I have a scary tale to tell, one of a danger that hides in plain sight and threatens to catch you unaware and seize your very existence. This predator is more alive than a zombie, and easier to fall victim to than a murderous clown. So, let us now embody both the hygge and horror of October. Put on some fuzzy socks, grab your pumpkin spice latte, and cuddle up in a blanket while I unnerve you with the evils of a fiend called ...dunh, dunh dunh!!! ...the phisher.
The first reports of a phisher began around 1995. The phisher’s attacks, called phishing, became more frequent in 2003 and have continually increased in number and evolved in danger. Phishers will attack you where you work and live. A phisher could be a member of an organized crime ring attacking you from overseas, or an individual operating alone from a local coffee shop. The phisher’s enormous power has ruined lives and destroyed corporations. In the connected world we live in, we are all targets for phishers. No one is safe.
Fortunately, It’s not all doom and gloom. By understanding why phishers phish and recognizing their tactics we can avoid falling prey to their attacks. In simplest terms, phishers want to trick you into giving them your password, social security number, credit card number, or other important information and use it for their gain.
The top guidelines to avoid phishing scams and keep your identity safe include:
- Have a strong password. Passwords should be long and complex, regularly change passwords, don’t reuse passwords, and never share passwords.
- Think before you click. Don’t open attachments or click on links in emails if you weren’t expecting to receive them. Don’t fill out forms with confidential information, like passwords, unless you are on a trusted site.
- Keep informed. New phishing scams and techniques are being developed all the time.
Ongoing security awareness training is highly recommended to keep employees informed and ensure security is top of mind. BPS is rolling out BPS Cyber Security forums in Learnbps that will provide a venue for BPS users to interact with each other and share information on new phishing scams or security risks that they encounter. In addition, we will provide you with the tips and tricks you need to identify phishing emails and learn why Greenpigeats14tacos! is a good password (or it WAS, before I shared it online with the world).
BPS Cyber Security Forums will feature three different forums:
- Announcements - New threats and scams circulating on the internet or affecting BPS will be posted here
- Cyber Security Discussion - This is a place to post your questions or notify others of potential dangers by sharing a phishing email or scam that you received
- Cyber Security Awareness and Training - We will post tips, tricks, and offer general knowledge training pieces to help you become a cyber security super hero!
Join us on Tuesday, October 24th for the #learnbps Twitter discussion!
- What is your biggest cyber fear?
- What is a cyber security risk you see others take that makes you cringe?
- Are you worried about forgetting your password? Why or why not?
- What are the steps you take when you are uncertain of a potential risk?
- Do you have cyber security questions, or your own advice? BPS employees - share it in the Cyber Security Discussion forum!