Awareness Day Twenty Eight: Phishing
Awareness Day Twenty Eight Phishing
91% of all cyber attacks begin with a phishing email to an unexpected victim :Deloitte News Article.
General guidance for preventing a phishing attack:
Install security software on mobile devices.
Avoid browsing certain websites, block if necessary.
Only download reputable mobile applications from legitimate sources and restrict within an organisation. Consider having an 'approved' software list for the organisation.
Exercise caution on social media.
Use different passwords - see previous article on Passwords: October is Cyber Security Awareness Month: 27. Passwords
Beware of phishing emails - Article: Types of Cyber Attacks: Phishing.
Be careful when using public wireless networks.
Consciously keep up with current security trends and threats. Ensure staff are trained on how to recognise a phishing email and what to do when they receive one. Consider running a phishing campaign as a training exercise: DPE Phishing Campaign.
Review: DfE Cyber Security Standards for Schools and Colleges.
Review NCSC Phishing Guidance:
Phishing: Spot and report scam emails, texts, websites and calls
Phishing attacks: defending your organisation
Review DPE's previous articles about phishing:
Types of Cyber Attacks: Phishing
Cyber Threat to Health and Education Sectors
A quick introduction to the Phishing Simulation tool
Scammers Pretending to be Family Members: Cyber Update
WhatsApp Hit by Fake Voice Message Scam
Cyber Crime: AI Generated Phishing Attacks
More questions like these are in our Information and Cyber Security Checklist (only viewable with a valid Data Protection Education subscription):
{module title="Checklist: Cyber Security"}
{module title="Cyber Attack Advice"}