Cyber criminals are phishing for you – don’t take the bait

Top cyber security expert, Matt Horan, director of C3IA Solutions, is warning about the dangers of so-called ‘phishing’ emails after a number of businesses were recently targeted.

Top cyber security expert, Matt Horan, director of C3IA Solutions, is warning about the dangers of so-called ‘phishing’ emails after a number of businesses were recently targeted.

A top cyber security expert is warning about the dangers of so-called ‘phishing’ emails after a number of businesses were recently targeted.

Matt Horan, director of C3IA Solutions in Poole, Dorset, said his staff have seen an increasing number of companies fall foul of the scams.

Hackers purporting to be from government departments, recognisable businesses or other institutions email individuals encouraging them to click on a link.

Clicking on the link enables fraudsters to steal money, harvest personal details, gain company intelligence and disable systems.

Matt Horan, whose company is one of only 14 in the country certified by the government’s new National Cyber Security Centre (NCSC), said: “This is a real security issue for businesses.

“So often it is the staff who are the weak link in any digital security set-up. They do nothing intentional but are not aware of the tricks that fraudsters use.

“Spam filters are easily bypassed by the crooks and just one click can lead to all sorts of problems; loss of data or money, infection of systems and possible malfunctions.

“If an email looks like it is from a genuine source then staff are far more likely to click on the link.

“Increasingly we are being brought in to companies to train their staff on how to recognise the warning signs.

“A bit of knowledge can go a long way and prevent real difficulties for businesses.”

C3IA’s top tips to combat fraudulent phishing

 

Phishing Top Tips – How to spot them:

 

  1. When an email arrives is it expected? If not then check the following:

 

  1. Email address displayed – does is look like someone you know/recognise, is it their usual address or is there a minor spelling mistake?

 

  1. Embedded links (URLs and Hyperlinks) in the email body – hover your mouse over it and see what the link says (if it is a phishing attack there is a good chance the link will be different from that displayed).

 

  1. Is the email threatening in anyway? Stating that something needs to be done immediately, or that you will be locked out of an account if you do not click on a link?

 

  1. Does the email have bad spelling, grammar etc?

 

  1. The message appears to be from a HMG agency (such as HMRC) telling you that you owe money, or need to enter personal information (DOB, Address, Account details).

 

  1. The suspicious email has a generalised salutation rather than your name (Dear Customer, My dear friend).

 

  1. If it looks like a legitimate email, but you are still not sure then call the sender (checking that the number you’re calling is legitimate and not from the suspicious email).

Here follow some examples of ‘phishing’ emails.

phishing1

speed-phishing

 

phishing3

phishing02