Menu
  • IT Audits
    • IT Insurance Program
  • Managed IT Services
    • Request an IT Audit
    • Service Plans
  • CyberSecurity
    • Security Risk Assessment Services
    • Risk Assessment
    • Cybersecurity for Celebrities
    • WordPress Hardening
      • WordPress Security Protection Plans
  • IT Pros
    • IT Recruiter
  • Articles
  • About
    • Why us
  • Contact
  • en English
    en Englishfr Frenches Spanish
ParadoxWeb
AVOID A SPEAR-PHISHING ATTACK

6 TIPS TO AVOID A SPEAR-PHISHING ATTACK

Posted on January 6, 2020January 6, 2020

• Be careful with the personal information you post on the internet.
Verify your online profiles. How much personal information can potential attackers retrieve? If there is anything that you do not want a scammer to see, do not post it and configure your privacy settings to limit what others can see.

• Do not use the same password on every account that you own.
Reusing passwords or password variations will give an attacker access to all of your accounts. Every password used should be different. Passwords with random phrases are the most secure.

• Update your software.
If your software provider notifies you that there is an update, do it. The majority of software systems include security updates protecting you from common attacks. Enable automatic software updates.

• Do not click on links in emails.
If an organization such as your bank sends you a link, launch your browser and go directly to the bank’s site instead of clicking on the link in the email. Verify the destination of a link by hovering your mouse over it. If the URL does not match the link’s anchor text or the stated destination, it could be malicious. Many spear-phishing attackers will obfuscate link destinations with anchor text looking like a legitimate URL.

• Use logic when opening emails.
If you get an email from a friend asking for personal information, check if their email address is one that you have seen them use in the past. Real businesses will not send you an email asking for your username or password, especially from a gmail account. Contact that friend or business directly or visit the business’ official website to find out if they actually contacted you.

• Implement a data protection program in your organization.
A data protection program combining user education around data security best practices and implementation of a data protection solution will prevent spear-phishing attacks.

Contact us to setup phishing protection for your organization.

ParadoxWeb
IT Audits & CyberSecurity

Head Office:
Valletta, Malta.
European Union

Please follow & like us

RSS
Facebook
Facebook
fb-share-icon
Twitter
Visit Us
Follow Me
Tweet
Share

Recent Articles

  • TrickBot is a nasty, nasty, nasty piece of malware!
  • L’importance de la documentation dans votre environnement informatique
  • Dark Web et Criminalité
  • AccountGuard
  • Do not let your Kids use your work computer at home!
©2020 ParadoxWeb
This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Cookie settingsACCEPT
Privacy & Cookies Policy

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.
Necessary
Always Enabled

Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.

Non-necessary

Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.

en English
en Englishfr Frenches Spanish