As part of a cyber security plan, every business should educate their employees about the risks of using IT tools to perform their job. With user security awareness training, employees are better able to recognize, avoid, and report potential threats that can compromise critical data and network systems. So what are they?
Phishing is when attackers attempt to trick users into doing ‘the wrong thing’, such as clicking a bad link that will download malware, or direct them to a dodgy website. Phishing email campaigns are on the rise and offer a very real threat to business.
There is some fantastic guidance on how to protect from Phishing at the National Cyber Security Centre.
Smishing (SMS phishing) is an activity which enables criminals to steal victims’ money or identity as a response to a text message. In common with both phishing, which uses email as an initial approach and vishing (which uses phone calls); smishing uses your mobile phone and manipulates innocent people into taking various actions which lead to being defrauded.
The above are just two of the many tools used by criminals to access your business data. To help mitigate the risks, the National Cyber Security Centre along with IT professionals have devised a scheme name Cyber Essentials to help prepare your business against attacks.
Cyber Essentials is a simple but effective, Government backed scheme that will help you to protect your organisation, whatever its size, against a whole range of the most common cyber attacks.
If you are interested in attaining Cyber Essentials accreditation for your business then please get in touch.