As we hear, incessantly and with escalating monotony, online security is a major concern. Almost daily there’s a report in the news of a serious hacking at a prominent retailer, financial institution, hospital, or of mom-and-pop front porch victims being taken to the cleaners because they just could not leave that suspicious email unopened. Sadly, many of these expensive and often dangerous computer hackings could’ve been avoided with just a bit of logic and adult behavior. I know, I ask too much.
Be that as it may, Reboot Digital Marketing Agency has done a bit of analyzing to come up with some rather frown-promoting stats on the subject, along with a few possible solutions. Here is what these noble researchers have observed.
A staggering 67% of all targeted attacks are carried out against lower-level employees such as customer service representatives. Employees in public relations, marketing and human resource positions make up nearly 20% of all phishing and malware attacks. Those in management and upper-management positions were found to represent 27% of the most targeted employees within an organization. Interestingly, pharmaceutical drug manufacturers are the most highly targeted, with 71 attacks per company on average over a three-month period.
According to data-protection company Sophos, 70% of internet users use the same password for almost all the web services they use. It therefore comes as no surprise that phishing is such a popular and effective tool for cyber-criminals against their victims, allowing them to assume control of all accounts, whether it be social media or online banking.
Phishing is a type of cyber-crime that involves deceiving the user into thinking they are communicating with a legitimate company, to steal confidential information and passwords. By its nature, phishing and malware attacks work by impersonating someone the recipient knows and trusts.
To explore the subject further, Reboot Digital Marketing Agency analyzed the latest findings found within the report ‘Protecting the People: A quarterly analysis of highly targeted cyber attacks’ by ProofPoint to gain a better understanding of who is most at risk of cyber-attacks globally. Here are some findings:
- Predictably, as a group of individuals within departments ‘Lower-level employees’, such as customer service representatives, were subject to 67% of highly targeted attacks, with those in marketing, public relations and human resources accounting for nearly 20% of all phishing and malware attacks.
- Given that upper management accounts for a smaller proportion of businesses, it suggests that those in C-level positions, directors and department managers may be targeted disproportionately more often.
- Contributors were found to represent 40% of the most targeted employees within an organization. Thereafter management (27%), upper management’ (27%), and executive employee’s make up 6% of the most highly targeted emails.
- Considering which industries are targeted the most by email fraud, pharmaceutical drug manufacturers came out on top with 71 highly targeted attacks per company over a period of three months, as per the findings of the report, on average. Closely followed by construction with 61 attacks per company and thereafter, real estate with an average of 54 attacks per organization.
Reboot Digital Marketing Agency has gathered five top tips for avoiding malware and phishing scams when at work:
- Know what to look for. Pay close attention to attachments, advertisements and pop-up alerts, ensuring you only open what you trust. Train users to spot malicious emails and websites by knowing what to look out for.
- Avoid unsolicited links and attachments. Most commonly, you should know the sender of an email and trust the source it is coming from. If unsure, go with the assumption that it is best to avoid opening emails from an unknown source/sender altogether. And although a lot of companies employ malware scanning features, you shouldn’t be solely reliant on this.
- Turn off email HTML. Adding HTML can sometimes automatically run malware scripts within an email once it has been opened. For this reason, you may choose to disable it, lowering the risk of an attack.
- Scan external drives. Many USB and external hard-drives can hold malware and spread across the workplace onto other computers. To be extra vigilant, it is recommended that you scan all external devices with anti-virus software each time you connect an external portal to a computer.
- Regularly change your password. Though this may seem obvious, it is easy to forget to regularly update your passwords or be reluctant to do so in fear of forgetting them. However, for security purposes it is good practice to change your passwords every 90 days.
This kind of echoes back to the philosophical solution offered by a certain politician for eliminating recreational drug abuse: just say no! In this case, just say no to suspicious email and other questionable cyber offerings. Works for me. Should you need further enlightenment, illuminations, and even greater cyber-cosmic wisdom, pay a visit to Reboot Digital Marketing Agency.