There has been a tremendous rise in the number of malicious attacks, including email accounts being compromised, malware attacks, and password hijacking. We are seeing 3 main types of attacks although others are possible as this malicious human interference is always changing.
Vendor or Customer email accounts becoming compromised. Once the attacker has access to a user’s email account, they will send emails to the user’s clients or contacts requesting changes of bank account payments. These emails will come from legitimate accounts of people and vendors that you know, as the attacker has actually broken into the account and is sending email on behalf of that person. They will usually hide their tracks, so the user doesn’t notice.
Emails embedded with a link that when clicked, will take you to what looks like a OneDrive, or other Microsoft service, and ask you to fill in your password. They then log these passwords and use it to try to break into your accounts. Again, these may come from legitimate senders that you know, but their account has been compromised.
Emails that look like they came from IT DEPARTMENT, Microsoft, Office 365, Exchange, or other systems that say your mailbox is full, or your account will be turned off. These are not real and will again try to have you click a link that will ask for your password.
Below are some guidelines that need to be followed in order to prevent this. Remember, most of these emails will be coming from legitimate sources that you already have a relationship with, but the account has been compromised. They will even reply to legitimate email chains, so it makes it VERY hard to notice!
If you are a current client of ours, please do not hesitate to reach out to us if you are unsure about an email you received. We understand that these emails seem real and mistakes can happen. If you think you have fallen for any of these breaches, please let us know so we can take the appropriate steps to re-secure all of your accounts as soon as possible.
Everyone should be vigilant during these times. Attacks are on the rise and harder than ever to catch. The best defense is being prepared and knowing what to do if a suspected attack occurs. As always, if there are any questions, please send an email to firstname.lastname@example.org or call us at 440-471-8210 Option 4.
If you are not a current customer of ours but need assistance, please contact us here.