Phishing Best Practices

Did you know 91% of all data breaches begin with a phishing email?

Phished and spoofed email messages are designed to trick you into clicking on a malicious link or attachment or revealing private information and passwords.
The messages appear to be from known senders. Senders can spoof their email address to trick you into thinking the email was sent from someone you know or a brand or vendor you commonly work with.
Phishing emails often bypass the spam filter because the body of the message does not contain malicious software and the sending address is a valid email address.

Phishing Best Practices

NEVER

Enter your email or any password when directed by an email link or attachment. Be cautious of document sharing links such as:

  • OneDrive
  • Google Drive
  • Dropbox

You should never need to enter your email password to access data that is shared with you. This is the most common way for a hacker to get access to your mailbox. Always VERIFY the document shared is valid by phone not by email.

 

NEVER

Click on the links or attachments if the email is not requested or explicitly expected regardless of the sender. Always VERIFY BY PHONE, not by email. The hacker is on the other side of your reply.

 

NEVER

Click on links or attachments from emails with scare tactics or statements of urgency.

 

NEVER

Click on links or attachments from ANY vendor or prompt for a software update. Organizations commonly used include:

  • Fedex
  • UPS
  • Airlines
  • Banks
  • Adobe
  • Microsoft

Go to a browser and manually navigate to the desired website, log in and confirm the information. For shipping tracking, go directly to the site and copy/paste the tracking number for confirmation.

 

NEVER

Click on a link, download an attachment or enter your password on alert emails from soware providers, such as Microsoft, Dell or Anti-Virus providers.

They will NOT notify you of an incident by email. (For ex: Outlook /Email warnings, Windows update warnings, Virus warnings, etc..)

 

NEVER

Accept social media invitations from the email link (Facebook, LinkedIn,etc). Go directly to the site and accept the invitation.

 

NEVER

Trust the displayed senders name, even if it is from a colleague. Be aware of clever schemes that include links, attachments, or if they ask for money or confidential information. Always VERIFY by phone, not by email.

 

Contact Dynamic Quest to learn more about the best cybersecurity solutions for your organization to implement to protect your organization from damaging phishing schemes.


Managed Services
Managed IT Managed Service Desk Managed Cloud Services Managed Security Services Managed Backup and Disaster Recovery VOIP Phone Systems
Professional Services Page
IT Projects Migration Services Office 365 Development Business Systems Support Azure Cloud Solutions Anything as a Service (XAAS) Carrier Services
Archives by Subject

Forty-three percent of attacks are aimed at SMBs, but only 14% are prepared to defend themselves (Accenture).

40% of businesses will incorporate the anywhere operations model to accommodate the physical and digital experiences of both customers and employees (Techvera).

The internal team was energized. With the Level 1 work off its plate, the team turned its attention to the work that fueled company growth and gave them job satisfaction.

Large Healthcare Company

The average cost of a data breach in the United States is $8.64 million, which is the highest in the world, while the most expensive sector for data breach costs is the healthcare industry, with an average of $7.13 million (IBM).

The cost of cybercrime is predicted to hit $10.5 trillion by 2025, according to the latest version of the Cisco/Cybersecurity Ventures “2022 Cybersecurity Almanac.”.

It takes an average of 287 days for security teams to identify and contain a data breach, according to the “Cost of a Data Breach 2021” report released by IBM and Ponemon Institute.

The three sectors with the biggest spending on cybersecurity are banking, manufacturing, and the central/federal government, accounting for 30% of overall spending (IDC).

More than 33 billion records will be stolen by cybercriminals by 2023, an increase of 175% from 2018.

We did a proof of concept that met every requirement that our customer might have. In fact, we saw a substantial improvement.

Steve Fout, VP Sales, Godlan, Inc

We did everything that we needed to do, financially speaking. We got our invoices out to customers, we deposited checks, all the things we needed to do to keep our business running, and our customers had no idea about the tragedy. It didn’t impact them at all.

Denise Koontz, CFO, Got You Floored

“We believe our success is due to the strength of our team, the breadth of our services, our flexibility in responding to clients, and our focus on strategic support.”

Dynamic Quest

Our Vendors