How can I protect my email from malicious attack?
Many IT departments or IT companies will say “you need xyz product to protect you from 123” but the vast majority of cyber attacks are the result of a phishing campaign against the company. No matter what email service you use (Office 365, Gmail or another); what email filters and rules you employ, you will still receive dangerous emails which contain malicious attachments or links.
While it is recommended to use products to help reduce the business exposure to these malicious attachments or links, there is one key area that most businesses are overlooking.
End User training according to research can have a positive impact on the security of the business. The problem though is that businesses just don’t do any or enough training to help educate Users to spot malicious attachments or links. The saying “curiosity killed the cat” could be re-worded to “curiosity killed the business”!
Social engineered attacks like the ones asking for bank transfers or changing of bank details are almost impossible to detect using technology. But by training Users to question the content of emails and employing other controls to independently verify any requests can help to protect the business.
As part of GDPR all Users that have access to sensitive data or bank details should have regular training. By regular it shouldn’t be an out of date PowerPoint presentation given each year. If your business doesn’t prioritise End User training, you are seriously increasing the risk to your business being compromised.
Businesses of all sizes are being targeted, according to the National Cyber Security Centre (NCSC), small and medium sized businesses may have more to lose than larger organisations, because they can be costly and threaten their survival.
Cyber Security doesn’t have to be overwhelming, expensive or complicated. Amshire can help you understand the risks relating to your business.
Contact us now to discuss your business