A Short Guide for Spotting Phishing Attempts

by Malachi Walker

As we ring in a new year, both opportunity and risk are knocking at the door for your company. Now is the time to ensure that your business’s employees are all properly educated in email security and recognizing phishing attacks. The Center for Internet Security has a quick read to put you on the right path for success. The article addresses multiple forms of phishing:

  1. Suspicious login attempts
  2. Malicious links
  3. Malicious files

To prevent becoming a phishing victim, the CIS recommends employees notify their IT security team or CISO of all suspicious emails, and that company leadership take a proactive approach at training which includes:

  1. Not opening a suspicious looking email
  2. Reporting anything suspicious to your IT security team
  3. Following established organizational security problems 

At WhiteHawk, we have found comprehensive training available through KnowBe4 security. Their product review by our Senior Analyst, Mike Ferris, can be viewed here. 

See more detail on the CIS tips and how you can incorporate them into your business’ security training by reading the CIS Phishing and Engagement Service’s article.

Recommended Posts
The Cyber Wire

See Rick Howard discuss the concept of cybersecurity first principles and use this to your advantage in building your…

Palo Alto

When it comes to cloud security today, there are many issues that organizations are trying to sort through. Here are a few of the most common…

David Hopland

A non-technical explanation about what a cyber threat is and how to explain it to your CEO. Read our guest article today.