Recognizing and Reporting Phishing Attacks

#SeeYourselfInCyber

Phishing attacks in data breaches increased 11% from 2019 to 2020. It went from 25% to 36% based on analysis of confirmed breaches. (Verizon)

Phishing attacks have become an increasingly common problem for organizations of all sizes and can be very difficult to spot. 30% of small businesses consider phishing attacks to be their top cybersecurity concern. It’s important for every individual to stop and think before clicking on a link or attachment in a message and know how to spot the red flags.

Various Phishing Techniques Used by Attackers

  • Embedding a link in an email that redirects your employee to an insecure website that requests sensitive information.

  • Installing a Trojan via a malicious email attachment or ad which will allow the intruder to exploit loopholes and obtain sensitive information.

  • Spoofing the sender address in an email to appear as a reputable source and request sensitive information.

  • Attempting to obtain company information over the phone by impersonating a known company vendor or IT department.

Here are a few steps a company can take to protect itself against phishing:

  • Educate your employees and conduct training sessions with mock phishing scenarios.

  • Deploy a SPAM filter that detects viruses, blank senders, etc.

  • Keep all systems current with the latest security patches and updates.

  • Install an antivirus solution, schedule signature updates, and monitor the antivirus status on all equipment.

  • Develop a security policy that includes but isn’t limited to password expiration and complexity.

  • Deploy a web filter to block malicious websites.

  • Encrypt all sensitive company information.

  • Convert HTML email into text only email messages or disable HTML email messages.

  • Require encryption for employees that are telecommuting.

Govplace’s OEM Partners That Help Protect Against Phishing

Our partners help protect against phishing attack by deploying out-of-the-box solutions rapidly. On an enterprise scale, they provide multilayered defense in near real time using intelligent detection engines and more. Reducing security management by removing false positives using global threat intelligence or built-in algorithms for known phishing attempts is a key feature of our OEMs. Our partners provide deep packet inspection and API integration to off-load data into a SIEM for further analysis. Our solutions are cloud ready and can be deployed in minutes, globally leveraging all major cloud providers.  Some of our core features that help drive protection of phishing are threat intelligence, payload analysis, data loss prevention, application control, and analysis and reporting.

Full List of Partners

About National Cybersecurity Awareness Month

Govplace is proud to participate in National Cybersecurity Awareness Month (NCSAM), a joint effort between the Cybersecurity and Infrastructure Security Agency (CISA) at the Department of Homeland Security (DHS) and the National Cyber Security Alliance (NCSA) to raise cybersecurity awareness nationally and internationally. Now in its 19th year, NCSAM continues to raise awareness about the importance of cybersecurity across our Nation, ensuring that all Americans have the resources they need to be safer and more secure online.

At Govplace, We’re Doing Our Part!

Cybersecurity is one of Govplace’s key areas of expertise. Beyond promoting #SeeYourselfInCyber and NCSAM for our own employees, we work every day with our federal agency customers to provide best of breed cybersecurity tools, products, and expert integration services to ensure the safety and security of mission critical systems and data. Our in-house cybersecurity specialists stay current with the ever-evolving federal requirements for enhanced security and compliance, so that Govplace is ready to assist customers in finding and implementing the most appropriate and cost-effective cybersecurity technologies and solutions. We’re doing our part to help our customers across their organizations.

For more information on our cybersecurity offerings, email us at
sales@govplace.com or call 571-429-5190