Tech security: a cyber taboo

Please note: This post was written by Highlander prior to their rebrand to FluidOne Business IT - Sheffield.

This is the latest article from our regular feature with unLTD magazine Pre-Sales Technical Specialist Bryn Hawkins explains why people, not systems, could present the weakest point in your cyber protections, and what steps can be taken to help. unLTD magazine is a business-focused publication that provides a platform for organisations of all sizes from across the Sheffield City Region to share opinion and insights with like-minded individuals. 

What’s the easiest way to hack you?

One word – e-mail. More than 90 per cent of all cyber attacks start that way – but why?

We get hundreds of e-mails per day, from lots of sources. There’s a big opportunity for hackers to impersonate to get you to hand over our valuable information or money.

Like a magician using deception to entertain, a hacker will try and distract you by exploiting your emotions. Fear of an unpaid bill, excitement at a prize – or panic over your browser history being revealed! All designed to drop your guard and allow access to valuable information. They rely on embarrassment and fear to keep hidden – we report just three per cent of e-mail attacks. We don’t talk enough about this and this culture needs to change, so I’ll start.

I advise companies about cyber security – and this year I fell for two e-mail scams.

The first happened while I was doing DIY and ‘my MD, Steve’ e-mailed asking for my mobile number. Without checking, I replied. Moments later I realised he had my number – and now so did a hacker. They wanted me to buy Apple vouchers, the answer was no! The e-mail had several red flags. I didn’t check. I should have.

The second happened with a delivery e-mail stating I needed to pay a small fee for redelivery. Swearing under my breath, I opened up the link and got halfway to typing in my payment details before I realised it might be a scam. I googled and sure enough, it was.

We can all fall for these scams and shouldn’t be embarrassed if we do. Hopefully, with some basic tips, we can make it harder for cybercriminals.

Here’s a guide to keep you safe at work and some for our daily life, too. Let’s look after each other in our increasingly digital world.

1. Check the e-mail address – is it masked or have spelling errors.
2. Don’t click that link – hover over it with your mouse to see if it will take you to a legitimate site.
3. Don’t open any attached files unless you are 100 per cent sure you know who sent them.
4. Verify the e-mail via trusted methods – don’t call the number on the e-mail!
5. Invest in tech and software – even free antivirus or firewalls can be better than none.

1. Slow down – hackers use urgency to make you panic.
2. Often attacks are impersonated badly – if it doesn’t feel right, don’t trust it.
3. Google – most attacks will be documented. If in doubt, check.
4. Talk to someone, get them to check it with you.
5. Never give away sensitive information over e-mails/text/social media such as credit card details, passwords or PINs.
6. Don’t fill in online quizzes to find out what celebrity you are most like!
7. Remember – once you share an image or data online it is as good as public information.
8. Don’t pay bills on inbound calls. If someone rings you demanding payment, politely decline, find the correct number and call the following day or from a separate number.