe online. Make sure they understand the importance of not sharing sensitive information and being cautious when receiving unexpected emails or messages.
By following these best practices, you can work together with your employees to protect your organization from spear-phishing attacks.
Not sure how to invest your portfolio or need a second opinion? Reach out to schedule your free consultation.
Your weekly market update is here .