Phishing scams have been around for some time. Think of the “Your bank needs you to confirm your account details” or the “Strange person sending you an attachment” type of emails. There has been a dramatic rise in these types of attacks. Some scary stats include:
- Fake invoice messages are the #1 type of phishing lure. *
78% of people claim to be aware of the risks of unknown links in emails. And yet they click anyway. **
Generally, most phishing attacks want the victim to do one of the following:
1. Enter their PII (Personally Identifying Information)
2. Click on an attachment
3. Click on a link to a web page
Phishing attacks are becoming very commonplace and are a huge concern for many enterprise environments, especially those that house client information. Many enterprise (and home based) email scanning programs weed out such emails, or at least mark them as junk.
If you get an email that wants you to do one of the above 3 things, best to take an extra sip of your coffee, slow things down a little and take some other steps to protect yourself from being a victim.
** Source: Friedrich-Alexander University (FAU)