Healthcare Information Security: How To Protect Patients’ Data
Healthcare Information Security: How To Protect Patients' Data The healthcare sector is much like any other organization. However, the limited…Learn more
Phishing attacks are one of the most prevalent and dangerous types of cybercrime that organizations worldwide are currently facing. In 2020, phishing emails were a leading point of entry for ransomware – 75% of companies globally faced phishing attacks, and 74% of those in the US were successful.
While spam filters catch many phishing emails, newer and more sophisticated ones get through. If an employee clicks on a link to a malware-infected website, opens an attachment with a malicious payload, or divulges their login credentials, an attacker can access a corporate network undetected. To help protect your organization against phishing emails, your employees can use the new Phish Alert Button (PAB) on Outlook to report any suspicious or potentially dangerous emails.
The use of the Phish Alert Button will provide your security team with an early warning of possible phishing attacks or malicious emails to take effective action to prevent security or network compromise. This tool reinforces your organization’s training and security culture in a hands-on learning experience for your employees. Using the PAB, your employees will become a human firewall and act as your organization’s first line of defense against potential cyber threats.
The Phish Alert Button makes reporting suspicious emails easy- you can report any email as a phishing email with the click of a button. When viewing an email that you believe to be a phishing attempt, simply click the Phish Alert button, confirm the details, and then click okay. The email will be deleted from your inbox and forwarded to our IT team for analysis. The reported email will be in your Sent Items as a forwarded message and will be deleted from your inbox. If you report an email by mistake, you can retrieve it from deleted items/ trash.
The Phish Alert Button is available on mobile devices, Microsoft 365, and desktop clients.
Outlook mobile app (Android): To use the PAB on android:
Outlook mobile app (iOS): If you’re using an iOS, you can report an email with PAB by following these steps:
Desktop client: The Phish Alert Button may appear in one of two locations:
Microsoft 365: The PAB icon will appear in the drop-down menu of an open email. A sidebar prompt will ask you if you want to report the email as a phishing email. Click the Phish Alert button to report the email.
The first step in spotting a phishing email comes with understanding what a phishing email is. Unlike malware or other computer viruses, phishing emails are more subtle – the attacker may use social engineering techniques to make their email look genuine. They typically include a request to click on a link, open an attachment, or provide other sensitive information such as login credentials.
Here are five ways to spot phishing emails:
The most important rule for preventing phishing attacks is don’t click on a link, and don’t download attachments unless you’re positive you know the sender. Feel free to check with that sender before clicking on anything and verify all links included in the body of the email by hovering over the link to see what URL it actually goes to. Look for logos that feel a bit off, as well as misspellings or grammatical errors in emails from reputable institutions such as banks or government offices.
Phishing schemes continue to become more sophisticated, with targeted attacks (spear phishing) posing a threat to many businesses. Immediate reporting will help your company’s security team alert other employees and contain the threat before it causes any damage. From the CEO to the junior-most employee, each individual in the organization must share the responsibility to avoid becoming a victim of a phishing scam.
At Kraft Technology Group, we help organizations across Nashville and Middle Tennessee secure their businesses against cybersecurity threats, including phishing attacks, ransomware, malware, and viruses. Our comprehensive cybersecurity solutions include endpoint management, email security, firewall configuration management, business-grade antivirus, regular security assessments, data back up and encryption, and continuous cybersecurity monitoring, ensuring end-to-end protection. Contact us today to schedule a consultation and let us help secure your business.
Brian Gray, MCP, is the President at Kraft Technology Group, LLC (KTG), an affiliate of KraftCPAs PLLC. Within his role, Brian is responsible for all aspects of service delivery to our clients. Brian has a decade of experience working for managed service providers. He has worked with clients in a variety of industries, including financial services, accounting, legal, healthcare, manufacturing, and retail.
Fill in your information below:
Fill in your information below: