Cybersecurity and Employee Risk

Jay Town and Charlie Gray
ChainShield™ a Natural Fit for Furthering President Biden’s Order to Secure our Nation’s Critical Supply Chains
April 1, 2021
Reduce Reuse Recycle
Reduce, Reuse and Renovate
April 22, 2021

Cybersecurity and Employee Risk

Blog Header

Author: Mike Anderton

Cybersecurity threats are becoming a day-to-day struggle for businesses. Continuous change in technologies implies a parallel shift in cybersecurity trends as news of data breaches, ransomware attacks and hacks have become normal occurrences. One of the most damaging examples of cybercrime for employers is phishing attempts. Employees can be conned into transferring money into an illegitimate account or revealing sensitive company information by being careless or simply being unaware of common cyber threats. We’ve outlined a few trending attack methods below that target employees to help your organization mitigate risks and protect against today’s most common cyber threats. 

LinkedIn Profiles

Hackers are now exploiting LinkedIn to enhance their phishing attacks. Oftentimes LinkedIn can be a gold mine for cyber criminals because individuals list their email addresses, work histories, connections and other types of information on their profiles. Employees that list current company information have been receiving phishing emails asking for information to compromise financial information. A large portion of these phishing attempts have targeted Intuit credentials, which are linked to bank and tax application logins. 

Unemployment Claims

Cyber-criminals are also gathering employment history from social media sites, like LinkedIn, to file unemployment claims on behalf of individuals that are currently employed. Those who have noticed this trend have said that personally identifiable information (PII) may not be needed to begin a fraudulent unemployment claim.

Job Postings

Bad actors are impersonating legitimate companies and recruiters, copying legitimate job postings, creating fraudulent recruiter accounts on sites like Indeed, and posting fake job listings in hopes that prospective employees will submit applications with PII. In one case, an employee received a phone interview and offer letter for a remote position. They were even offered money to fund their home office via a check that would be mailed to them. 

Take the next step to building a more secure network.

Cyber-criminals are working smarter and harder to gain access to sensitive information. Almost all cybersecurity breaches are caused by human error. Bad actors infiltrate your company by targeting your weakest link, which is almost never in the IT department. To successfully fight against malicious intent, it’s crucial that companies prioritize cybersecurity awareness, prevention and security best practices in the workplace and in work-from-home environments. Assessing the readiness of human capital and providing improvement strategies are the most important factor in reducing the occurrences of cyber incidents across an organization. Our extensive knowledge and experience in how people react to threats, such as phishing attacks or business email compromise, can help you create solutions that provide the first line of operational defense against cyber threats. Engaging with Gray Analytics’ team of experts to perform a comprehensive assessment of your operation will give you confidence that risks to your business are clearly identified and effectively mitigated.