Why phishing emails are bad for business

Have you heard about the UC San Diego Health data breach?

 

It started with a phishing attack back in December, and now the personal info of patients, students, and employees could be in the hands of cybercriminals. The victims could face identity theft at any time.

 


A CLASSIC EXAMPLE OF AN EMPLOYEE DOING THE EVIL BIDDING OF THE BAD GUY.

  • Employee(s) took action as directed in the phishing email.
  • Those actions gave the hackers access to employee email accounts.
  • The hackers could access everything in the employee email accounts.

 

WHY IT’S BAD FOR BUSINESS

  • The hackers can access any password reset links that arrive via email.
  • The hackers can access any multi factor authentication codes that arrive via email.
  • The hackers can send emails directly from your email account and message your contacts requesting information or even changing payment instructions.

 

WHAT YOU NEED TO KNOW

  • Sometimes malicious emails get delivered to the inbox.
  • You need to carefully review emails before clicking on links and opening attachments.
  • The best way to catch a phishing email is to practice catching phishing emails.

 

HOW DO YOU PRACTICE CATCHING PHISHING EMAILS?

Send your employee simulated phishing emails. This gives them the opportunity to spot phishy behaviors and review links, attachments, and emails addresses. This allows them to learn in a safe and controlled environment. Don’t make them wait for the real thing to see how much they know.

 

Did you know I can help you send simulated phishing emails to your employees? I can manage your program for you or I can provide consulting to help you determine knowledge gaps, plan your program, and set goals.

 

Book a complimentary discovery session today to learn more.

 

 Finally, looping back to the state of the data breach. UC San Diego Health says the breached data hasn’t been used yet… However, it should be noted that hackers often wait months or even years to use the stolen data. If you were a victim of this breach, you'll want to monitor your credit reports for at least two years. Honestly, in this day in age you should always been monitoring this.

Location: Lincoln, NE, USA

Comments

Post a Comment

Popular posts from this blog

Time is the longest distance between 2 points

Image
 "Time is the longest distance between two points."   These words by Tennessee Williams resonate deeply, considering the fragility of our memories and the challenges they pose in crucial moments. Imagine finding yourself on the witness stand, desperately grasping for recollections from the distant past. In this crucial moment, the true weight of time becomes evident.   The importance of detailed case notes cannot be overstated in legal proceedings. They are a vital link that connects our present selves with our past actions. Without them, our memories may falter, we have nothing to refresh our memory, and the quest for truth becomes an arduous struggle.   Case notes are the guardians of our actions, meticulously capturing what we did, discovered, what we found, and even what we didn't. They are the tangible records that safeguard the integrity of our recollections, preventing them from slipping away into the abyss of time.   Picture yourself in ...
Read more

How AI & Deepfakes lead to Sextortion

Image
Buckle up, and prepare yourself for the dark side of technological progress because AI is no exception to the rule. Imagine a world where scammers wield the power of AI to create mind-boggling deepfakes, exposing you in compromising situations. These sextortion scams have reached a whole new level of maliciousness. Let me shed some light on two prevalent ways these scams are executed: Picture this: someone close to you possesses naked pictures of you and shamelessly uses them to manipulate you into doing something you'd rather avoid. It's a terrifying thought, especially considering the perpetrator's familiarity with you. OR Picture receiving a random email that boldly claims to have a treasure trove of your intimate photos. Your disbelief drives you to click the link, only to realize you've fallen into a trap. As a result, your online accounts and even your beloved devices become vulnerable to compromise. I worked several sextortion cases in the FBI; some were your ave...
Read more

Here's what to do if you get catfished.

Image
  Got catfished? Do this. Break all contact. If you send them a message about ending it, they may pursue you more heavily vs. suddenly ending all contact. Report the profile on the social media platform Report them to the organization and dating site you made contact on If you lost money, report it to your local police department Report it to  https://ic3.gov
Read more