Close dialog
 
Person using a smartphone

Arm your employees against phishing

Read these simple tips to protect your business from cybercrime

 

As a business, it can be challenging to keep your cybersecurity systems up to date as fraudsters and thieves quickly adapt and exploit new protection methods.

Of the many malicious attempts, phishing is one of the most dangerous and most common threats, since it preys on human error.

It involves a cyber-criminal sending an automated email or message to a large number of recipients, disguised as:

  • a trusted person or institution 
  • a colleague asking for sensitive information such as bank account number, ID card number and passwords
  • a seemingly trustworthy link

After clicking the link, the cyber-criminal can search for information and use it to steal money or blackmail the individual.

‘Spear Fishing’ messages are more targeted and customised, with the cyber-criminal pretending to be a close relative, friend or partner. These are usually delivered via email, social media or dating sites.

As remote working increases, more and more of us are using our personal mobiles for work, which has led to a rise in phishing attacks. In fact, the number of mobile phishing attacks has increased by 37% from Q4 2019 to Q1 2020

That’s why it’s important to educate your employees about the possible threats so they can recognise an attack when it happens.

There are five common types of mobile phishing attacks:

  1. URL padding: when the real destination of the website is hidden by hyphens, leaving only the seemingly legitimate site visible.
Tips to protect your business from cybercrime
  1. Tiny URLs are shortened links that lead the user to malicious content. It’s also possible to send these via SMS.
Tips to protect your business from cybercrime
  1. Screen overlays replicate the login page of a legitimate mobile app in order to obtain a person’s username and password. This method is very effective and usually targets mobile banking and payment apps.
Tips to protect your business from cybercrime
  1. Mobile verification can help the attacker verify that the target is a mobile device and send specific attacks to it.
Tips to protect your business from cybercrime
  1. 'SMS spoofing' tricks the user to click a link by disguising themselves as a system update notification. When the user clicks on it, it intercepts emails, sensitive data or web traffic to and from the device.
Tips to protect your business from cybercrime

Test your ability to spot phishing with this real vs. fake mobile phishing test by Lookout.

Test your cyber-resilience with the UK National Cyber Security Centre’s ‘exercise in a box’ toolkit. This helps small and medium businesses carry out tests in preparation for a possible cyber-attack.

To learn more about how to keep your business protected from cyber-attacks, take a look at our article Three essentials of cyber security to keep your business protected or speak to one of our business advisors.

This article was created by Hank Schless, Senior Product Marketing Manager at Lookout, in partnership with Vodafone Business.

Sources

https://cybersecurity.att.com/blogs/security-essentials/mobile-phishing
https://threatpost.com/enterprise-mobile-phishing-pandemic/156236/

For more support you can also speak to one of our Business Advisers by phone or web chat. Wondering what you can ask? Our team can help with a range of digital topics

Related articles

Social Facebook Footer

Social Facebook Footer

Facebook

Social Twitter Footer

Social Twitter Footer

Twitter

Social Linkedin Footer

Social Linkedin Footer

Linkedin

Social YouTube Footer

Social YouTube Footer

YouTube

Social Instagram Footer

Social Instagram Footer

Instagram