4 Simple ways to help defend against Phishing Scams

By Emma Crawford

4 ways to defend against Phishing Scams

Phishing attacks are continuously evolving and are a real problem for businesses like yours – here are a few simple ways you can defend against this common attack…

In 2016, 91% of cyber-attacks and the resulting data breach began with a spear phishing email*.

Phishing emails are particularly dangerous as they have the potential to bypass many of the cyber-security defences you may have in place and can wreak havoc on your sensitive data and resources.

Cybercriminals utilise a number of social engineering techniques to lure users into clicking on links, opening attachments, or disclosing sensitive information. This can include impersonating well-known and trusted brands or individuals in emails and creating genuine looking websites.

Cybercriminals are also sending personalised attacks using private information about users – making it even harder to spot. Phishing attacks can come in many forms, from fake confirmation emails for online purchases, delivery notifications, legal notices and security updates, to name a few.

So, how can you avoid phishing attacks?

1. Learn to identify suspect phishing emails and be vigilant

There a number of tricks that attackers will use that can help you identify an attack. These including duplicating the image of another company, using the name of another company or an individual and using websites that are visually similar to another company. Attackers will also use scare tactics like warnings about losing an account or fraud notices.

2. Train your staff

If you have any doubt that your employees might not easily recognise a phishing scam, it’s vital that you introduce awareness training as soon as possible. Attackers will exploit your unsuspecting and trusting staff to gain access to your systems and data.

3. Never click on links directing you to your bank’s website

Attackers pray on the trust you might have with your own bank to encourage you to click on a link. If you do, you could be directed you to a fraudulent website. If in doubt, call you bank directly for clarification.

4. Look out for typos

Phishing attacks are infamous for having typos. If you receive an email from a well-known company that is poorly written, there’s a good chance that it’s not from who you think it is.

Cyber-security is and should always be a top priority for all businesses. We help businesses every day secure their systems and data from attacks so if you’re unsure of where to start, let us know.


*PHISHME 2016 Phishing Susceptibility and Resilience Report