It is important to be wary of clicking on emails, texts and social media messages from people you don’t know. This raises the risk of us and our organisations falling victim to a ‘phishing attack’.
It is also important not to transfer money or sensitive information solely on the basis of an email , social media, text, postal letter or phone instruction. Instead we can put an extra step in the process and check with an alternative method such as from the legitimate website, visiting the offices or person, calling them if they emailed.
We would never respond by the same means the instruction was given – this would be simply corresponding with the attacker if that were to be the case. Of course they will tell us everything is fine!
Take a breath and put an extra step in the process. Stop. Verify who the person is by an alternative and trusted means before proceeding.
This may further include supplier invoices. Verify the invoice is from the party you know and that their bank account details are the same. Any discrepencies? Again, double check via a different means and put an extra step in the process. This is also known as a phishing or spearphishing attack and can result in money or information that could lead to money being transferred out of your or your organisation’s account.
Watch our video here on phishing:
Here are some advertisers* who are providers of phishing prevention and mitigation services:
If you have product or service recommendations, would like to become an approved supplier or simply advertise, please contact us.
*Please note CSNs cannot take any responsibility for advertised products and services. For a list of approved suppliers and terms if you cannot see what you need here, please contact us.