Is Your CEO Really Texting You?

CybersecurityArticle2
Written By Adam Evans, CISSP

How to Spot a Scam and Protect Your Business

In today’s fast-paced work environment, it’s not uncommon to receive messages and emails from colleagues and superiors requesting assistance or information. However, with the rise of cyber threats, it’s important to take a moment to pause and think before reacting to these messages, especially when they involve financial transactions or sensitive information.

Many of these attacks that are commonly seen fall into two categories – phishing and scams.

A phishing attack has an adversary attempting to gain sensitive information from the victim such as usernames, passwords, and even remote access.

A scam aims to get money from the victim. A good example many remember is the old tale of the foreign dignitary promising untold riches if you give them a short-term loan of a couple hundred bucks. Of course, when the scammer gets the money from you, they’ll vanish and keep their untold riches for themselves (now a couple hundred bucks richer thanks to their victims.) This is what we’re going to talk about today.

Have you ever received a text like this before?

This is an example of the start of a gift card scam. In this scam, the attacker sends an email or text message impersonating a high-level executive, asking the recipient to purchase gift cards or other items and provide the information to the attacker. The attacker promises to reimburse the recipient later, but this never happens.  

If you receive a message like this, it’s important to take a step back and assess the situation. Here are some tips to avoid falling for a phishing scam: 

Always Double Check Unusual Requests

If you receive a message requesting unusual or unexpected actions, especially those relating to money or sensitive information, take the time to verify it. Contact the sender through a different means of communication, such as a phone call, to confirm the legitimacy of the request. 

Don’t React Emotionally

Phishing scammers often use emotional tactics to get people to act before they have time to think. Don’t fall into this trap. Take the time to assess the situation calmly and logically. 

Get a Second Opinion

Ask a colleague or IT service provider to take a look at the message. Getting a second opinion can help you identify red flags that you may have missed and prevent you from making a costly mistake. 

In conclusion, it’s important to be vigilant when it comes to cybersecurity. Don’t let the urgency or emotion of a message cloud your judgment. Always take the time to assess the situation and verify any unusual requests. With proper training and awareness, you can protect yourself and your organization from the costly consequences of phishing scams.

Contact us for help protecting your business!

Adam Evans, CISSP

About Adam Evans, CISSP

Adam is a seasoned cybersecurity professional with more than a decade of experience in the MSP industry. He started his career as a helpdesk engineer and worked his way up through various technical roles to specialize in cybersecurity – specifically GRC, security architecture, and defensive operations. 

Adam is passionate about sharing his expertise and insights with the next generation of security professionals. He believes that by working together and sharing knowledge, we can make the world a safer and more secure place for everyone.

Connect with Adam on LinkedIn: https://www.linkedin.com/in/grcadame/

Previous

How Could Hackers Use AI?
Next

6 Ways to Prevent The Most Common Source of Data Breaches