By Jason Olson
In today’s COVID world, it’s difficult to find many certainties. But one thing that has stayed the same throughout the pandemic is the continued threat posed by phishing scams.
Many organizations have found a way to adapt to a remote work environment because of the pandemic, and with this new remote environment comes an increase in cyberattacks and employees falling victim to phishing attacks because they can’t readily walk next door to management to verify an email purportedly from them.
Examples of Phishing Attacks
By now, many, if not almost all of us, have received at least one of the following examples of nefarious emails:
- Receipt of an email with a resume attached for a position that doesn’t exist.
- An email that appears to be from a customer or vendor your organization works with, however the domain has been spoofed by changing a character in the email address.
- An email that appears to be from a customer or vendor your organization works with and the domain has NOT been spoofed, but you become aware of a customer’s or vendor’s mailbox being compromised.
- A Windows Error Report email indicating unusual sign-in activity.
- An email from Microsoft Outlook regarding a password being expired with a lookalike domain.
- Account-related or order-related emails from Amazon, Netflix or other popular organizations individuals personally use or subscribe to.
Read entire article at EideBailly: https://www.eidebailly.com/insights/articles/2021/1/whats-in-your-email-how-a-phishing-scam-can-impact-your-organization