Avoid Phishing attacks
In phishing attacks, hackers send fake emails asking for sensitive information, such as bank details, or containing links to bad websites.
Ensure your staff don’t browse the web or check emails from an account with administrator privileges. This will significantly reduce the impact of successful phishing attacks.
Scan for malware and change passwords as soon as possible if you suspect a successful attack has occurred. Don’t punish staff if they get caught out as it discourages people from reporting in the future.
Check for obvious signs of phishing, like poor spelling and grammar, or low-quality versions of logos. Does the sender’s email address and links in the message look legitimate, or is it trying to mimic someone you know?