We understand that everyone is busy trying to close out work before the holidays and it is easy to rush through things, but we urge you to remain on the look out for any suspicious activity. Below is a list of the most common attacks you may encounter, how to spot them and how to handle them.
“Phishing” is the most common type of cyber-attack. Phishing attacks can take many forms, but they all share a common goal – getting you to share sensitive information such as login credentials, credit card information, or bank account details.
Outlined below are a few different types of phishing attacks to watch out for:
Whaling is a type of scam aimed at getting an employee to transfer money or send sensitive information to a hacker acting as a trusted source via email. Whaling is extremely easy to fall for and can result in significant financial losses.
These e-mails can be difficult to catch because they appear to be harmless, and have a normal, friendly tone and no links or attachments. They will appear to come from a high-level official at the company, typically the CEO or CFO, and often ask you to disclose sensitive information or initiate a wire transfer.
A few things to watch out for in a typical whaling attempt:
Doppelganger: Whalers may utilize fake e-mail domains that look similar to your domain.
A hurried tone: Whalers will often ask you to send money immediately, stating that they are busy or in a meeting, and can’t do it themselves.
E-mail only: Since whaling relies on impersonating an employee via a fake, yet similar email address, they will ask you not to call with questions and only reply through e-mail.
Ransomware is increasingly being used by hackers to extort money from companies. It is a type of malicious software that takes over your computer and prevents you from accessing files until you pay a ransom.
If your computer is infected with ransomware, you will typically be locked out of all programs and a “ransom screen” will appear. In the unfortunate event that you click a link or attachment that you suspect is malware or ransomware, please notify IT immediately.
Although we maintain controls to help protect your networks and computers from these types of attacks, with the quickly changing attack scenarios we rely on you to be our first line of defence.
To avoid these attacks, please observe the following email best practices:
Remember, nobody from should ever request personal information, usernames, passwords, or money from you via email.
We appreciate you helping to keep your network, and people, safe from these threats during this holiday season.
If you have any questions or concerns, please contact us on 1300 732 823 and we will assist in any way we can.
Contact us