Phishing is a term that was adapted from the word “fishing.” When we go fishing, we put a line in the water with bait on it and we sit back and wait for the fish to come along and take the bait. Maybe the fish was hungry. Maybe it just wasn’t paying attention. At any rate, eventually a fish will bite and you’ll have something delicious for dinner.
This is essentially how cyber phishing works. Cyber thieves create an interesting email. It might say that you’ve won a $100 gift certificate from Amazon. Sound too good to be true? Find out! All you have to do is click the link and take a short survey. Easy enough, right?
Once you click the link, guess what happens? A virus is downloaded onto your system. Sometimes it’s malware and sometimes it’s ransomware. Ransomware encrypts all your files until you pay the ransom. Even then, there’s no guarantee you’ll get your data base restored. Malware is all about stealing credentials, passwords, and other valuable information from your company. Sometimes it’s just about destroying your data.
Malware includes Trojans, worms, spyware, adware, and rootkits. These malicious programs each have different goals but all are destructive and aimed at harming your computers.
As cyber thieves continue to steal from people all over the world, they create new ways to do this. After all, many people have become familiar with certain phishing scams so they may not work as well. The solution is to come up with new scams that seem really enticing—things that users may not have heard of before. The more convincing hackers can make their scams, the more successful they will be.
The whole landscape of cyber-crime is changing. It used to be mostly young guys sitting in their parent’s basement, trying to find clever ways to pass the time. Unfortunately, this crime has become so successful that the governments of countries are now involved. A large majority of all ransomware scandals originate in Russia. The government employs hundreds of hackers. They have teams of IT experts who work around the clock to create new and more affective hacking scams.
When hackers are backed by a government like China, they have practically unlimited resources. This makes them even harder to stop. If they were simple individuals committing their crimes for personal gain, the authorities could track them down and put them in jail. But today’s cyber criminals are well organized agencies that are part of a large foreign government, so stopping them is almost impossible. What can you do as a business owner?
You may have spent years trying to build up your company. You have a huge amount of time and money invested and yet one cyber-attack could bring your company to its knees.
The first thing you need is knowledge. Knowledge is still power in our world. You need to know how cyber-attacks occur. What are the latest phishing scams? How does ransomware work? You also need to train your employees so they will know as well. Just one careless employee can open the door to thieves and cost you thousands of dollars. It’s cheaper to train your employees.
Below, we discuss some of the most notorious cybercrimes and some new ones that are making the rounds:
Sextortion: Have you ever sent nude pics to someone? Are there any lewd photos of you floating around? Sextortion is all about locating embarrassing photos of you. If you own a business, then this can be a crime that pays well for thieves. They send the business owner a little sample of the erotic photos, then demand money or else they’ll publish them on the internet. The problem with this crime is that there’s no guarantee you’ll get all copies of the photos back. You may pay the criminals and still not be sure.
Gift Cards: This scam is highly successful because usually the thieves aren’t asking for very much money. Many victims will go ahead and pay even if they suspect that it’s a trick, simply because there’s only a few hundred dollars at stake. You may get a phone call from someone saying they’re from a creditor or the IRS. They will speak in hostile threatening tones. They’ll claim that if you don’t pay up immediately, terrible things will happen—maybe your car will be repossessed. Next, they instruct you to go to a local store like Walmart and buy gift cards in the amount you owe. Once you buy them, you call the thief back and give them the numbers found on the back of the cards. Once they have these, they can use them online to make purchases.
Phishing/Ransomware: Phishing crimes have become so successful that now there are variants like spear-phishing, vishing, and smishing. These are all forms of the same ruse. A hacker will send you a very convincing email. It may say something like:
“Congratulations! You’ve just won $100 from Amazon. Click on the link below to claim your prize.”
You click on the link and guess what? A malware or ransomware virus is downloaded onto your computer. If you’re a business owner, this virus can spread quickly to other computers. In many cases, all your computers are locked and you’ll get an ugly message saying that if you want your files restored, you must pay a ransom. Sometimes business owners follow the instructions on the screen and they do get their files back. Sometimes not. There’s no guarantee. Ransoms are always demanded using cryptocurrency because this form of payment is untraceable.
Unfortunately, cybercrimes will not stop anytime soon. They’ve been too successful and there’s almost no chance of getting caught. What you have to do is protect yourself and your data with the best security software. Make sure your employees get regular training to remind them. If you’re not sure whether your cyber security program is strong enough, then hire a managed IT provider. They can perform penetration testing to assess your level of security.
A great managed IT service provider will do a full assessment of all your security protocols and let you know whether you need to add other layers of protection. When you have the best cyber security platform in place, you can sleep better at night.
BIOS Technologies’ mission is to deliver superior IT support to the SMB market in the New Orleans Metro Area. We focus on companies that understand the business/security risks of unmanaged technology and want to maximize efficiency and profitability.