Cyberattacks Against Small Businesses

Jun 01, 2020 (0) comment

Businee Insurance

Cyberattacks against small businesses have become more aggressive since the beginning of the COVID-19 outbreak and are increasingly difficult to detect. The following real-world examples will help guide you in how to identify an attack and avoid becoming a victim.


Phishing Scams

Phishing is a type of social engineering scam that attempts to fraudulently obtain sensitive information using email.

What does this attack look like?

An email appears to be coming from someone you typically do business with. Although it seems legitimate, you need to be extremely vigilant. If the message format is different in any way or includes red flags like poor grammar, syntax errors, broken links, etc., this could be an indicator of a phishing email. It may be written with a sense of urgency, or include a warning that your “account will be closed” or your “access will be limited.” These are both telltale signs of a targeted scam.

What should you do?

Find the contact’s direct phone number via their website to verify email information, especially if it involves a financial transaction or confidential data. Do not use the phone number in the email, as it may also be fraudulent.

Smishing Scams

Smishing is a type of phishing attack using texting via short message services (SMS) on cell phones.

What does this attack look like?

You’ll receive a call or text from someone claiming they are support technicians from a company such as Microsoft or Apple, offering to assist with a technical issue you are having. They will attempt to coax you into visiting a website so they “can take care of the problem for you.” You’ll be sent a link to download a file, which will contain malware such as a Trojan or ransomware. They may also ask you to visit a website that is designed to gain access to your computer or device using online collaboration tools similar to WebEx, Microsoft Teams, Slack, Zoom or GoToMeeting.

What should you do?

Hang up and call your company’s help desk number. Only allow help desk employees to assist with your computer or mobile device problem. Call AmeriAgency for cyber insurance quote at 888-851-5572.


Vishing Scams

Vishing is another type of phishing attack that is carried out by phone and often targets users of Voice over Internet Protocol (VoIP) services like Skype.

What does this attack look like?

An email will appear in your inbox that may seem real, with company logos, links and branding, and suggests you click a link to approve something such as a financial transaction. The link will then take you to a page that appears to be the company’s website. You’ll be asked to enter your credentials; this information will be harvested and used by the attacker to gain access to your account or your company’s system.

What should you do?

If the email looks suspicious in any way, even if the email comes from someone you know, be sure to:

  • Contact your IT/security department, if you have one
  • Contact the sender via phone call to confirm that he or she sent the message
  • Avoid clicking links or attachments appearing in the email

Comment (0)

Categories

Categories

Tags