Dangerous and unsolicited "Phishing" emails are constantly circulating the cyber world and many are falling victims to these increasingly sophisticated attacks. Any sort of data or security breach can be extremely costly to your business and no organisation is too small to attack for these criminals. It is your responsibility to make sure that your staff are briefed adequately to minimise any vulnerability.
These emails often use “spoofing” to mimic legitimate sources (i.e. DPD, FedEx, County Court, Domain Renewal Services, Apple, Microsoft, an airline, mobile service provider etc.) and they usually invite you to click on a link, view or download an attachment/file (usually malware in disguise).
These attackers are typically trying to infect your computer with malware in order to steal your personal information, gain control of your data or system, or hold your data hostage until a specified ransom is paid (Ransomware).
Ransomware
This is when cyber criminals use malicious software to remotely lock files on computer and demand you make payment to restore access to them. Payment demands usually show up as a notification on your screen. Also be careful of anyone demanding ransom and claiming to have unsavoury information about you.
The key things to look out for are:
- Unexpected emails - i.e demands to renew your domain name from a registrar you didn't sign up with
- The email address looks right, but not quite e.g. micosoft.com (where is the ’r’?)
- The sender’s address looks out of the ordinary, for example if it doesn’t match the sender’s name.
- Not addressing you by name.
- Pressing you for urgent action.
- Pressure to follow a link, download software or enter a username and password.
- Poor spelling/grammar
Although
Duvera Media continues to take extra security measures to ensure that these emails don't make it through in the first place, there may be some cases where you still receive them.
How to deal with such emails:
- Be vigilant and hyper-sceptical – it is always better to err on the side of caution
- DO NOT click on ANY links within a suspicious email – no matter how legitimate the link may seem
- Do not download files, invoices, images, .zip files or attachments you are not expecting to receive
- Do not respond to suspicious emails in ANY manner (even if you feel the strong urge to tell them off or let them know that you are on to them).
- DELETE the email immediately from your inbox and trash folder completely.
- Do not forward such emails on to anyone unless EXPLICITLY requested by someone in authority
Remember, you will never be asked by a legitimate entity to provide any sensitive data (DOB, bank account details, passwords, bank card details etc.) via email unless you've had verified recent, prior contact/discussion.
These attacks are becoming more and more sophisticated so it is highly important to be at alert. If you are ever in doubt or want to verify an email that claims to be from Duvera Media, feel free to get in touch with us by composing a new email.