Hackers are increasingly targeting companies at an alarming rate. It only takes one click to bring the services of a company to a halt. Most believe that having the best firewalls in place will mitigate this risk, but in reality their most vulnerable firewall is the human firewall. Security training and awareness most be continuous to keep up with ever-evolving threats. Especially since hackers are always one day ahead of the firewalls that protect you.
A dangerous new phishing threat has appeared with the ability to evade detection by anti-virus software. This should prompt reminders to employees to be wary of clicking unfamiliar links from known business partner email. Remember, One Click + One Person = Cyber Attack!
In recently observed attacks, PowerPoint Show files (.PPSX files) are being abused to deliver malware. Earlier this month, security researchers at Trend Micro blogged that, as part of the attack, the threat actors sent email masquerading as a business partner to deliver the malicious document as an attachment to a spear-phishing email.
- Security Training and Awareness programs should be continuously updated to include ever-evolving phishing threats. Users with access to critical data and systems should know to exercise caution when opening email and clicking on links, even if they appear to come from legitimate sources.
- Systems should be patched with the latest security updates; users with the updated patches are safe from these attacks.
- If your business has not conducted Security Training and Awareness exercises or is unable to verify patch level of your systems, please contact the Cybersecurity professionals at UHY Advisors to arrange for a brief overview of how we can help.
For more information on reducing the risk of your next cyber security attack, please contact your local UHY Advisors professional.