Social Engineering and Phishing

Social engineering is a relatively new phenomenon. It is the art of manipulating people and businesses so that they willingly provide their personal and confidential information. Within this article we will be focusing on Phishing which is a form of social engineering

Phishing is a cybercrime in which a target or targets are contacted by email, telephone or text message by someone who poses as a legitimate institution to lure individuals into providing sensitive data such as personally identifiable information, banking and credit card details, and passwords. The information is then used to access important accounts and can result in identity theft and financial loss.

Worryingly phishing is a practise which many many people, even those who believe they are security conscious, will fall for. An example of this can be when a business emails advising you of worrying activity on your account (common nowadays). The email which is provided appears genuine enough, but in reality it is a phishing email, By entering into the site and confirming details you have provided the criminal the data which they need.

We have provided an overview of things to look out for in respect to Social Engineering, it can be found via the website

We have provided an overview of things to look out for in respect to Social Engineering, it can be found via the website

Tips for Better Cyber Security

  • Avoid giving your email address out online.

  • Never open an attachment unless you are expecting it.

  • Check who is sending you email communication.

  • Never respond. If unsure, report the message as ‘spam’ to your service provider, and delete it!

  • Only click links from trusted senders.

  • Check for spelling, grammar and syntax. Most malware, phishing scams or spam originate from foreign countries so may contain some very obvious errors.

  • A reputable company or organisation will never use an email to request personal information.

  • Use strong passwords and keep them secret. It is also a good idea to change them on a regular basis. Don't use the same password for multiple accounts.

  • Make sure that your firm regularly reviews it’s cyber security policies, or if it does not have one then to implement one straight away.

#ProfessionalIndemnity #SmallBusiness #Insurance #RiskManagement #ColneRiskAdvisory

Featured Posts
Recent Posts
Search By Tags
No tags yet.
Follow Us
  • Facebook Basic Square
  • Twitter Basic Square
  • Google+ Basic Square