Categories
Technology

Phishing Attacks In The Real World

 

When was the last time you almost lost $23,000 to a phishing email? This nearly happened to one of our clients this week. Fortunately, this phishing attempt was spotted before the funds were transferred, however, there are a few good lessons to take away from this story and we want to educate you so you can protect your company from these sorts of attacks.

“Bob’s Company” received an email at Accounting@Bobscompany.com. The email was from Bob@Bobsscompany.com.

The email wrote:

“Good Morning,

Please pay the attached invoice in the amount of $23,000.

Thank you,

Bob”
For the accounting manager, this was business as usual. The boss regularly sends requests to the accounting department to have bills paid. At a glance, there is nothing wrong with the email but in this instance, the tone of the email was unusual which caused for further investigation.

This phishing attempt was sophisticated enough to the point where the scam artist even took the time to forge a signature on the attached invoice that matched Bob’s signature. Fortunately, the accounting manager double checked with the boss before processing the transaction. What’s scary is just how close the accounting manager came to processing the payment which is a mistake any one of us could make. If they weren’t paying attention or were just in a hurry, anything could have happened.

What’s important to take away is just how predictable we are. Most companies operate the same way with similar departmental and communication structures. If this wasn’t true then social engineering scams wouldn’t work. This was a close call for just one company and it isn’t hard to believe that whoever sent this email has sent thousands of them and likely got paid on a handful.

These types of attacks are becoming more prevalent than any other because they are cheap, easy and work on businesses of all sizes. “Bob’s Company” is a small business, not a behemoth company that you surmise a hacker would go after. Small businesses are easy targets from a hacker’s perspective because many of them do not invest in security and user training like large companies do.

Some actionable steps you can take to avoid falling prone to this type of attack are:

  1. Avoid using departmental emails like Accounting, Payroll or HR. This lets the hacker know that they are sending the phishing email to the right person making it more likely for the email to have the hackers desired effect.
  2. Use regularly changing keywords when sending requests for a transfer of funds. Change this keyword every month and instruct your staff never to transfer funds without the keyword in the email. This is a really low tech solution but it works. These attacks are intended to trip you up when you aren’t paying attention. The majority of attacks never involve someone spying on your network and learning your passwords and company secrets. Simple though it may be, this is an effective form of two-factor authentication.
  3. Use free spoof phishing tools like KnowBe4 to test your employees to see who is likely to click on phishing emails. Invest in those employees by training them on what to watch out for.

We are living in an ever-developing world where cybercrime is global, the barrier to entry is low and we humans are the weak link in the chain. Since cybercrime has such low risk and high reward these scams will become more frequent and sophisticated. Businesses will have to adapt to these changes and develop strategies to protect their resources. It is important to consult with your IT partner to learn how you can train your employees and set up security measures that will prevent this coming wave of cybercrime.

Categories
Technology

Stop Ransomware In It’s Tracks

Today we are going to review a brilliant tool that stops ransomware and other spam in its tracks. It’s called Sendio Opt-Inbox, and it’s more than just antivirus and spam filtering; it’s all of that combined with two-factor authentication, meaning that if anyone sends you an email, a human has to verify that they sent that email to you.

Sendio
Sendio Anti Ransomware Protection

This nifty tool is different because it completely filters out mass email attacks. Ransomware is a numbers game; large scale attacks use automated systems to send out thousands of emails, knowing that some portion of those emails will inevitably succeed. However, hackers and their automated systems do not account for any kind of authentication process.

When you sign up for Sendio, you are opting to re-route your mail through their system. This allows them to run a series of scans on the email and check the IP address to see if the email is coming from a trusted source. Before Sendio hands off the email to you, the sender will go through the “Sender Address Verification SAV” process or their email won’t be delivered. This means that someone actually has to tell Sendio “It’s okay, I’m a real person and I want to have a conversation with the addressee.” Sendio makes sure that you are only having meaningful conversations with people who you want to talk to.

What about automated emails, like newsletters, that you voluntarily subscribe to? Sendio takes this one step further: you can not only choose to trust certain newsletters, but also choose when these emails get sent to your inbox.

Is this new fancy widget expensive, or even worth the extra cost? The starting price is $34 per month, and the pricing changes depending on whether you have Sendio host the application for you, or if you host it on your own network. You can run a quick cost-benefit analysis to see if an application like Sendio would be cost effective for you and your organization. Go to the store and get a cheap stop watch, and click the stopwatch every time you sort through junk mail. Do this for a month, and you will see how much time you could save sorting through junk mail alone. Multiply this estimate by the number of employees in your company, and you can see that a product like Sendio is easily worth the price. Beyond the amount of sheer time saved, you can assume increased productivity, and thus an additional capacity to increase revenue. Furthermore, a product like Sendio could save you countless amounts of time, money, and data loss by preventing ransomware attacks.

It sounds great, but are there any downsides to this magical tool? Unfortunately, no tools on the market are 100% foolproof. Potentially, if you are subject to a highly targeted attack, the attacker could manually go through the verification process, assuming that Sendio hasn’t already flagged their domain or IP address for fraudulent behavior. However, with the high volume of fraudulent emails sent out by hackers every day, it seems improbable for hackers to find an effective way around this new gateway.

Ransomware has caused too many executives and management sleepless nights and it is time for a system that can help you take back your peace of mind. Talk to your IT partner about implementing Sendio across your network. Get you time back, become more efficient, and most importantly, get a few more hours of sleep!

Categories
Technology Training

Use Windows Defender in Windows 10 to Keep Your Computer Safe

Windows Defender is Microsoft’s security and threat detection software that is built into Windows 10. Windows Defender is a great tool that is rarely utilized and is completely free with the Windows 10 operating system. To use this tool you will need to go into your settings and make sure that Windows Defender is on and up to date.
Begin by navigating to the start menu on your desktop screen. Click on the settings button on the start menu and select “Update and Security” from the list of options under Windows Settings. Here you will find Windows Defender. Open Windows Defender and you will be able to see the status of your computer, your security history and you will be able to scan your computer for any infections. You will need to make sure that Windows Defender is turned on and all of the definitions are up to date. Once that is done, simply select “Full Scan” form the list of options and press the “Scan Now” button. This scan could take some time to finish so make sure that you start this scan when you do not need your computer for anything important.
Once this scan is done you will see a list of all malware that is hidden on your computer and you can make sure to delete it. If you find that you are having a problem with malware and Windows Defender is not able to resolve the issue then give eTop Technology a call! We’re here to help!

CW Portal