Imagine a scenario in which an employee clicks a link in an e-mail and costs his or her employer $600,000. Unfortunately, this situation does not require one’s imagination. This is exactly what happened in Riviera Beach, Florida, when an employee clicked a link in an e-mail, and the government was crippled by a ransomware attack. The city had to pay all of that money just to gain access to its own files.
Who is to blame when these things happen? One cybersecurity expert believes that the onus of responsibility rests squarely on employers that fail to conduct adequate preventive training.
Such incidents are on the rise. I spoke with cybersecurity expert Jess Coburn, President and Founder of Applied Innovations, who explained that “hackers are constantly changing their techniques and tactics”; he provided the following methods that contemporary hackers use to gain access to a computer or personal information:
An e-mail from Amazon that says your new laptop couldn’t be delivered, except you didn’t order a laptop.
- An e-mail from Office 365 that says your password is expiring in 48 hours and you need to log in and change it immediately or lose access to e-mail.
- An e-mail from the Internal Revenue Service that says your tax refund was just deposited in your bank account at Washington Mutual, but you don’t have an account at Washington Mutual.
- An e-mail from a known contact, but the e-mail address is wrong. Always check the sender’s e-mail address, and when you click “reply,” look at the e-mail address it’s going to. Read more here…
Source: HR Daily Advisor