The top threat to employees is Phishing attacks, which sees hackers attempt to steal data from the individual or organisation that receives the message. To help protect yourself and your employers’ organisation from phishing attacks, it’s pivotal that all staff members are aware of how attackers operate and are on high alert when noticing suspicious activity. Developing a few good online habits drastically reduces your chances of becoming a victim of phishing, these habits include:
- Be able to identify Phishing attacks
To help prevent a phishing attack from taking place, it’s important as an employee that you take extra care when handling your emails. Most phishing emails will be impersonations of genuine emails, will ask you to click or download something, and will express urgency in the request.
If you think you have received a suspicious email, do not click on any links or pop-ups and avoid opening any attachments within the email. If you do open them and are suspicious, do not enter any personal or company information in them or within the response of the email. - Avoid using predictable passwords and use a password manager
Avoid using predictable passwords and avoid using the most common passwords that criminals can easily guess.
Don't re-use the same password across important accounts.
Consider using password managers, which are tools that can create and store passwords for you that you access via a 'master' password. - Changing all default passwords
One of the most common mistakes is not changing the manufacturers' default passwords that smartphones, laptops, and other types of equipment are issued with.
If you are working from home, you should change your Wi-Fi routers default password to one that is not predictable to help prevent hackers being able to take over the device. - Use Multi-factor authentication
Multi-factor authentication otherwise known 2FA means that two different types of information are required before access will be permitted to allow access to an account or computer system. This helps stop cybercriminals from accessing your accounts even if they obtain your passwords. - Keep software up to date
Regularly patching and installing software updates helps to protect your devices as the updates will expose new flaws and vulnerabilities. If your device prompts you to install an update, please do promptly follow the instructions provided.
To help you to guard your business against cyber-attacks the SECRC offers a free membership package. It is hassle-free and doesn’t commit you to anything that you’ll later be charged for. Join today at www.secrc.co.uk/membership.
Article courtesy of The Cyber Resilience Centre for the South East
