HAVE YOU BEEN HACKED?
Think it won’t be you? Think again…
It is a mistake to think that cyber crime will only impact large organisations. Small and Medium sized businesses (SMEs) are often victims as precautionary measures have not been either implemented or followed correctly.
Are you prepared?
Updating your firewalls and ensuring security patches are up to date is really important, but so is the awareness of your staff. Human error is a major reason cyber breaches happen, so mitigate the risk by raising their understanding of the issue and what to look out for.
It is preventable!
Around 80% of cyber crime can be prevented by implementing basic security protocols. Prevention is key and by maintaining secure systems and keeping up to date on what to look out for, you are much more likely to protect sensitive business information and your finances.
Want to find more information and staying Cyber Wise? Check out some useful links here.
Cyber criminals know that businesses increasingly rely on their digital systems, without which they would be critically damaged. For this reason, ransomware allows hackers to lock down and encrypt files on your systems.
Making their way onto systems via attachments or clicked links, the best protection is maintaining up to date networks and ensuring staff are aware of what to look out for.
Involving any contact that poses as someone or something you would recognise, whether another business, government agency or other body, a number of these lead to businesses losing sensitive data and money every day.
From fake invoice fraud where the scammer aims to deceive you into paying a fake invoice, through to emails and even phone calls that ask for bank details or other information, it is important to look out for the signs such as poor grammar, strange email address or phone number and use of language that does not seem like the individual they are claiming to be, especially if it is supposedly from someone you know.
Like phishing generally, emails appear to be frim a trusted source, but in spear phishing attempts targets are rarely ransom, and impersonates a known individual. An example which is relatively common is the CEO requesting the finance director to make a payment.
The familiarity between colleagues and the use of a named individual, often a superior, is what makes these attacks harder to spot and successful. If you have any doubt, whether due to writing style, email address or changes to the usual processes, double check before any payments are made or approved.
Cyber criminals can attempt to bring a business’s website or online services down by launching a Distributed Denial of Service (DDoS) attack.
This type of cyber attack can bring down websites for long periods of time, damaging income and reputation, whilst also potentially being part of a wider tactic to commit fraud or steal data. It requires strong IT protections which are updated regularly to best prevent this type of attack happening.
Often, the best way to access digital systems for a cyber-criminal is to trick an employee into freely granting access or handing them over.
From posing as a member of staff in person to a convincing phone call with someone claiming to work at the external IT, training up staff to ask questions, check ID and report suspicions can in the long run save a business a lot of time, money and protect their reputation.
Look out for:
Never automatically click on a link in an unexpected email or text.
Requests to move money
Why are you being asked to move the money? Are you sure it is legitimate? Be cautious
Always question uninvited approaches in case it’s a scam.