Phishing remains a leading cybersecurity threat as cybercriminals use increasingly sophisticated tactics to obtain private data by exploiting human behavior.
Posing as a known contact or trusted organization, phishing aims to trick users into providing personal information. Often misspellings, grammatical errors and requests that don’t quite make sense reveal a scam, but attempts are ever more clever and can be part of a coordinated attack.
Think before you click. If you are asked for personal data, client data or to transfer funds, consider the request worthy of investigation no matter how legitimate it may appear. Check the sender’s email address, hover over links to see their true web addresses and be observant of your browser’s URL bar to identify a fraudulent or redirected destination. Further prepare your staff and affiliates against phishing by engaging in firmwide Cybersecurity Awareness Training.