{"id":179393,"date":"2018-08-17T14:19:13","date_gmt":"2018-08-17T19:19:13","guid":{"rendered":"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/"},"modified":"2018-08-17T14:19:13","modified_gmt":"2018-08-17T19:19:13","slug":"what-employees-need-to-know-about-phishing-attacks","status":"publish","type":"post","link":"https:\/\/ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/","title":{"rendered":"What Employees Need To Know About Phishing Attacks"},"content":{"rendered":"<p>Phishing is just one of many tools in a hacker\u2019s repertoire and happens to be one of their most effective.\u00a0 Through phishing, hackers dangle their bait in front of preoccupied employees who would never dream that their PC could provide an open door for a hacker.\u00a0 That\u2019s why it is so important that employees understand how phishing works, how costly it can be, and what they can do to avoid letting themselves become an unwitting accomplice to a hacker\u2019s attack on their company.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter size-full wp-image-21685\" src=\"https:\/\/ntegrait.com\/wp-content\/uploads\/2018\/08\/ThinkstockPhotos-498462398.jpg\" alt=\"Phishing\" width=\"479\" height=\"359\" \/><\/p>\n<p><strong>The Nature of Phishing<\/strong><\/p>\n<p>Phishing involves a malicious entity that sends out emails that look like they are from reputable, well-known companies (maybe even the employee\u2019s own employer) \u2013 but these emails are not what they seem.<\/p>\n<p>Sometimes the purpose of a phishing email is to trick the recipient into revealing information such as logins, passwords, or personal information. Other times, phishing emails are used to install malware on the recipient\u2019s computer. Once the hacker behind the phishing attack has succeeded in infiltrating the target system via login information or malware, the damage they cause quickly escalates.<\/p>\n<p><strong>Phishing Can Be Very Costly<\/strong><\/p>\n<p>So how expensive can phishing be?\u00a0 Well, consider <a href=\"https:\/\/krebsonsecurity.com\/2018\/07\/hackers-breached-virginia-bank-twice-in-eight-months-stole-2-4m\/\">what happened to a bank in Virginia<\/a> that fell victim to two phishing attacks in just eight months. Their disaster began when an employee received and opened a phishing email which succeeded in installing malware on company computers.\u00a0 The malware was able to use the victim\u2019s computer to access the STAR Network, a site used to handle debit card transactions.\u00a0 Through the STAR Network, the hackers behind the malware were able to steal $569,000 in that one incident alone.<\/p>\n<p>But that wasn\u2019t the end of the matter.\u00a0 Eight months later, even after hiring a cybersecurity forensics firm and following their advice to better secure their system, the same bank was victimized again through another phishing email.\u00a0 This time, the hackers again gained access to the STAR Network, but then used the bank\u2019s Navigator system.\u00a0 Through those systems combined, the hackers were able to credit money to various bank accounts and then withdraw the money using hundreds of different ATMs.\u00a0 Losses from this incident amounted to almost $2 million.<\/p>\n<p>To make matters even worse, the bank\u2019s cyber insurance provider denied coverage and the bank is now forced to pursue a lawsuit to recover their losses.<\/p>\n<p><strong>The Very Real Dangers Of Phishing Attacks<\/strong><\/p>\n<p>Phishing wouldn\u2019t be so effective if it wasn\u2019t so easy for busy employees to fall victim to seemingly legitimate emails or innocent-looking attachments.\u00a0 The malware that was used to initiate the first attack on the bank discussed in this article was embedded in a Microsoft Word document.\u00a0 Most of us have worked with thousands of Word documents during our careers and have never been victimized by one \u2013 but it only takes one time to cost a business millions of dollars.<\/p>\n<p>In this case, once that document was opened, the malware was installed and the group behind it had access to what they needed. The bank in question hired Verizon to investigate both incidents. It was finally determined that the same group of Russian hackers were likely responsible for both attacks.<\/p>\n<p><strong>Common Sense Required<\/strong><\/p>\n<p>Even the most powerful of cyber security systems is still susceptible to attacks that take the form of phishing or social engineering. As long as people continue to subscribe to the view that firewalls, anti-virus, and anti-malware systems provide all the protection against cyberattacks that a company needs, then successful phishing attacks will continue. Education is one of the forgotten keys to foiling phishing attacks.<\/p>\n<p>Employees need to be taught how to recognize a suspicious email and be given real-world examples of how convincing phishing emails can appear.\u00a0 They need to be encouraged to view both emails and attachments with a critical eye.\u00a0 Employees must also understand that, under no circumstances, is there a legitimate reason for someone to ask for their password.<\/p>\n<p>Another aspect of this type of education is making sure that people realize that the targets of phishing are not C-suite executives or IT technicians, but employees from all levels.\u00a0 Through a connection to the company\u2019s network, any employee\u2019s computer could serve as a launching pad for an industrious hacker\u2019s plan of attack.<\/p>\n<p><strong>Conclusion<\/strong><\/p>\n<p>Phishing attacks are a reality that must be addressed if a company wants to avoid becoming a victim.\u00a0 These attacks often result in very expensive losses that may not be covered by insurance.\u00a0 While the importance of a rigorous cyber security system is never to be overestimated, neither is the importance of employee education.\u00a0 Too many employees have unwittingly become accomplices in costly cyberattacks because they didn\u2019t recognize a phishing email and never thought they could be the target of one.\u00a0 The first line of defense against phishing isn\u2019t a network firewall, but a trained employee who knows how to recognize a suspicious email or a questionable attachment.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Phishing is just one of many tools in a hacker\u2019s repertoire and happens to be one of their most effective.\u00a0 Through phishing, hackers dangle their bait in front of preoccupied employees who would never dream that their PC could provide an open door for a hacker.\u00a0 That\u2019s why it is so important that employees understand&hellip;<\/p>\n","protected":false},"author":5,"featured_media":158869,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[8],"tags":[65],"class_list":["post-179393","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog","tag-mediabytes"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v24.2 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>What Employees Need To Know About Phishing Attacks - IT Services in Virginia<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What Employees Need To Know About Phishing Attacks - IT Services in Virginia\" \/>\n<meta property=\"og:description\" content=\"Phishing is just one of many tools in a hacker\u2019s repertoire and happens to be one of their most effective.\u00a0 Through phishing, hackers dangle their bait in front of preoccupied employees who would never dream that their PC could provide an open door for a hacker.\u00a0 That\u2019s why it is so important that employees understand&hellip;\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/\" \/>\n<meta property=\"og:site_name\" content=\"IT Services in Virginia\" \/>\n<meta property=\"article:published_time\" content=\"2018-08-17T19:19:13+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.ntegrait.com\/wp-content\/uploads\/2018\/08\/ThinkstockPhotos-498462398.jpg\" \/>\n<meta name=\"author\" content=\"Steve West\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Steve West\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/\",\"url\":\"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/\",\"name\":\"What Employees Need To Know About Phishing Attacks - IT Services in Virginia\",\"isPartOf\":{\"@id\":\"https:\/\/www.ntegrait.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/ntegrait.com\/wp-content\/uploads\/2018\/08\/ThinkstockPhotos-498462398-1.jpg\",\"datePublished\":\"2018-08-17T19:19:13+00:00\",\"dateModified\":\"2018-08-17T19:19:13+00:00\",\"author\":{\"@id\":\"https:\/\/www.ntegrait.com\/#\/schema\/person\/33156c118f002b88019c3fc70441bf79\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/#primaryimage\",\"url\":\"https:\/\/ntegrait.com\/wp-content\/uploads\/2018\/08\/ThinkstockPhotos-498462398-1.jpg\",\"contentUrl\":\"https:\/\/ntegrait.com\/wp-content\/uploads\/2018\/08\/ThinkstockPhotos-498462398-1.jpg\",\"width\":479,\"height\":359},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/ntegrait.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What Employees Need To Know About Phishing Attacks\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.ntegrait.com\/#website\",\"url\":\"https:\/\/www.ntegrait.com\/\",\"name\":\"IT Services in Virginia\",\"description\":\"Ntegra IT\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.ntegrait.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.ntegrait.com\/#\/schema\/person\/33156c118f002b88019c3fc70441bf79\",\"name\":\"Steve West\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.ntegrait.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/3cc273f166c78aca895198956663df42?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/3cc273f166c78aca895198956663df42?s=96&d=mm&r=g\",\"caption\":\"Steve West\"},\"description\":\"Ntegra IT is devoted to providing reliable Computer Support to businesses that want to improve productivity and profitability. We deliver custom designed Network Services that better map to your business, so you can stop worrying about your technology and get back to achieving your business goals.\",\"url\":\"https:\/\/ntegrait.com\/author\/swestntegrait-com\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What Employees Need To Know About Phishing Attacks - IT Services in Virginia","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/","og_locale":"en_US","og_type":"article","og_title":"What Employees Need To Know About Phishing Attacks - IT Services in Virginia","og_description":"Phishing is just one of many tools in a hacker\u2019s repertoire and happens to be one of their most effective.\u00a0 Through phishing, hackers dangle their bait in front of preoccupied employees who would never dream that their PC could provide an open door for a hacker.\u00a0 That\u2019s why it is so important that employees understand&hellip;","og_url":"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/","og_site_name":"IT Services in Virginia","article_published_time":"2018-08-17T19:19:13+00:00","og_image":[{"url":"https:\/\/www.ntegrait.com\/wp-content\/uploads\/2018\/08\/ThinkstockPhotos-498462398.jpg","type":"","width":"","height":""}],"author":"Steve West","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Steve West","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/","url":"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/","name":"What Employees Need To Know About Phishing Attacks - IT Services in Virginia","isPartOf":{"@id":"https:\/\/www.ntegrait.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/#primaryimage"},"image":{"@id":"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/#primaryimage"},"thumbnailUrl":"https:\/\/ntegrait.com\/wp-content\/uploads\/2018\/08\/ThinkstockPhotos-498462398-1.jpg","datePublished":"2018-08-17T19:19:13+00:00","dateModified":"2018-08-17T19:19:13+00:00","author":{"@id":"https:\/\/www.ntegrait.com\/#\/schema\/person\/33156c118f002b88019c3fc70441bf79"},"breadcrumb":{"@id":"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/#primaryimage","url":"https:\/\/ntegrait.com\/wp-content\/uploads\/2018\/08\/ThinkstockPhotos-498462398-1.jpg","contentUrl":"https:\/\/ntegrait.com\/wp-content\/uploads\/2018\/08\/ThinkstockPhotos-498462398-1.jpg","width":479,"height":359},{"@type":"BreadcrumbList","@id":"https:\/\/www.ntegrait.com\/what-employees-need-to-know-about-phishing-attacks\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/ntegrait.com\/"},{"@type":"ListItem","position":2,"name":"What Employees Need To Know About Phishing Attacks"}]},{"@type":"WebSite","@id":"https:\/\/www.ntegrait.com\/#website","url":"https:\/\/www.ntegrait.com\/","name":"IT Services in Virginia","description":"Ntegra IT","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.ntegrait.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.ntegrait.com\/#\/schema\/person\/33156c118f002b88019c3fc70441bf79","name":"Steve West","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.ntegrait.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/3cc273f166c78aca895198956663df42?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/3cc273f166c78aca895198956663df42?s=96&d=mm&r=g","caption":"Steve West"},"description":"Ntegra IT is devoted to providing reliable Computer Support to businesses that want to improve productivity and profitability. We deliver custom designed Network Services that better map to your business, so you can stop worrying about your technology and get back to achieving your business goals.","url":"https:\/\/ntegrait.com\/author\/swestntegrait-com\/"}]}},"_links":{"self":[{"href":"https:\/\/ntegrait.com\/wp-json\/wp\/v2\/posts\/179393","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ntegrait.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ntegrait.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ntegrait.com\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/ntegrait.com\/wp-json\/wp\/v2\/comments?post=179393"}],"version-history":[{"count":0,"href":"https:\/\/ntegrait.com\/wp-json\/wp\/v2\/posts\/179393\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ntegrait.com\/wp-json\/wp\/v2\/media\/158869"}],"wp:attachment":[{"href":"https:\/\/ntegrait.com\/wp-json\/wp\/v2\/media?parent=179393"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ntegrait.com\/wp-json\/wp\/v2\/categories?post=179393"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ntegrait.com\/wp-json\/wp\/v2\/tags?post=179393"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}