Need a certification?

Get certified in Data Protection and GDPR Level 2 (VTQ) for just £24.95 + VAT.

Get Started

Phishing and Malware

Video 28 of 32
3 min 55 sec
English
English
vimeo-icon Watch Using YouTube Player Transcript

Previous video

Cybercrime

Next video

Business Email Compromise

Protect Yourself from Phishing and Malware Attacks

Understanding Phishing

Email Deception: Phishing schemes utilize deceptive emails, often appearing genuine, to trick recipients into opening attachments or clicking on links.

Phishing Attachments

Disguised Content: Phishing emails may contain attachments disguised as invoices or delivery notices, often created with Microsoft Word or Excel, containing malicious "Macros" that download malware upon execution.

Link-Based Phishing

Exploitative Links: Clicking on links in phishing emails can lead to seemingly legitimate websites exploiting computer vulnerabilities or tricking users into disclosing personal information.

Targeted Attacks

Sophisticated Strategies: Some attackers conduct directed attacks, researching recipients' information to tailor phishing attempts, while others cast a wide net to ensnare as many victims as possible.

Recognizing and Preventing Malware

Understanding Malicious Software: Malware can damage data, steal information, and hijack internet activity, remaining undetected for extended periods.

Signs of Malware Presence

Hidden Threats: Malware can operate covertly, compromising data, spying on activities, and intercepting internet banking sessions, posing significant risks to individuals and businesses alike.

Risks to Businesses

  • Theft or Encryption of Sensitive Data
  • Hardware Damage
  • Internet Banking Fraud
  • Financial Loss

Protective Measures

Implementing Security Measures: Employ robust antivirus software, keep systems updated, and educate staff on identifying and avoiding suspicious attachments and links.

  • Use reputable antivirus software and keep it updated
  • Avoid opening dubious attachments or links
  • Avoid downloading software from unknown sources
  • Restrict access to necessary internet sites
  • Limit use of external devices in the business environment
  • Control employee access to financial data
  • Establish strong recovery and backup processes
  • Train staff to recognize and avoid risky online behavior
  • Implement password security measures
Learning Outcomes:
  • EDSQ Unit 5 LO 14.4

Previous video

Cybercrime

Next video

Business Email Compromise