094 90 48200     Get SUPPORT

Aniar IT Services Blog

Aniar IT Services has been serving the Castlebar area since 2003, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Would Your Users be Tricked by Social Engineering?

Would Your Users be Tricked by Social Engineering?

The term social engineering may not seem nearly as intimidating as other cybersecurity terms like ransomware or denial of service. Don’t be deceived! Some of the biggest threats to your company’s data and network security use social engineering to manipulate targets into taking a specific action - like disclosing personal information that can be stolen and exploited.

Often overlooked by the media in favor of major data breach events, there are few types of social engineering hacks that have the capability to devastate a business.

  1. Vishing: Given the fact that the number of people who fall for phishing attacks and other email scams has declined significantly, it was only a matter of time before hackers found an alternative avenue to exploit their targets. After abandoning it a few years ago in favor to digital scams, vishing - a fraudulent voice call that seeks personal information - have once again returned as a favorite among hackers and thieves.
  2. HTTPS: SSL certificates used to ensure that a website was legitimate and secure enough to protect your personal information. Websites that have ‘https’ no longer signifies security, as hackers have begun using websites that give away SSL certificates for free and using them to lull victims into a false sense of security. To make sure a website is secure, you’ll want to look for indication of an extended validation SSL (EV-SSL) which are not offered for free! EV-SSLs are signified with a green bar.
  3. Website Copy-Cats: Scammers have become very skilled at making spoof websites that look and feel just like the authentic website but are actually littered with all typesof malware. For example, after the Equifax data loss event in June 2017, Equifax set up a website to help their clients who had their information compromised with the URL: equifaxsecurity2017.com. A spoof of that website, with the domain securityequifax2017.com, was so convincing - it even tricked Equifax themselves! A few things to keep an eye out for when trying to determine if a website is legitimate, include:
    1. Make sure the URL is correct.
    2. Avoid giving out information unless a site has an EV-SSL.
    3. Look for seals of trust from other IT security websites.
    4. Beware of misspellings, typos and broken English.
  4. Every Word Password Theft: There are a lot of hacking tools that will scan through databases - including every word in the dictionary. These tools significantly increase the likelihood that a password that includes an actual word will be cracked and exploited. The best practices are ones that mix numbers, letters and symbols that make no sense.

When it comes to digital threats, for every exploit or hack that is prevented, a few, more advanced ones are developed. The best way to keep your business, and it’s data, safe is to take proactive measures and execute safe internet practices all times - and that goes for your employees, as well! Would you like to learn more about how you can stay ahead of hackers? Call us at Aniar IT Services.

These Smartphones Make an Excellent Gift (Even To ...
Tip of the Week: Using Your Smartphone More Effect...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, 17 January 2018

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Tip of the Week Security Privacy Google Microsoft Technology Email Android How To Best Practices Business Computing Data Backup Hackers Managed IT Services Hardware Chrome Small Business User Tips VoIP Cloud Software Windows Backup Smartphones Spam Data Recovery Two-factor Authentication Computers Cybersecurity Collaboration Business Windows 10 Cloud Computing Communication Smartphone Bring Your Own Device Vulnerability Telephone Systems Office 365 Avoiding Downtime Saving Money Cybercrime Outsourced IT Mobile Device Management Data Security Managed IT services Artificial Intelligence Spam Blocking Data Data Storage Social Engineering Network Security Operating System Business Continuity Efficiency Browser Redundancy IT Management Innovation App Word Ransomware Communications OneNote Unsupported Software Passwords Malware Holiday Data loss Software Tips Multi-Factor Security Botnet IT Support Millennials Computer Care Windows 7 Online Shopping Microsoft Office Skype Alert IT Services Router Travel Workforce Patch Management Business Management Evernote Start Menu Website BYOD Solid State Drive Remote Monitoring Trending Settings BDR Phishing Downtime Keyboard Screen Mirroring Physical Security Audit Telecommuting Google Docs Flash Root Cause Analysis Charger Mobile Devices Law Enforcement Cast Remote Work HaaS Wireless Charging HBO Computer Fan Identity Theft Apps Google Apps The Internet of Things Network Government Outlook Gadgets FENG Comparison Credit Cards Workers Tools Specifications Recovery Frequently Asked Questions Employer-Employee Relationship Fraud Sync Meetings Google Drive Windows 10s Infrastructure Scam Upgrade Business Intelligence Excel Social Media Virtualization Amazon Facebook IT Plan Private Cloud Value Server Disaster Recovery Money Tip of the week Internet Amazon Web Services Wi-Fi Telephony Computer Public Cloud Voice over Internet Protocol Managed IT Cortana Work/Life Balance Update Windows Server 2008 5G Wireless Technology IBM Managed Service Provider Hacker Marketing CrashOverride Customer Relationship Management IP Address Customer Service WiFi Mobile Office Domains Hard Drives Public Speaking Hosted Solutions Lithium-ion battery Augmented Reality Tech Support Safety Productivity Emergency Budget Hiring/Firing Competition Fun Big Data Users Miscellaneous Wireless Password Search Windows 10 Presentation Password Manager