Has your business been affected by Phishing?

Don’t worry! Computer Assistance can help you recover and repair from this attack.

How can we help you

What is Phishing?


Phishing is the fraudulent attempt of obtaining sensitive, important information such as usernames and password credentials, address and credit card details by disguising oneself as a trustworthy entity of a digital media organization.

The gathered information is then used to access important accounts and can lead to identity theft and financial loss.

Every day our clients are being targeted and tested with exploits that are getting sneakier – scammers and hackers are stepping up their game, which means we need to step up our security and our awareness to scams.
Today, we want to give you some guidance on how to spot scams and offer you an audit to make sure your staff are secure. Please forward the below email to your colleagues to help prevent malicious attacks. The cryptolocker viruses (like the Wannacry virus that hit the NHS) mean that just one user can spread a crippling virus across the whole business with one mistaken click.

One click can sink a ship

Types of Phishing?


Clone Phishing

Term refers to is when a previously legitimate email had its content taken, and was used to create an almost identical clone email. And the content of the email would be replaced with malicious content. After which it would be sent to look as if it would be coming from the original sender.

Spear Phishing

Term refers to an attempt directed at specific individuals and companies. Attackers normally gather personal information and use it to increase their probability of success.

Whaling

Term refers whenever an attach is directed specifically towards a senior executives of staff and other high profile targets. The culprits will try to craft content to match the target.

Targeted

Every day our clients are being targeted and tested with exploits that are getting sneakier – scammers and hackers are stepping up their game, which means we need to step up our security and our awareness to scams.

Today, we want to give you some guidance on how to spot scams and offer you an audit to make sure your staff are secure. Please forward the below email to your colleagues to help prevent malicious attacks. The cryptolocker viruses (like the Wannacry virus that hit the NHS) mean that just one user can spread a crippling virus across the whole business with one mistaken click.

The information in the below email will help your users understand when an email is safe and when it’s malicious, but there’s no better way of learning than by doing. That’s why we’d like to set up a phishing test email for you, a fake attack that looks real, in order to test how security conscious your users are. Several clients have undertaken the test with varying results but in all cases, at least one user has been susceptible and clicked on the ‘shady’ link.  The test is free to set-up and there will only be a flat-fee of £250.00 if any of your users click on the link.  If your employees are smart and don’t get tricked, you pay nothing!

Remember, even having a market-leading antivirus like ESET won’t always keep you safe. Users must have the latest Windows updates, a great antivirus and an understanding of what common scams look like in order to make sure your network is safe.
Simply reply to this email, call us or your account manager if you’d like to set us to set up a phishing test email for your users.

Some overview

Here is an email apparently sent from Hugh Coles. (Please make sure you have enabled images in this email to see the example)

Note how it does indeed say Hugh Coles BUT the bit after the @ sign does not show what I would expect [email protected]([email protected]) but instead shows [email protected]

This should raise suspicion and I would contact Hugh separately and directly, to check if indeed he sent this.

Please do not click links/attachments in emails unless you are 100% certain the email sender is legitimate. You can also hover, not click, to see where it will take you.

Also ask yourself if the email / attachment you have received is expected, when in doubt, contact the sender in a blank new email, not as a reply, to verify they sent it.

How to protect your business and prevent Phishing ?


It all begins with security awareness training. It needs to be regularly updated, because of the constant atacks which are aimed at companies and individuals. The phishing techniques are getting more dangerous, as they sometimes can be hard to differentiate, so training must be held to reflect on current and new phishing attacks, as well as teaching new users to :
How to identify phishing attacks
To be cautious of pop-ups on websites
To think twice before clicking on links sent via email or other messages. Users knowledgeable enough to hover over the link to see where it goes can avoid accessing malicious pages.
To verify a website’s security by ensuring that the URL begins with “https” and that there’s a closed lock icon near the address bar

Antivirus Software

Keeping your system clean and sanitised from any malicious content with antivirus software.

Keep them on to filter traffic between two or more network , also as running on network hardware.

Do not open suspicious email attachments and links.

Antispyware Software

Perform regular scans on the file system , by setting up scan scheduler.

Anti-phishing toolbar(Used in web browsers)

Extra protection within the browsers will help reduce to risks on stumbling upon potentially malicious websites.

Gateway email filter

Setup an email encryption server , which will encrypt all outgoing emails, and decrypt all that are incoming.

Web security gateway

Access websites which use TLS , most commonly used protocol for web security. Also referred ti as SSL , commonly the website will display a green lock next to the URL of the website.

How can Computer Assistance help you?


We can recover your data.

  • Our recovery process is 100% effective.
  • No Data. No Charge – If we cannot recover your data, we will not charge you for our efforts.
  • Hundreds of successful ransomware recovery cases – Our proven track record with ransomware has allowed us to evolve as the industry leader in ransomware recovery.
  • Dedicated Ransomware Recovery Specialist

We can repair your PCs and get your business up and running as quickly as possible.

Computer Assistance is one of the firsts data recovery companies to become involved in Ransomware recovery is to restore functionality to your personal or your business files as soon as possible.

We’re able to recover your data after the Ransomware attack and protect your computer for the future.

ESET Antivirus with anti-phishing protection.

ESET Smart Security, ESET Smart Security Premium, ESET Internet Security, and ESET NOD32 Antivirus provide Anti-Phishing protection that allows you to block web pages known to distribute phishing content.

We strongly recommend that you leave Anti-Phishing enabled

We can run a test phishing campaign on your business, to educate your users on the dangers of phishing.

The information in the below email will help your users understand when an email is safe and when it’s malicious, but there’s no better way of learning than by doing. That’s why we’d like to set up a phishing test email for you, a fake attack that looks real, in order to test how security conscious your users are. Several clients have undertaken the test with varying results but in all cases, at least one user has been susceptible and clicked on the ‘shady’ link.  The test is free to set-up and there will only be a flat-fee of £250.00 if any of your users click on the link.  If your employees are smart and don’t get tricked, you pay nothing!