Amplix logo
Resources Insights Be the One That Got Away: Protect Yourself from Phishin…

Be the One That Got Away: Protect Yourself from Phishing and Smishing

Anyone who is or loves a fisherman knows about “the one that got away”. It is the story about the big fish they hooked and fought, but never quite landed.

In the world of cybersecurity, the fishermen are bad actors and hackers that lure unwitting users to click malicious links, give them credentials, and otherwise open the door for them to access the corporate IT network. If you don’t want your company to be the stuffed trophy fish hanging on the wall of some hacker’s living room, you’ll want to take these steps, and make sure your company’s employees do too!

  • NEVER click a link or open a file in an email that you are not 100% sure is legitimate or you are not expecting. If something does not look right, then it is not right.
  • Random texts or emails from banks, service providers, etc noting you may have been compromised and to click a link to sign in order to address the validity. If you ever receive these, call the institution or go directly to the website via a browser to log in – never by using the link or phone number given in the email or text. Go directly to the source.
  • Hover over links before clicking. You’ll be able to see the URL it will send you to. If it’s a weird URL or subdomain, don’t click. For example, a link to Amplix would be Amplix.com/whatever. It would never be Amplix.whatever.com
  • Expect to get emails or texts that look like they are coming from an executive.  You can usually confirm very easily on the actual “from” address by clicking forward, you will see the email address that really sent it (obviously delete it at that point). The bottom line, is never be afraid to pick up the phone and confirm the validity of something if you are unsure with the actual executive or reach out to your supervisor.
  • The same goes for getting inquiries from clients – make sure you know who you are speaking with.  Never provide any information unless you are certain you know who you are speaking with and they are authorized on the client side. If a caller is asking for credentials or personal information, hang up and call the phone number you have for them or validate by sending an email for confirmation of who you are talking to. Not following this process is how Caesars Casino and MGM were breached last year.
  • Research will be done on all of us, so you are likely to also be targeted via personal emails, social media, Linkedin, etc. Be aware that they know something about you and don’t let that lower your defenses.
  • Always report spam or phishing emails.

Amplix can help your company protect its network and users with education, training, and defensive cybersecurity solutions. Don’t leave it to chance, let’s build a plan today!

Find out how Amplix can increase your Return on IT