Catch a Phish and Score Limited Edition Ever Nimble Merch!
Our Gone Phishing initiative has launched, and you’ve got the chance to secure one of our epic and very on theme bucket hats – all you need to do is catch a phish(ing email) and send it our way! In this blog we’ll cover what these online attacks are, why it’s important to build your cyber awareness, and tips to help you spot one of these threats (and score some fresh Ever Nimble merch).
What is a phishing email?
With over 3 billion phishing emails sent a day, it’s likely some are making their way into your inbox. Hackers send fraudulent emails impersonating legitimate businesses, aiming to trick recipients into believing the communication is genuine to capture sensitive data, such as passwords or financial information.
These emails are also a leading attack vector, which means they can be used to launch cyber attacks if the recipient clicks on malicious links or attachments. Attacks commonly launched through this method include ransomware, malware, and data breaches.
Why is cyber security awareness important?
With 90% of cyber attacks made possible by human error, building your cyber security awareness has never been more important. This should include staying up to date with common threats (such as phishing) and best practices to implement. Successful cyber attacks have the potential to cause financial loss, downtime, and reputational damage, so this knowledge is critical for businesses to build their defences and significantly reduce their risk of becoming a victim. If you’d like to make this a priority, we can help with Cyber Awareness Training here.
So, how can you spot a phishing email?
If you’re not sure how to identify a phish, don’t stress! We’ve put together some tips below. If you suspect an email isn’t legitimate, check each of these steps before clicking links or providing sensitive information.
1) Check the email address.
Legitimate emails will always be sent from a verified domain, such as connect@evernimble.com.
2) Review branding, spelling, and grammar.
Inconsistent branding or poor spelling and grammar can indicate that an email isn’t genuine.
3) Hover over links to preview their destination.
If you’re still unsure after checking the link preview, don’t click it! Links should also start with “https://”
4) Contact the company.
If you’ve checked all the above and still can’t identify whether the email is genuine, get in touch with the company who appears to have sent it. This should be done with contact details from the company’s website.
Caught a phish?
If you catch a phish using these tips, simply forward it to us to secure your new bucket hat!
In the meantime, if you’d like to keep building your cyber awareness you can read more of our blog posts here or learn how our Cyber Awareness Training service can support you here.
*This is for existing clients only. Want to be an Ever Nimble client? Get in touch now!
