What would you like to catch? Log in information, passwords, commercially sensitive organisation information?
Keeping up to date with friends and family, following new trends, or sharing pictures is what most people use social media for. Criminals, however, use social networking sites to glean information to create more tailored attacks on individuals (data they aggregate can lead to a more detailed picture of your life – home and work).
You may know what to do if you receive an email from a Prince in Nigeria (401 phishing attacks), but if it was an email from someone you knew asking for help, would you click on the link? If you received an email from your boss asking about the holiday you’d just been on, would you click on the link? These are the tactics that cyber criminals are now using.
It’s not just what you’re saying, but what family and friends are saying, which could give criminals the information they need. The wife of John Sawyer, MI6 chief posted pictures of him on Facebook in his speedos and revealed their holiday location – both hugely embarrassing for MI6. Criminals can paint a pretty picture from details from those around you, make sure family and friends know why they need to think before they click.
The Three P’s to keep you safe.
- Passwords- don’t have the same passwords for multiple accounts; don’t keep them written on a post-it by your computer.
- Privacy Settings- be aware who can see what you are posting online, and tailor it to that group.
- Policies- an organisation needs to keep up with the growing social networking trend; policies allow individuals to work within agreed organisational boundaries.
So, the best thing to do to protect yourself?
If you receive a file or link from someone you don’t know; don’t click, if a link looks suspicious or is out of context; don’t click. Think before you click.
If you need help training individuals or creating a policy suite get in touch with us at firstname.lastname@example.org