Educate Employees About Phishing Attacks
Tools like Google's Password Alert help battle phishing attacks by warning users if they are typing their password on an unsecure website. But a quarter of phishing emails are still being opened. People need to be better informed about how phishing scams work. So what can be done to lessen the problem of phishing scams?
Sue Marquette Poremba suggests:
"Applications like Password Alert will certainly help, but it really comes down to education. Teaching users to recognize a phishing scam should be done on a regular basis – regular being monthly or quarterly. Once-a-year security training sessions simply don't work anymore. It helps, too, to make users more invested in the damage. If they know that their information is at risk, as well as company data, they may have second thoughts on opening a potential scam email. It is more important that users understand the damage that can be caused by a single phishing email and have improved knowledge on how to recognize a scam versus a real email."
Read more at Why We Still Struggle with Email Phishing Scams.